HN2new | past | comments | ask | show | jobs | submitlogin

Whoa, nice to see there's some progression finally! It's weird the blog appears to discuss key insertion, but not MITM attacks. Is there an official source that explicitly states it protects from those too? Also if it's for MITM too, is there a TOFU warning or is it only for a changing fingerprint, and is the warning soft (BTW the fingerprint just changed) or hard (please accept the new keys/fingerprint)? Can you mark the fingerprints verified like in Signal?

https://restoreprivacy.com/apple-to-introduce-contact-key-ve... apparently states that but I'd rather have something official.

Also it seems to be opt-in, at least for now https://9to5mac.com/2023/10/27/turn-on-contact-key-verificat...



Unfortunately I have no idea, or else I would've written a longer comment!




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: