WhatsApp Key Transparency with Jasleen Malvai and Kevin Lewi
Security Cryptography Whatever
00:00
The Drawbacks of Signature Chains
Can we have these like signature chains? Like, yeah, your old public key signs, you public key. And if it's not able to sign that it's not a valid public key. But then that also seemingly inevitably allows the server to just do the same thing if they want to launch an attack. So we don't do that. Yeah. It would be interesting. Is there a way to kind of get around this? Because I totally agree. Right now, yeah, so a lot of this is focused on the transparency of it,. We're more about like, okay, you say this is the correct key that we're going to show everyone.
Transcript
Play full episode
