In practice I doubt any non-trivial numbers of people will ever compare codes by reading out such a number. 12 words seems so much more friendly, at least to English speakers, than a 50 digit number. I wonder if this is the first inkling of a post-TLS future?Ģ) It's a shame to see key words be killed off by internationalisation concerns. Based on a couple of minutes Googling this seems to be a brand new one-man protocol from Trevor Perrin (the same guy who did Axoltl on which Signal is based). A few thoughts:ġ) They seem to have replaced TLS/SSL between client and server with "Noise Pipes". If a hacker tries to hack and read the messages, they would fail because of the encryption.This is really excellent.No third part, including WhatsApp can intercept and read the message. The message can only be unlocked by the private key of the receiver. The server is only used to transmit the encrypted message.The public key encrypts the senders message on the phone even before it reaches the centralised server.The private key must remain with the user whereas the public key is transferred to the receiver via the centralised WhatsApp server.The encryption process takes place on the phone itself. When the user first opens the WhatsApp, two different keys (public & private) are generated.The following steps describes the working of E2EE when two people communicate on WhatsApp. WhatsApp uses Signal Protocol developed by Open Whisper Systems. The messages are secured with locks, and only the recipient has the special key to unlock and read the messages. Nobody in between, not even WhatsApp, can read the messages. WhatsApp's end-to-end encryption ensures that only you and the person you're communicating with can read what's sent.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |