[liberationtech] About Telegram
Tony Arcieri
bascule at gmail.com
Fri Feb 21 11:35:33 PST 2014
On Friday, February 21, 2014, Maxim Kammerer <mk at dee.su> wrote:
> All I see is snobbishness of people who have typical Western fear of
> steering from "authorized" engineering approaches. The people are
> quick to judge some unknown foreign developers incompetent
As far as I can tell, you are the only person speaking on this thread who
wants to spin it into a discussion of Westerners, xenophobia, etc.
I'm talking about math.
Telegram is not IND-CCA2 secure. Period. They have some extra sprinkles
they claim prevents adaptive chosen ciphertext attacks. They have no formal
proof of these claims.
Authenticated encryption schemes are IND-CCA2 secure by design.
Telegram's scheme is inferior. It's mathematically inferior. Period. It has
nothing to do with nationalism. It has everything to do with math.
Telegram is an inferior design as compared to the standard designs being
used in common practice.
--
Tony Arcieri
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.stanford.edu/pipermail/liberationtech/attachments/20140221/fb2d74f2/attachment.html>
More information about the liberationtech
mailing list