Filip/matrix-spec
1
0
Fork 0
mirror of https://github.com/matrix-org/matrix-spec synced 2026-03-09 04:54:09 +01:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

credit David Wong

Browse source
This commit is contained in:
Hubert Chathi 2020-06-02 17:31:15 -04:00
parent c196cbcf42
commit f8e4bdfbaf
1 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
proposals/xxxx-sas-v2.md
View file

@ -11,6 +11,9 @@ generation of the SAS string by including it in the info parameter of the HKDF.
Thus if an attacker sends them different public keys, the info parameters will Thus if an attacker sends them different public keys, the info parameters will
be different, and so the key generated by the HKDF will be different. be different, and so the key generated by the HKDF will be different.
Thanks to [David Wong](https://twitter.com/cryptodavidw) for identifying the
issue, disclosing responsibly, and for helping to design the fix.
## Proposal ## Proposal
A new `key_agreement_protocol`, `curve25519-hkdf-sha256` is introduced, and A new `key_agreement_protocol`, `curve25519-hkdf-sha256` is introduced, and