You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
At the moment the message integrity is evaluated using an MAC scheme. We could switch to an asymmetric crypto based approach and have the sender sign the message. This would improve the security, as impersonations and MITM would become impossible (see issue #88), but it would also increase the complexity. We would need a mechanism to generate/import public/private keys as well as fingerprint validations of all other parties. @prasser@fnwirth What do you think?
The text was updated successfully, but these errors were encountered:
At the moment the message integrity is evaluated using an MAC scheme. We could switch to an asymmetric crypto based approach and have the sender sign the message. This would improve the security, as impersonations and MITM would become impossible (see issue #88), but it would also increase the complexity. We would need a mechanism to generate/import public/private keys as well as fingerprint validations of all other parties.
@prasser @fnwirth What do you think?
The text was updated successfully, but these errors were encountered: