Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Can we compress the main document contents? #7

Open
cyphar opened this issue Dec 24, 2021 · 1 comment
Open

Can we compress the main document contents? #7

cyphar opened this issue Dec 24, 2021 · 1 comment
Labels
design/crypto

Comments

@cyphar
Copy link
Owner

cyphar commented Dec 24, 2021

Compress-then-encrypt is known to be unsafe for interactive sessions such as web browsers since 2012 (thanks to CRIME and BREACH). However, since paperback does not operate as an interactive session system (and we have pretty strong density requirements since we need to fit QR codes on paper), maybe it would be safe to compress the main document contents?

It would be nice to get a cryptographer's opinion on this...
@Z3r0byte
Copy link

Z3r0byte commented Feb 1, 2022

(CS student, not a cryptographer) In my opinion this seems totally fine. Crime abuses the fact that an attacker can add chosen data to unknown data and use the resulting size of the message to check if the unkown data contains the added part. In the use case of Paperback, this is not possible because to encrypt a document you need to feed Paperback all data (and thus there is no unknown data).

PS I really like the idea of this project, keep up the good work :)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
design/crypto
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@cyphar @Z3r0byte