Search Mailing List Archives


Limit search to: Subject & Body Subject Author
Sort by: Reverse Sort
Limit to: All This Week Last Week This Month Last Month
Select Date Range     through    

[liberationtech] About Telegram

Tony Arcieri bascule at gmail.com
Thu Feb 20 15:16:50 PST 2014


On Thu, Feb 20, 2014 at 2:59 PM, Maxim Kammerer <mk at dee.su> wrote:

> You called the contest a farce and the product a snake oil based on what
>

The fact that their scheme is at best equivalent to CBC mode (they even
note this in their technical FAQ. I can only guess it's something they
didn't know when they started developing their scheme), but much more
convoluted, and does not provide the integrity guarantees / IND-CCA2
security of an authenticated encryption mode. Off-the-shelf authenticated
encryption modes like GCM or (EC)IES address all of these problems. Their
scheme is not only needlessly convoluted, but completely unnecessary, and
at worst insecure.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.stanford.edu/pipermail/liberationtech/attachments/20140220/357675be/attachment.html>


More information about the liberationtech mailing list