Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Project Development
Re: How many would be interested to have a device that encrypt directly what u type?
by
Borilla
on 12/06/2021, 07:30:38 UTC
Quote from: eckmar on June 11, 2021, 01:31:11 PM
Quote from: Borilla on June 10, 2021, 09:39:09 PM
Quote from: eckmar on June 09, 2021, 07:34:22 PM
Quote from: Borilla on June 09, 2021, 04:44:11 PM
I had an idea about my device: offer plans to build it yourself. Buy your components, and build it. Reading about Anom today makes me upset that simple multiplication on a device could have prevented all this. Seeing also that so much money is put into security... I don't understand why nobody has built such thing yet.
My device has the convenience to work immediately with no previous data/key shared between the protagonists, with an en/decryption key by key (you can chat live and decrypt any word real time). But a scheme with shared data/key and the whole message encrypted and  then decrypted is much simpler to realize and as safe (just less cool)



How do you plan to accomplish that without key exchange? One of the most important elements of secure communication is key exchange, there are even algorithms developed to do just that. If you are not going to do that, then you must set a pre shared key when you ship this so called device. Even if you don't do that, and want users to generate keys themselves, what are you going to do then? How are you going to input the public key of other party into the device securely? (Assuming you are talking about asymmetric encryption)

Both generate their own secret and public keys. Then the devices can listen and extract a number from the same source on the internet: like NIST beacon or any blockchain. This is how you can start chatting right away with any one owning the same device.

If the device is connected to the internet, and is getting keys from internet, that defeats purpose of it. Man in the middle attacks are much simpler to perform than breaking the encryption. I think your imagination got away from you, you need to be more realistic.

I was trying to answer your previous question. But maybe a better answer would have been that there's no key exchange. And in order to prevent a future attack the devices listen a common source of entropy. It doesn't matter that everyone knows the source because then the devices use their secret keys. To answer all questions I would have to reveal the whole thing. It's 100% proof. For me it's the only way to have a 100% certainty that your messages are not decrypted. It's encrypted as soon as it leaves your keyboard. It is decrypted in a separate container in the device. You can even use a post quantum encryption. You can change your keys and encryption anytime.