Padding isn’t anything special. Most practical uses of block ciphers require it.
Comment on Why Signal’s post-quantum makeover is an amazing engineering achievement
lemmee_in@lemmy.world 1 day agoSignal puts a lot of effort into their threat model that assumes a hostile host (i.e. AWS). That’s the whole point of end to end encryption, even if the host is compromised the attackers do not get any information. They even go as far as padding out the lengths of encrypted messages so everyone looks like they are sending identical blocks of data
frezik@lemmy.blahaj.zone 1 day ago
victorz@lemmy.world 1 day ago
sending identical blocks of data
Nitpicking here but assuming from the previous words in your comment that you mean blocks of data of identical length.
Although it should be as if we are sending multiples of identical size, I suppose.
Anyway, sorry for nitpicking.
shortwavesurfer@lemmy.zip 1 day ago
I’m assuming that they were more referring to the outage that occurred today that pulled a ton of the internet services, including signal offline temporarily.
You can have all the encryption in the world, but if the centralized data point that allows you to access the service is down, then you’re fucked.
heysoundude@eviltoast.org 21 hours ago
That was my point. But as somebody else pointed out here, the difficulties in maintaining the degree of security we currently enjoy as Signal users starts to get eroded away