[Security] Gajim 0.12's E2E encryption UI
js-xmpp-security at webkeks.org
Sat Aug 23 03:39:11 CDT 2008
Am 23.08.2008 um 00:34 schrieb Pedro Melo:
> As for UI for the SAS exchange, I'm partial to the use of the
> Mnemonic encoder with a GUI like this: http://mooseyard.com/Jens/2008/04/cloudy-verification/
> (page down, about three or four screens).
That idea is pretty smart. The user can't just click ok. The other,
wrong combinations of words a generated locally, I hope? But what
about the case clicking the right one without verifying? With just a
few possible answers, that's quite likely.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 801 bytes
Desc: This is a digitally signed message part
Url : http://mail.jabber.org/pipermail/security/attachments/20080823/12fe3645/attachment.pgp
More information about the Security