Follow

Gibt es die Möglichkeit seine OMEMO keys zu exportieren?

@beli3ver die meisten Clients bieten diese Möglichkeit nicht an, da die fehlerhafte Nutzung des Backups die Intaktheit des Cryptos gefährden würde.

@vanitasvitae

Isn't the preservation of old keys (and the respective plaintexts, the case being) rather questionable in the first place? Why would you deploy a #PFS method and immediately proceed to defeat its salient characteristic?

I just don't understand what's the idea behind this at all. 🤷

@beli3ver

@0 @beli3ver users want to backup their identity keys, which are kept indefinitely anyways. The keys that are responsible for pfs are deleted anyways.

There is active argument about whether or not "normal users" really need pfs.

@vanitasvitae

Ok, so it's the ID keys we're talking about, not the temporary keys used for encryption?

In which case, a user could choose not to store plaintext history in their device and therefore not self-defeat forward secrecy, correct?

@beli3ver

@beli3ver
Ja. Aber ist client-abhängig. Mit Gajim git es für jeden account eine
~/.local/share/gajim/omemo_*.db
und ein .png mit dem QR-Code, die können kopiert werden.
Die .db ist SQLite, kann also auch mit sqlitebrowser betrachtet und behandelt und ggf. exportiert werden.

Sign in to participate in the conversation
Mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!