#signal To add post‑quantum security, Signal introduced the Sparse Post‑Quantum Ratchet #SPQR , which runs alongside the existing #DoubleRatchet
The protocol now effectively combines three components: the symmetric ratchet, the classical DH ratchet, and the new post‑quantum ratchet (SPQR).
https://pqshield.com/diving-into-signals-new-pq-protocol/
https://blog.quarkslab.com/triple-threat-signals-ratchet-goes-post-quantum.html
OH: "Ein Ratschen-Zwischenbescheid"
Wird es dann auch bei dem Messenger SimpleX Chat integriert, wenn es wirklich so gut und bewiesen ist?
Is it also integrated with the Messenger SimpleX Chat when it is really so good and proven?
Hashtags:
#Signal #SimpleXChat #Messenger #Sicherheit #doubleratchet #Quantencomputer
#Signal Braces For #Quantum Age With #SPQR #Encryption Upgrade - Slashdot
Signal has introduced the #SparsePostQuantumRatchet (SPQR), a new upgrade to its #encryption protocol that mixes quantum safe #cryptography into its existing #DoubleRatchet. The result, which Signal calls the #TripleRatchet , makes it much harder for even future quantum computers to break private chats.
#privacy #security
this is interesting, according to Cremers et al, post-compromise security in signal (double-ratchet) and other protocols is impossible due to be in direct conflict with UX, and thus we can throw out a lof of complexity from the protocols if we want to maintain the UX....
@adlerweb @jwildeboer @EU_Commission Actually, I'd prefer work on enabling an alternative to mail. Even S/MIME mail is shit (no forward secrecy, a lot of metadata, limited e2e, lacking key rotation, ...).
I'd like to see someone build #federation around #Zulip and optionally add some E2E like #Signal 's #doubleratchet encryption onto it.
Build a bridge from and to legacy mail and then phase out each mail system one by one.
#XMPP is not #e2ee encrypted unless you add something like #OMEMO. In practice, not all XMPP clients that implement OMEMO get the key exchange and trust settings right in a reliable and user-friendly way.
#Matrix has something like OMEMO built in.
Initial work for adding a very similar #doubleRatchet based encryption to Mastodon DMs has started, but I am not sure about the current status.
@realcaseyrollins
Signal does claim to be open but if memory serves, build is not-reproducible and #phoneNumbers as identifiers make it a poor choice, in our estimation, there are other #XMPP with #DoubleRatchet/#OMEMO.
The reason many clamour to get high on a broken ladder is unlikely to be explained in clear or encrypted text. That's what #subtext is for.
Vodozemac, https://github.com/matrix-org/vodozemac/.
Vodozemac is a Rust implementation of the Olm and Megolm algorithms.
Olm: https://gitlab.matrix.org/matrix-org/olm/-/blob/master/docs/olm.md
Megolm: https://gitlab.matrix.org/matrix-org/olm/-/blob/master/docs/megolm.md
Oh. It compiles to Wasm.
#matrix #encryption #doubleratchet #cryptography #rustlang #webassembly
Closer Look at the Double Ratchet
In this post I try to explain the Double Ratchet Algorithm that drives the cryptography behind OMEMO and Signal. This is the second part of my series about the crypto behind OMEMO.
https://blog.jabberhead.tk/2019/04/15/closer-look-at-the-double-ratchet/
#crypto #cryptography #doubleratchet #encryption #OMEMO #ratchet #signal #xmpp
Olm 3.0.0 released! Featuring several big changes including: improved Python bindings, new support for CMake, and in JavaScript, WebAssembly by default, which gives a big speed boost! #cryptography #doubleratchet Read more: https://matrix.org/blog/2018/10/25/olm-3-0-0-released/
