hi nostr:nprofile1qqspwwwexlwgcrrnwz4zwkze8rq3ncjug8mvgsd96dxx6wzs8ccndmcpz4mhxue69uhhyetvv9ujuerpd46hxtnfduhszrnhwden5te0dehhxtnvdakz7qg3waehxw309ajhjetn9enrw73wd9hsqwhj0h is the MLS protocol intended to completely replace the signal protocol, or the second has some advantages that will make it stick as superior is some cases? In particular, is signal more efficient in 1 to 1 chat?
I would really appreciate to know your point of view, thanks a lot!
Sort of. MLS is not really meant to replace Signal but it's definitely a significant improvement over Signal for certain things.
Signal and MLS both use a double ratchet system of encryption that gives you both post compromise security (e.g. you can recover from a breach in the normal course of using the protocol) and forward secrecy (e.g. someone getting a key now can't decrypt everything going back in time).
MLS and Signal are effectively the same when it comes to 1:1 messaging. Where MLS is significantly better is in private group messaging. It's far more efficient and comes with strong security guarantees to the group's current state (e.g. you have cryptographic certainty of the list of members in a group at all times).
Yeah, MLS just makes group chats have the same security, by using something like the principles of merkle trees, which signal is like one path in the tree. It even uses the b-tree structure iirc
Oddbean new post about login | logout