@bascule That's a bit disappointing. I never liked the support for uploading your private key, but was hoping they had the rest right.
-
-
-
@adamcaudill I think it may be possible to produce fake keys which still verify against a tweeted signature -
@bascule Partial hash collision, as they are only using part of the SHA256 hash? -
@adamcaudill the security of a digital signature algorithm comes from the key(s). Signatures themselves may collide under different keys
End of conversation
New conversation -
-
-
@bascule I think I read about that in the Incredibly Unsurprising Weekly News -
.
@TimKrajcar Keybase, brought to you by people who the@EFF had to remind that SSL is a gooid idea: https://www.eff.org/deeplinks/2012/02/hey-okcupid-how-about-some-ssl-love … - End of conversation
New conversation -
-
-
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.