Security Cryptography Whatever

Elon's Encrypted DMs with Matthew Garrett

May 29, 2023

52:28

AI Chapters

Episode notes

Introduction

3min

The Signal Stock in the Twitter App for Android

5min

The Fragility of GCM

2min

The Diffie-Hellman Key Exchange Problem

2min

How to Use Triple Diffie-Hellman to Authenticate Key Exchange

3min

TensorNoth's Encryption for Android App Backup

3min

Encrypted Conversation Keys

5min

The Twizzer Protocol Is Not Ideal for Encrypted Conversations

2min

Twitter's Constraints on Encrypting Conversation Keys

2min

10.

The Importance of Trusting the Server

5min

11.

The Importance of Forward Secrecy in Signal

4min

12.

The Importance of Metadata Security on Twitter

2min

13.

Encrypted Messages: The Future of Encryption

2min

14.

Twitter 2.0's Unauthenticated E-Curve

2min

15.

The Importance of Double Ratchet Cryptography

2min

16.

How to Build an End Encrypted Messaging System

4min

17.

Twitter's Encrypted DM Feature Is a Threat Model for Twitter Users

2min

18.

Twitter's DMs on Mastodon Are Bad

3min

Are Twitter’s new encrypted DMs unreadable even if you put a gun to Elon’s head? We invited Matthew Garrett on to do a deep decompiled dive into what kind of cryptography actually shipped.

Transcript:
https://securitycryptographywhatever.com/2023/05/29/elons-encrypted-dms-with-matthew-garrett/

Links:
https://mjg59.dreamwidth.org/66791.html
https://help.twitter.com/en/using-twitter/encrypted-direct-messages
https://www.techdirt.com/2023/05/11/twitter-launches-not-actually-encrypted-encrypted-dms/
BrokenKDF2BytesGenerator: https://github.com/bcgit/bc-java/blob/master/prov/src/main/java/org/bouncycastle/jce/provider/BrokenKDF2BytesGenerator.java#L70
Analysis from sweis: https://twitter.com/sweis/status/1657082478727933954?s=20
https://signal.org/docs/specifications/x3dh/
https://signal.org/docs/specifications/doubleratchet/
https://support.signal.org/hc/en-us/articles/360007059752-Backup-and-Restore-Messages
Trail of Bits has not audited nor signed a contract yet, per Platformer: https://www.platformer.news/p/why-you-cant-trust-twitters-encrypted

"Security Cryptography Whatever" is hosted by Deirdre Connolly (@durumcrustulum), Thomas Ptacek (@tqbf), and David Adrian (@davidcadrian)

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Get the app