Proof that exchanged variable was not modified with MITM

user369070

3/26/23, 10:04 PM

If I understand correctly, the core of man in the middle attack is in being able to replace an exchanged variable (public key) with another.

Hence to detect a MITM one needs to check if the exchanged public key is truly same for both A and B, and to defend against MITM one needs to be able to exchange a variable without it being modified.

I'd imagine it should be possible to detect a change in variable by using it to determine future information exchange rules (for example data order, or size of packets) for A and B, where next packet can only be sent once a response arrived. This way, the MITM would be forced to create (believable)replies to allow data exchange to continue. The MITM naturally desires to gather information from the exchange, and hence does not know the best possible replies. Also, as communication progresses, the divergence in exchanged information grows and hence becomes more visible (not sure how? Sanity checks?). This way it should be possible to detect MITM.

Am I correct or is there a flaw in my reasoning?

0 + 0

public-key

man-in-the-middle

encoding

Manish Adhikari

3/28/23, 10:15 AM

Why all this fuss, which gives barely any defense from an algorithm which should be easily able to gather and quickly generate believable false response, when a much better option of using freely available standards like TLS or signal protocol already does a much better job

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Proof that exchanged variable was not modified with MITM

TH: พิสูจน์ว่าตัวแปรที่แลกเปลี่ยนไม่ได้ถูกแก้ไขด้วย MITM

RO: Dovada că variabila schimbată nu a fost modificată cu MITM

RU: Доказательство того, что замененная переменная не была изменена с помощью MITM

VI: Bằng chứng rằng biến được trao đổi không bị sửa đổi với MITM

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.