[messaging] encryption of Signal notification messages
Tony Arcieri
bascule at gmail.com
Mon Feb 22 18:11:18 PST 2016
>
> If the recipient can decrypt and authenticate your messages, you cannot
>> have any guarantees around this.
>>
>
> Actually you do - this is where the deniability inherent in Axolotl plays
> a role. The recipient can authenticate the message, but no one else can.
> From anyone else's perspective the message is just as likely fake as
> real.
You missed the point: the intended use case was "If the recipient can
decrypt and authenticate your messages"
All that said: the sender can potentially provide a flag as to whether or
not they would prefer a plaintext decrypt be displayed. This can't be
enforced by cryptography, but Signal could attempt to honor such a flag.
--
Tony Arcieri
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://moderncrypto.org/mail-archive/messaging/attachments/20160222/a6f9f1ba/attachment.html>
More information about the Messaging
mailing list