Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Alice should verify her own encrypted messages #419

Open
gregscullard opened this issue Feb 26, 2020 · 0 comments
Open

Alice should verify her own encrypted messages #419

gregscullard opened this issue Feb 26, 2020 · 0 comments
Labels
P2

Comments

@gregscullard
Copy link
Contributor

Detailed Description
If Alice sends an encrypted message, she should be able to optionally specify if she wants to decrypt her own messages received from mirror so that any malicious activity is detected.

Actual Behavior
Alice checks signatures and hashes, but not the actual contents on the business message. This could lead to a case where her own state is out of sync with the intended recipients of her message:
-She assumes the message is correct and updates state
-Others will fail to decrypt and won't update state

Expected Behavior
Given an optional parameter, alice either assumes hash/signature is sufficient for verification or goes to the extra step of decrypting her own message.
@gregscullard gregscullard added bug Something isn't working P1 and removed bug Something isn't working labels Feb 26, 2020
@gregscullard gregscullard added P2 and removed P1 labels Mar 11, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
P2
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@gregscullard