Is there a difference between the strength of Telgram's (MTproto) forward secrecy and Signal's?

lstk44

4/8/23, 12:19 PM

If I understood correctly, the Signal protocol generates a new key after every message sent and forgets the previous one. Telegram, on the other hand, renews the key only after 100 messages or one week. Thus, is there a certain attack window (1 week / 100 messages) with Telegram's protocol?

166

0 + 0

encryption

protocol-design

diffie-hellman

signal-protocol

kelalaka

4/8/23, 4:15 PM

Note that once we have this [The backdoor of Telegram on Diffie-Hellman Key Exchange and possibly other examples?](https://crypto.stackexchange.com/q/87532/18298), I don't trust on the Telegram. Only expecting that there is a hidden backdoor deeper somewhere.

Score:2

Crypto

Ali Hassan

4/8/23, 5:04 PM

I think renew keys after a key generation is problematic because assume that key is already generated by the application. If somehow generate key pass through a function $H(x) = B(preImg(x))$. In simple language a function that somehow analysis key pattern and calculate $n$ pre-images of $x$.

0 + 0

kelalaka

4/8/23, 5:47 PM

How does one gets the preimage on [SHA-256](https://core.telegram.org/api/end-to-end)

Ali Hassan

4/9/23, 5:28 AM

https://crypto.stackexchange.com/questions/8786/sha-256-probabilistic-partial-preimage-possible

kelalaka

4/9/23, 8:23 AM

I know that but how this really occurs in your answer. I want to see a robust answer, not something like I think...

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: Is there a difference between the strength of Telgram's (MTproto) forward secrecy and Signal's?

TH: มีความแตกต่างระหว่างความแข็งแกร่งของความลับในการส่งต่อของ Telgram (MTproto) และของ Signal หรือไม่

RO: Există o diferență între puterea secretului direct al Telgram (MTproto) și cel al semnalului?

RU: Есть ли разница между силой прямой секретности Telgram (MTproto) и Signal?

VI: Có sự khác biệt giữa sức mạnh bí mật chuyển tiếp của Telgram (MTproto) và Signal không?

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.