I decided to take a closer look at the contest. But, Telegram will still be able to point to the contest and say, “Look! No one has won the contest, so our software is secure!” Naive users will believe Telegram, and they will feel safe using dangerously broken encryption.”
Neither users nor Telegram developers will learn anything from the contest results. Basically, if you can recover an email address that was encrypted with their secure messaging app, you can win $200,000 USD worth of Bitcoin. I’m not sure if it was in response to some good criticism, but Telegram recently announced a crypto contest. Obviously, I wouldn’t mention it on this blog if its crypto was perfect.
“Telegram is an encrypted instant messaging app for iOS and Android devices. The claims that the device is rooted / jailbroken are incorrect and misleading. In order to access the plain-text secret-chat database containing the messages, we used our implementation of CVE-2014-3153. EDIT: The following post * was not on a rooted or jailbroken device *.
0 kommentar(er)
