-
topgun
Hi, is there a proposal for encryption in XMPP which is quantum proof and still with forward secrecy?
-
jonas’
there are few cryptographers in our community, so if anything, we'd be using stuff someone else already defined
-
jonas’
unless MLS is going to be quantum proof, I cannot see anything in that regard on the horizon.
-
topgun
I mean not only for transport but also for storage, like omemo
-
jonas’
(omemo has nothing to do with storage)
-
topgun
But If I encrypt with omemo, people/servers who are storing my messages, and also clients which store then, cannot read it unless they are intended by me to do so. That's what I mean
-
jonas’
OMEMO only protects transit
-
mathieui
jonas’: "storage" in the MAM archive
-
Menel
If the attacker didn't see the key exchange, only the files on disk at a later time, then it is save. Symmetrical encrypted is already quantum secure. Only the assymetric key exchange is *maybe* *hypothetically* *if quantum processor is really fast* vulnerable.
-
r00tobo
does that mean any file I send with http file upload is not encrypted inside the server storage ?
-
Menel
If you use omemo, then it is encrypted with a quantum secure encryption™️ on disk
-
Menel
(aes)
-
r00tobo
so server operator can't see/read the file on the server ?
-
Menel
Yes
-
Menel
The key to decrypt is only shares with your peer over omemo
-
Menel
Not uploaded with the file
-
Menel
https://xmpp.org/extensions/xep-0454.html
-
jonas’
mathieui, MAM archive is in transit :-)
-
mathieui
true
-
topgun
> If the attacker didn't see the key exchange, only the files on disk at a later time, then it is save. Symmetrical encrypted is already quantum secure. > Only the assymetric key exchange is *maybe* *hypothetically* *if quantum processor is really fast* vulnerable. What's the name of the algorithm XMPP uses for quantum proof encryption? ↺
-
Menel
I talked about AES256 topgun
-
Menel
That's what the payload is encrypted with, in omemo
-
Menel
And for the file upload....
-
topgun
And for assymetric crypto, which algo is quantum resistant?
-
Menel
Non, as was already discussed and answered some messages above
-
Menel
None in use here, I meant. There are many ideas, unrelated to xmpp. https://en.wikipedia.org/wiki/Post-quantum_cryptography
-
jonas’
mathieui, why I'm insisting on "in transit" is that the OMEMO architecture with its forward secrecy basically makes it impossible to also use it for local (client-side) storage of messages. Which is another risk of exposure you need to take into account if you already worry about quantum.
-
jonas’
(unlike OX encryption for instance)
-
middle East
Hello
-
topgun
Hi
-
root
Hello
-
Trung
Chào
-
blue
Just in case: Is there anyone interested in helping out with a c++ qt desktop messenger?
-
meson
blue: aka Kaidan?
-
blue
no, unfortunately not. The project is called Squawk (https://git.macaw.me/blue/squawk), it's QWidget based
-
emus
blue: btw. have you listed it the xsf software.json?
-
blue
no, didn't yet, feel a bit ashamed to do it at it's current upstream stage)
-
emus
I think no one will blame or or say something. But I think its important to list activities