|
|
Log in / Subscribe / Register

MiM

MiM

Posted Jul 27, 2006 3:51 UTC (Thu) by bryanr (guest, #25324)
Parent article: ScatterChat for encrypted instant messaging

Looks like ScatterChat takes the ssh approach to authentication--
blindly trust the initial key provided by a given entity, and
store it to ensure that same entity provides the same key
in the future.

That means the program can detect man-in-the-middle attacks, but
only when they are intermittent. A perfect on-going MiM will be
undetectable until the users verify key fingerprints via a secure,
auxillary channel.

Kudos to them for mentioning this caveat in the end-user docs

to post comments

MiM

Posted Jul 27, 2006 13:39 UTC (Thu) by cventers (guest, #31465) [Link]

http://www.philzimmermann.com/EN/zfone/index.html

I like the Zfone concept for dealing with unsecured key exchange - once
the call is established, the users read each other the other user's key
hash.

MiM

Posted Aug 1, 2006 0:58 UTC (Tue) by bluefoxicy (guest, #25366) [Link]

This is unfortunately true. The best route would actually be to use the user's PGP key; I've got one, I sign my e-mail with it by default. This would be useful because for confirmation the guy you're chatting with could send you an e-mail with an encrypted message; being able to read and reply to the message would signify that yes the correct key is in use.

A man-in-the-middle could easily replace things like "What's your e-mail address" and whatnot, as well as key exchanges, based on heuristics. j@boom.com could be detected, associated with a random e-mail and a direction, and get translated to the random address going out and from the random address coming in. This is easy to defeat but hey nobody is going to think about that.

But exchanging e-mails, replacing e-mail addresses in messages, paranoid key exchange... it's all irrelevant isn't it? Think about it; if you've got a GPG key already, it's probably tied to your e-mail. If you AND your friend already have GPG keys, they're probably BOTH tied to your e-mail. And further, you probably both already exchanged them, i.e. your mail client automatically downloaded it into your GPG keyring and it's already available.

The longer it goes on the easier it is to get caught; and a diverse set of key exchange and use mediums is going to expose a man in the middle unless he's got every pipe on the Internet in his control. Things like ssh or gaim-encryption suck like that, because they use their own little keys and no certificate authority or keyserver, making any attacks you want to carry out much simpler and more practical.


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds