Techly NewsGet the app

Get the latest tech news

Alacrity to Federated Cryptography


There are two mental models for designing a cryptosystem that offers end-to-end encryption to all of its users. The first is the Signal model. Predicated on Moxie’s notion that the ecosystem …

Note: The term “crypto agility” was already coined by people who never learned from the alg=none vulnerability of JSON Web Tokens and think it’s A-okay to negotiate cryptographic primitives at run-time based on attacker-controllable inputs. If your favorite client depends on a 4 year old version of the E2EE protocol library, you won’t be able to silently downgrade security for all of your conversation participants. If you’re designing something for the open source community, and don’t have the budget to hire professionals, I’ll respond to such inquiries when my time, energy, and emotional bandwidth is available to do so.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Alacrity

Alacrity

« Show HN: Shed Light on Your Go Binary Bloat with Go Size Analyzer
Iran's Pioneer Kitten hits US networks via buggy Check Point, Palo Alto gear »