Quoting Greg Troxel (2015-11-13 17:43:06) > Nathan of Guardian <nat...@guardianproject.info> writes: > > Are you sure it was persisting key material? I think the idea with OMEMO > > is to support the Axolotl/TextSecure pre-key technique using XMPP > > infrastructure. This means, you can create a valid session key without > > the other party needing to be online. > > I guess I need to go reread the protocol. I don't understand how one > can create a session key that is used to send a message to a > perhaps-offline party can work unless the other party is persisting the > key needed to decrypt.
The basic idea is that you generate a bunch of pre-keys (your part of the diffie-hellman protocol) and store them in a server. When someone wants to communicate with you and you are not online fetch an unused pre-key from the server and write you a message with it and her part of the shared key: https://whispersystems.org/blog/asynchronous-security/ -- Ruben Pollan | http://meskio.net/ -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- My contact info: http://meskio.net/crypto.txt -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Nos vamos a Croatan.
signature.asc
Description: signature
_______________________________________________ OTR-dev mailing list OTR-dev@lists.cypherpunks.ca http://lists.cypherpunks.ca/mailman/listinfo/otr-dev
