nextleap-project / countermitm

thoughts on countering mitm-attacks on autocrypt
15 stars 5 forks source link

Refactor verified group: metadata in vc protocol #70

Closed azul closed 6 years ago

azul commented 6 years ago

No need to specify a separate key verification process for the verified group. We can reuse the one we already have and just include a bit of metadata.

Since we currently only use the group name to signal what Alice is about to do there is no need to bounce that info back and force In particular we do not need to protect against Bob altering the group name if Alice just stores it herself.

There was no evidence in the protocol thus far that Bob actually agreed to become a member of the group. This is still the case.

If we wanted to change it Bob would have to send a message to the group to confirm he wants to join. A signature or so will not do because the group members just learned Bobs key through the same mechanism.

azul commented 6 years ago

This PR builds on top of #69. Please review that one first.