On Fri, Jan 23, 2015 at 1:57 AM, U.Mutlu <[email protected]> wrote:
> Back to the roots: hashed pw over MITM-safe sessions (SRP, SPEKE etc, ie. > PAKE). These aren't MITM safe. They're TOFU. They have no way to authenticate the server. When you enroll a PAKE account, if you're talking to a MITM server, you're toast. The MITM can then enroll with the real service on your behalf and transparently proxy everything through, except the MITM will have the real credentials, and your credentials will only work with the MITM. Also: passwords suck and need to go away. -- Tony Arcieri
_______________________________________________ Messaging mailing list [email protected] https://moderncrypto.org/mailman/listinfo/messaging
