I'm genuinely curious if this "Keybase Attack" on RSA signatures is possible: https://moderncrypto.org/mail-archive/messaging/2014/000809.html …
@bascule Isn't it very similar to TLS, where the ServerKeyExchange is signed using an unidentified key? And X.509? Am I misunderstanding?
-
-
@BRIAN_____ in X.509 you have a hierarchical PKI rooted in trusted certs to verify keys :P -
@bascule@BRIAN_____ That’s the default X.509 trust anchor concept but not the only one.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.