undefined | Better HN

0 pointsxyzzy12311y ago0 comments

Ephemeral keys, sure. Negotiated with... well... who exactly? The person you thought you were talking to, or someone else?

The available solutions are shared secrets with zero knowledge proof (like OTR does), voice verification (like various "secure phones", a web of trust, or CA infrastructure.

Crypto everywhere will improve things immensely, but (repeating myself) ultimately the user needs to understand how they can trust that the other party is who they say they are. So far we do not have a magic (automatic) way to do that for the user.

0 comments

Zigurd11y ago

Unless NSA has a great Max Headroom version of me, I think people will trust that they are talking to, or listening to me. That's why I wrote "realtime communication."

For store and forward you need public key exchange and a mechanism for trusting identity. However, in most use cases where you have a mix of realtime and store and forward communication, you have ample opportunity for key signing where you can trust the identity of the person asking for your signature.

tr;dr: There really are no usability excuses.

xyzzy123OP11y ago

What part of the other person seeing video of you assures you that you aren't MITM'd?

j / k navigate · click thread line to collapse