Personally, I think this is the biggest weakness of the whole protocol. Note that BM prefix is used for recognition of the Bitmessage protocol.Īre past communications secure if your keys are stolen? No, there is no forward secrecy built in by default. For example: BM-2cSwb3miRwL6ZPeKoChP5z1Sqwe5GW2aHL is a valid address. Every client within a network try to decrypt and read all messages that passes through her connection, but only legitimate one with the corresponding private key can read the message.Ĭan you verify contact’s identities? Yes, the address of the recipient is actually RIPEMD-160 of the public key used for encryption. Bitmessage uses trustless peer to peer (P2P) network and the messages are redirected by every other user. Metadata as message subject are also encrypted.Įncrypted so the provider can’t read it? Yes, all the communication is end-to-end encrypted. Bitmessage uses Elliptic curve cryptography library PyElliptic to encrypt all messages. Bitmessage is a decentralized, encrypted, peer-to-peer, trustless communications protocol written in Python with Qt GUI.Įncrypted in transit? Yes, it is. I am going to analyze only open-source solutions and the first application is Bitmessage. Inspired by EFF’s Secure Messaging Scorecard I have decided to analyze some not so well-known secure messaging applications.
0 kommentar(er)
