Replying to Avatar Max

Thanks.

This scheme does NOT have forwarded Secrecy of the receiver, right?

I guess there is forward Secrecy for the sender due to the ephemeral key of the gift wrap. But the receiver has only a single long term static key.
Avatar
Vitor Pamplona 2y ago

Correct. The use of the main key as receiver makes it country party trustless. If the receive uses a separate key to receive, he just needs to leak that key to expose the sender.

Reply to this note

Please Login to reply.

Discussion

Avatar
Vitor Pamplona 2y ago

* Counter party.

Avatar
Max 2y ago

I see, that's a fascinating incentive design.