Active Topics
-
How many of you still use N900 as main phone? (592)
to Community by bradvesp - 19 hrs, 11 mins ago -
Which is the best N95? What software modifications could be made to it? (3)
to General by Kalatti - 1 day, 4 hrs ago -
Installing CSSU Stable in year 2024 (2)
to Maemo 5 / Fremantle by teroyk - 1 day, 12 hrs ago -
Porting apps to Leste (34)
to Maemo 7 / Leste by Arno_11 - 1 day, 21 hrs ago -
[ANNOUNCE] CSSU-thumb thread - stable Thumb2 on N900 (2,266)
to Maemo 5 / Fremantle by pali - 3 days, 13 hrs ago -
Firefox with Leste (7)
to Maemo 7 / Leste by teroyk - 3 days, 18 hrs ago - more...
|
2014-01-02
, 18:53
|
|
Posts: 1,808 |
Thanked: 4,272 times |
Joined on Feb 2011
@ Germany
|
#22
|
Originally Posted by pichlo
It is doable, but only if (as in necessary, not sufficient) the key/password is typed by the user and never pre-stored on the phone. Even with a hardware keyboard like in the N900 you don't want to type 160 (or whatever) additional characters (for which no auto-completion will help, the key being truly random) every time you want to send an SMS.
Not quite. You can pre-generate say a thousand OTPs and give them to both parties, then use (and destroy) them one by one. In case of secure SMS, the OTPs have a finite length so not even too much resources spent. Of course keeping a bunch of OTPs for future use has its own problems but at least it is doable.
So, doable in principle, but not in practice. Plus see @strongm above.
|
|
2014-01-02
, 23:45
|
|
Posts: 2 |
Thanked: 2 times |
Joined on Dec 2013
@ Gothenburg
|
#23
|
Originally Posted by reinob
I don't think we assume the phone to be compromised here, so storing a very long key on the phone in advance and then using it piece by piece is not problematic, if we're only concerned about end-to-end security (i.e. that no malicious base station or similar can read the messages).
It is doable, but only if (as in necessary, not sufficient) the key/password is typed by the user and never pre-stored on the phone.
If we assume that the attacker also controls the phone anyway, then he can just see the message directly.
To be clear, the idea is still extremely impractical, but password entry should not be the problem.
| The Following User Says Thank You to dschoepe For This Useful Post: | ||
Please stop saying this. Vigenere is breakable. What you are describing is more correctly referred to as a one time pad (as other have suggested) .
There are a number of problems with implementing effective one time pad solutions, e.g.
1) securely communicating the key to the recipient
2) key must be kept secure
2) key must only be used once
3) key must be completely random
4) key must be at least as long as the message
Basically, as Steve Bellini said: "As a practical person, I've observed that one-time pads are theoretically unbreakable, but practically very weak. By contrast, conventional ciphers are theoretically breakable, but practically strong."