On 2013-07-05, at 6:59 AM, Cool Hand Luke <coolhandl...@coolhandluke.org> wrote:
> Signed PGP part > On 07/05, Nadim Kobeissi wrote: > > On 2013-07-05, at 3:15 AM, Jacob Appelbaum <ja...@appelbaum.net> wrote: > > > Has there been a rotation of the certificate and keying material for > > > all services that serve CryptoCat chat traffic? > > > > Rest assured we're working on it as an extra precaution (as mentioned > > in the blog post). Also, our services use SSL forward secrecy. Just an update that we've finished rotating the SSL keys: https://twitter.com/cryptocatapp/status/353018036510404608 > > any chance that you'll be using an hsm (preferably) or a smart card (at > the least) for generation and storage? An EntropyKey is used, but no other special hardware is employed. Aside from this, typical precautions are taken. NK > > - -chl > > - -- > cool hand luke > > > > _______________________________________________ > cryptography mailing list > cryptography@randombit.net > http://lists.randombit.net/mailman/listinfo/cryptography
signature.asc
Description: Message signed with OpenPGP using GPGMail
_______________________________________________ cryptography mailing list cryptography@randombit.net http://lists.randombit.net/mailman/listinfo/cryptography
