[noise] Encrypting 0-RTT payloads

Matthew Hodgson matthew at matrix.org
Thu Dec 6 18:21:02 PST 2018


Hi all,

Apologies for the naive question, but: what is the recommended approach for encrypting the payload in a 0-RTT IK handshake?

Given the handshake isn’t yet complete, you can’t get at the CipherStates in order to use them to encrypt/decrypt the payload; so what is the idiomatic way of encrypting your payload for the remote static public key?

M

-- 
Matthew Hodgson
Matrix.org


More information about the Noise mailing list