hpk42
commented
6 years ago In verified groups and verified 1:1 chats the verified key is to be used no matter if there are new opportunistic autocrypt keys. Delta's default channel is opportunistic, though. If you don't explicitely ask for a verified chat then autocrypt logic will be applied (new keys overriding the old). There are all kinds of UI considerations around this ... not sure we need to discuss them here in the countermitm repo.
I assume we still use the latest keys we see. If a new Autocrypt key shows up after the verification it would be used and remove the verified contact checkmark. Or is the verification 'sticky'? Is there a warning? I don't think we have specified this yet.