Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionNext revisionBoth sides next revision |
pgpfan:minimalist [2020/05/30 20:21] – more accurate point b.walzer | pgpfan:minimalist [2020/06/11 01:08] – index b.walzer |
---|
* Signal has at least 2 systems for creating [[pgpfan:forward_secrecy|forward secrecy]]. Those systems require a system to deal with loss of synchronization. | * Signal has at least 2 systems for creating [[pgpfan:forward_secrecy|forward secrecy]]. Those systems require a system to deal with loss of synchronization. |
* A Signal session requires the storage and maintenance of a lot of state information. | * A Signal session requires the storage and maintenance of a lot of state information. |
* Signal constantly does cryptographic operations. | * Signal normally uses a server based "prekey" system to deal with the case where a client is offline and thus is unable to negotiate. |
* Signal achieves [[pgpfan:repudiability]] with a triple Diffie-Hellman key exchange. | * Signal achieves [[pgpfan:repudiability]] with a triple Diffie-Hellman key exchange. |
| * Supporting the SIgnal protocol in practice requires a separate system to store past messages. Since this is at odds with [[forward_secrecy|forward secrecy]] such a system will end up with a system to delete old messages. |
| |
| The Signal Protocol is built on ideas from the [[pgpfan:off_the_record|Off the Record]] (OTR) protocol. Interestingly enough, OTR was intended to improve PGP by adding extra functionality. Signal adds functionality on top of the OTR functionality. So Signal could be considered the result of an attempt to improve something by making it more complex. I am one of those that feel that reliability and security are best achieved with simple systems. PGP is the best answer to that right now. |
| |
| [[pgpfan:index|PGP FAN index]] |
| |
The Signal Protocol is built on ideas from the [[pgpfan:off_the_record|Off the Record]] (OTR) protocol. Interestingly enough, OTR was intended to improve PGP by adding extra functionality. Signal adds functionality on top of the OTR functionality. So Signal could be considered the result of an attempt to improve something by making it more complex. I am one of those that feel that reliability and security are best achieved with simple systems. | |
| |