Questions tagged [noise-protocol]
12 questions
6
votes
1 answer
How has WhatsApp addressed group member authenticity and forged acknowledgements since the 2018 "More is Less" paper?
I’ve been reading the 2018 paper “More is Less: On the End-to-End Security of Group Chats in Signal, WhatsApp, and Threema”, which outlines several interesting vulnerabilities in the group messaging protocols of Signal and WhatsApp at the time.
The…
ali khosravi
- 171
- 6
4
votes
0 answers
Are there any projects leveraging a combination of (1) Noise and (2) Signal / Double Ratchet to augment the former with per-message forward secrecy?
Are there examples (in code, or a blog post / writeup) of using Noise and Signal together?
Here is a link to Noise.
For example, using the Double Ratchet per each message to achieve forward secrecy, but leveraging Noise as a foundation for its…
user3325588
- 111
- 1
- 7
3
votes
1 answer
Does using Noise asynchronously weaken its security properties?
Can Noise be used asynchronously without weakening its security properties?
Specifically, there are two users, A and B, who communicate asynchronously by leaving messages for each other on an untrusted server, but they may never be online at the…
8n8
- 105
- 2
- 10
2
votes
1 answer
Noise NK1 pattern identity hiding
In the official documentation for the Noise Framework there is a section with an overview of the identity hiding for each pattern. The numbering of properties there, obviously, from weaker properties to strong ones, and the last property is:
An…
Mikhail Murugov
- 121
- 3
2
votes
1 answer
Why is static-static diffie hellman needed in Noise_IK?
TL;DR: Why is there a static-static diffie hellman in the Noise_IK handshake?
Hi,
I am currently trying to understand the WireGuard VPN protocol.
As you may know, it uses the Noise_IK handshake from the Noise Protocol Framework.
This handshake uses…
Henerii
- 23
- 2
1
vote
0 answers
Is it safe to reuse Noise static keys in different handshake patterns?
In the Noise protocol, is it safe to reuse static key pairs in different handshake patterns? Like using XK to communicate between client and server, and KK to communicate between clients, but with the same static keys.
8n8
- 105
- 2
- 10
1
vote
1 answer
AKE using Noise_NNpsk2 vs Noise_NKpsk2
I am working on an implementation based on the Disco library, which itself is based on Noise and strobe framework. The goal is to do bilaterally entity-authenticated key agreement with perfect forward secrecy. Disco already implements Noise_NNpsk2…
iMrFelix
- 111
- 2
1
vote
0 answers
whatsapp's live location ratchting
I've been reading WhatsApp's white paper (titled WhatsApp Encryption Overview), but I'm having trouble understanding the ratcheting method used for live location sharing (page 16) not the ones used in double ratchet algorithm(page 9). Can anyone…
ali khosravi
- 171
- 6
1
vote
0 answers
Why the public static key doesn't send in Noise KK Framework pattern?
I can’t figure out why the static public key of the initiator/recipient cannot be sent as plain text in the Noise KK pattern and what kind of cryptographic vulnerability does it provide?
For example, in the pattern Noise XX, the recipient's static…
Krik99
- 11
- 1
0
votes
1 answer
How to sign messages using the NOISE Protocol Framework?
I wanted to learn more about secure messaging and started a personal project using the libhydrogen library. From my understanding, instead of using public-key encryption, the library relies on the noise protocol framework to create ephemeral session…
Lando-L
- 103
- 3
0
votes
1 answer
How to Formalize Noise Protocol Messages
I try to understand the messages of the Noise Protocol Framework. The handshakes are based on Diffie-Hellmann key exchange.
This is an example for a handshake pattern:
-> e
<- e, ee, s, es
I try to formalize the handshake with mathematical…
schirrmacher
- 101
- 1
0
votes
1 answer
Does make sense utilize TLS and Noise Protocol in the same application?
Nowadays I work maintaining an web application written in Node.js and we use HTTPS with TLS 1.2. We have to implement a new feature related to security on this application, all HTTP messages must be encrypted, and we will have all messages encrypted…
Humberto Corrêa
- 101
- 3