Sunday, August 03, 2014

tox, from 4chan

https://tox.im/


Every peer is identified by a curve25519 public key. To add someone as a friend, you add that public key.


Connections between friends are encrypted.


http://ift.tt/1zfgaWM


is the crypto used.


http://ift.tt/1uXcFFT...


describes the protocol used to connect securely to friends after they find themselves.


This protocol has PFS, message padding to prevent length based leaking and should be immune against replay attacks.


What makes it secure is that you know the long term public key of your friends making it really easy for the software to establish secure connections to them.


from the discussion here:


http://ift.tt/1oXcrdl






from Lizard's Ghost http://ift.tt/1lpC55z

No comments:

Post a comment