Implement TOFU for chat initializations #8
silentsilas
commented
Owner
- When a message is received, the receiving client checks the sender's public key. If it's the first message from that sender, the client stores the public key and associates it with the sender's name (this is the "trust on first use" part).
- For subsequent messages, the client checks the sender's public key against the stored key for that name. If the keys match, the message is accepted. If they don't match, the client displays a warning to the user.
- They can either accept the new public key, or abort the attempt to connect
* When a message is received, the receiving client checks the sender's public key. If it's the first message from that sender, the client stores the public key and associates it with the sender's name (this is the "trust on first use" part).
* For subsequent messages, the client checks the sender's public key against the stored key for that name. If the keys match, the message is accepted. If they don't match, the client displays a warning to the user.
* They can either accept the new public key, or abort the attempt to connect
silentsilas
added the enhancement
label
silentsilas
added this to the MVP project
Loading…
Reference in New Issue
No description provided.
Delete Branch "%!s(<nil>)"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?