nextleap-project / countermitm

thoughts on countering mitm-attacks on autocrypt
15 stars 5 forks source link

group: deal with key updates and compromise #77

Closed azul closed 6 years ago

azul commented 6 years ago

Addresses #76

hpk42 commented 6 years ago

finished my review -- added a few comments. i suggest to more cross-reference keyhistory and the verified-key-attack scenarios. By pointing to keyhistory, it's more obvious why going about keychanges opportunistically still maintains an overall high level of security against active attacks.

azul commented 6 years ago

@hpk42 I left two conversations unresolved because I would like your feedback on my solutions there.