[messaging] encryption of Signal notification messages
bascule at gmail.com
Mon Feb 22 18:11:18 PST 2016
> If the recipient can decrypt and authenticate your messages, you cannot
>> have any guarantees around this.
> Actually you do - this is where the deniability inherent in Axolotl plays
> a role. The recipient can authenticate the message, but no one else can.
> From anyone else's perspective the message is just as likely fake as
You missed the point: the intended use case was "If the recipient can
decrypt and authenticate your messages"
All that said: the sender can potentially provide a flag as to whether or
not they would prefer a plaintext decrypt be displayed. This can't be
enforced by cryptography, but Signal could attempt to honor such a flag.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Messaging