Skip to content
  • Home
  • Categories
  • Recent
  • Popular
  • World
  • Top
  • Tags
  • Users
  • Groups
  • Documentation
    • Home
    • Read API
    • Write API
    • Plugin Development
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (No Skin)
  • No Skin
Collapse
Brand Logo
v3.10.3 Latest
Buy Hosting
  1. Home
  2. Uncategorized
  3. "This attack was possible because, although Signal encrypts the local database containing confidential data (including messages and keys), it stored the database decryption keys in plaintext." - https://cryptographycaffe.sandboxaq.com/posts/protecting-...

"This attack was possible because, although Signal encrypts the local database containing confidential data (including messages and keys), it stored the database decryption keys in plaintext." - https://cryptographycaffe.sandboxaq.com/posts/protecting-...

Scheduled Pinned Locked Moved Uncategorized
4 Posts 3 Posters 2 Views
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • stevelord@bladerunner.socialS This user is from outside of this forum
    stevelord@bladerunner.socialS This user is from outside of this forum
    Steve Lord
    wrote last edited by
    #1

    "This attack was possible because, although Signal encrypts the local database containing confidential data (including messages and keys), it stored the database decryption keys in plaintext." - https://cryptographycaffe.sandboxaq.com/posts/protecting-signal-desktop-keys/

    If a guide to a post-Trump online world recommends using centralized services one National Security Letter away from being used against you, that guide hasn't considered you in their threat model.

    emory@soc.kvet.chE 1 Reply Last reply
    0
    • emory@soc.kvet.chE This user is from outside of this forum
      emory@soc.kvet.chE This user is from outside of this forum
      Emory
      replied to Steve Lord last edited by
      #2

      @stevelord glad to see PIV still being relevant; i've used u2f keys for openssh and like that compared to juggling certificates but i do rather like S/MIME for all the good that does me. thanks for sharing that i have to really dig into that later it's pretty dense!

      #privacy #Signal #pki #encryption #privacy

      stevelord@bladerunner.socialS 1 Reply Last reply
      0
      • stevelord@bladerunner.socialS This user is from outside of this forum
        stevelord@bladerunner.socialS This user is from outside of this forum
        Steve Lord
        replied to Emory last edited by
        #3

        @emory Yup. I wonder if there's a route to using an onboard TPM instead of a Yubikey.

        foxboron@chaos.socialF 1 Reply Last reply
        0
        • foxboron@chaos.socialF This user is from outside of this forum
          foxboron@chaos.socialF This user is from outside of this forum
          Morten Linderud
          replied to Steve Lord last edited by
          #4

          @stevelord @emory

          That should be doable. The issue is mostly how you want to have the key policy.

          1 Reply Last reply
          0

          Copyright © 2024 NodeBB | Contributors
          • Login
          • Don't have an account? Register
          • Login or register to search.
          Powered by NodeBB Contributors
          • First post
            Last post
          0
          • Home
          • Categories
          • Recent
          • Popular
          • World
          • Top
          • Tags
          • Users
          • Groups
          • Documentation
            • Home
            • Read API
            • Write API
            • Plugin Development