-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 I've seen little or no discussion of Bitmessage, and was wondering what thoughts - pro or con - people have of it: https://bitmessage.org/wiki/Main_Page I've got it up and running and have exchanged messages with a friend and well as a few other folks testing the waters. One thing I like about it, is that it seems at first glance to not suffer from the same sort of traffic analysis issues that plague regular email; to me, the traffic analysis problems are a bigger issue than message encryption. One could also paste PGP/GPG or other encrypted content into Bitmessage for your super duper secret stuff where you are concerned the recipients machine is compromised. There's apparently a standard email gateway for it also: https://bitmessage.ch/ Tho, that may bring you back to the problems of traffic analysis. I'd also love to see more mix network stuff getting developed so we could help secure against traffic analysis of existing systems. Tom Ritter's talk on analyzing mix network traffic was quite cool: http://ritter.vg/blog-deanonymizing_amm.html http://ritter.vg/blog-deanonymizing_amm_followup1.html But anyhow, Bitmessage; yay or nay? Dave BM-2D9fgf9MeGhq9Fxcwg1k2W1C179KJuUEFg - -- -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.20 (MingW32) iQEcBAEBAgAGBQJSSRByAAoJEDMbeBxcUNAeevIH/3RFdqhbuKtlB4ZraFH531zE hdXHfQFOPhAvpV2SjIscm3YMLWnDMR2ap5zRrIZ6OSPThVNa7339q87ITU4sRBAs yCXHJaEFiT/kY/IfGr8PeYLrUegSgY41iGjgYekkZUfIrQdXwlA7afMr4XZz4DKP XsrpE3Mjq8tw9JOgB3q8VzMOaDuCOyIceFxyGiDhlwTlM1Imy4NPGkaToAvkhg4C 51MmXjRW/L+hBhjyeCJ0iG4o1YOhaOIVocsHXYy7n3V7mHmwvrS86cF1i0wpxAxM 3Q/7N7FNM57LEHBgU8xLsGkrmY/FLk0hZLPOz3ZClefhjaQIE9jpz8GHKCXziSw= =8xN+ -----END PGP SIGNATURE-----
Hoy, I have found some relatively long thread https://bitmessage.org/forum/index.php?topic=1666.0 with security analysis and it does not seems like really rock solid protocol. My personal experience is that most of the people I have tried BitMessage with where not able to tolerate really long and unpredictable latency of messages. During first week of tests we have tried to send like 150 messages with friends and only circa half of them where delivered, even none of us turned off client. If you are not activist with month of time, to deliver all of your followers invitation to prepared demonstration against spying on emails, there is no use for this in the way, how it is implemented. Another problem was -+2days of time, before client was fully synced with network. In case, I'm not connected few weeks and than I need to wait 2 days again to fully sync... no use. But it was just first impression, client deleted from hdd. ~ Tomas Dne 30.9.2013 7:47, d.nix napsal(a):
I've seen little or no discussion of Bitmessage, and was wondering what thoughts - pro or con - people have of it:
https://bitmessage.org/wiki/Main_Page
I've got it up and running and have exchanged messages with a friend and well as a few other folks testing the waters. One thing I like about it, is that it seems at first glance to not suffer from the same sort of traffic analysis issues that plague regular email; to me, the traffic analysis problems are a bigger issue than message encryption. One could also paste PGP/GPG or other encrypted content into Bitmessage for your super duper secret stuff where you are concerned the recipients machine is compromised.
There's apparently a standard email gateway for it also:
Tho, that may bring you back to the problems of traffic analysis.
I'd also love to see more mix network stuff getting developed so we could help secure against traffic analysis of existing systems. Tom Ritter's talk on analyzing mix network traffic was quite cool:
http://ritter.vg/blog-deanonymizing_amm.html http://ritter.vg/blog-deanonymizing_amm_followup1.html
But anyhow, Bitmessage; yay or nay?
Dave
BM-2D9fgf9MeGhq9Fxcwg1k2W1C179KJuUEFg
-- “Borders I have never seen one. But I have heard they exist in the minds of some people.” ― Thor Heyerdahl www...................http://overdrive.a-nihil.net CellPhone.............00420-721-007-507 twitter...............https://twitter.com/#!/idoru23 GoogleTalk/Jabber.....tpetru@gmail.com blog..................http://d8ofh8.blogspot.com last.fm...............http://www.last.fm/user/overdrive23 GnuPG public key......http://overdrive.a-nihil.net/overdrive.txt GnuPG key FingerPrint.072C C0AD 88EF F681 5E52 5329 8483 4860 6E19 949D
participants (2)
-
d.nix
-
Tomas Overdrive Petru