Bug#766936: [pkg-otr-team] Bug#766936: [libotr5] Extended description: "Deniability" is not a feature per se

2014-10-30 Thread Filipus Klutiero
On 2014-10-29 05:49, Ian Goldberg wrote: On Tue, Oct 28, 2014 at 08:56:07PM -0400, Filipus Klutiero wrote: I am not convinced this is a good thing, but for sure the current phrasing is incorrect. According to the technical paper, OTR would merely send the key to the other participant, so only hi

Bug#766936: [pkg-otr-team] Bug#766936: [libotr5] Extended description: "Deniability" is not a feature per se

2014-10-29 Thread Ian Goldberg
On Tue, Oct 28, 2014 at 08:56:07PM -0400, Filipus Klutiero wrote: > I am not convinced this is a good thing, but for sure the current > phrasing is incorrect. According to the technical paper, OTR would > merely send the key to the other participant, so only him could forge > messages, unless someo

Bug#766936: [pkg-otr-team] Bug#766936: [libotr5] Extended description: "Deniability" is not a feature per se

2014-10-28 Thread Filipus Klutiero
Hi Harlan, On 2014-10-26 23:08, Harlan Lieberman-Berg wrote: On Sun, 2014-10-26 at 21:22 -0400, Filipus Klutiero wrote: Rather than advertising 2 independant items, these could be merged in a "Deniable authentication" item which would contain both sublists. One reason why I think "deniability"

Bug#766936: [pkg-otr-team] Bug#766936: Bug#766936: [libotr5] Extended description: "Deniability" is not a feature per se

2014-10-28 Thread intrigeri
Hi, Ximin Luo wrote (28 Oct 2014 01:11:27 GMT) : > Both of you are right in some degree. Deniability is indeed a secondary > property of > the underlying authentication system (note: *not* encryption system as Harlan > said). > It makes no sense without authentication. However, I'm neutral as to

Bug#766936: [pkg-otr-team] Bug#766936: Bug#766936: [libotr5] Extended description: "Deniability" is not a feature per se

2014-10-27 Thread Ximin Luo
On 27/10/14 03:08, Harlan Lieberman-Berg wrote: > On Sun, 2014-10-26 at 21:22 -0400, Filipus Klutiero wrote: >> Rather than advertising 2 independant items, these could be merged in a >> "Deniable authentication" item which would contain both sublists. > > One reason why I think "deniability" is i

Bug#766936: [pkg-otr-team] Bug#766936: [libotr5] Extended description: "Deniability" is not a feature per se

2014-10-26 Thread Harlan Lieberman-Berg
On Sun, 2014-10-26 at 21:22 -0400, Filipus Klutiero wrote: > Rather than advertising 2 independant items, these could be merged in a > "Deniable authentication" item which would contain both sublists. One reason why I think "deniability" is important as a separate feature is that it is differentia

Bug#766936: [libotr5] Extended description: "Deniability" is not a feature per se

2014-10-26 Thread Filipus Klutiero
Package: libotr5 Version: 4.1.0-1 Severity: minor The extended description contains: OTR allows you to have private conversations over IM by providing: [...] - Authentication - You are assured the correspondent is who you think it is. - Deniability - The messages you send do _not_ h