genofireMar 6, 2025
Wow #BWI/Bundeswehr-IT entwickelt @matrix vernünftig weiter und bringt #MLS E2EE (basierend auf dem #RFC9420) zum Messenger:
https://github.com/matrix-org/matrix-spec-proposals/pull/4256

Schon ironisch, wenn die #Bundeswehr an sicheren und zukunftsgerichtete Verschlüssung mitarbeiten.
Während das die Matrix-Community da seit ein Jahr hängen blieb: https://arewemlsyet.com/

Würde mal sagen, das macht uns super von #MSTeams usw. unabhängig
MSC4256: RFC 9420 MLS mode Matrix by dklimpel · Pull Request #4256 · matrix-org/matrix-spec-proposals

Rendered Server/Synapse implementation: https://gitlab.opencode.de/bwi/bundesmessenger/mls/synapse-mls Client implementation: https://gitlab.opencode.de/bwi/bundesmessenger/mls/mls-test-client ...

GitHub
Paragon Initiative EnterprisesFeb 13, 2025

Accelerating The Adoption of Post-Quantum Cryptography with PHP

https://paragonie.com/blog/2025/02/accelerating-adoption-post-quantum-cryptography

#PHP #crypto #cryptography #HPKE #KEMs #MLKEM #MLDSA #SLHDSA #postquantum #programming #webdev #MLS #rfc9180 #rfc9420

Accelerating The Adoption of Post-Quantum Cryptography - Paragon Initiative Enterprises Blog

Leveraging the ubiquity of the PHP programming language to make everyone more secure.

Tim Schlotfeldt ⚓🏳️‍🌈Nov 5, 2023
@genofire
ich sehe allerdings positiv in richtung aller messanger für e2e-crypto:
MLS (#rfc9420)
Oh, ich wusste gar nicht, dass es für #MLS schon einen #RFC gibt.
The Hubzilla @ tschlotfeldt.de

Thomas Fricke (he/him)Oct 14, 2023

Wegen der Fragen zu #MLS #rfc9420 #openmls hier ein paar Links https://www.thestack.technology/rfc9420-ietf-mls-standard/ by

@raphaelrobert

proudly funded by

@sovtechfund

https://sovereigntechfund.de/en/projects/openmls/

und @PrototypeFund

https://prototypefund.de/en/project/openmls/

implemented by

@element

https://www.heise.de/hintergrund/Sichere-Messenger-fuer-alle-Matrix-Gruender-im-Interview-9220484.html

payed by

@bwi

https://www.heise.de/hintergrund/Interview-Ueber-den-Bundeswehr-Messenger-und-warum-Open-Source-wichtig-ist-9217085.html

documented by @heiseonline

#publicmoneypubliccode
#foss

RFC 9420 – A Messaging Layer Security Overview

MLS achieves its low complexity through the use of a binary tree. This means that the number of required operations and the payload size do not increase linearly with the group size but rather only logarithmically after a short warm-up period...

The Stack
Nikka Systems SverigeJul 28, 2023

Veckans poddavsnitt handlar om MLS – protokollet som gör att chattappar börjar fungera med varandra (igen). Matrix, Wire och Google stöttar protokollet.

https://www.youtube.com/watch?v=FiCQ503NFBA

#blisäker #matrix #wire #element #mls #rfc9420 #oldthingback

Podd 208: Framtidens chattappar fungerar med varandra

YouTube
Stephen HoffmanJul 21, 2023

The Messaging Layer Security (MLS) Protocol

https://blog.phnx.im/rfc-9420-mls/

"Today, the Messaging Layer Security (MLS) protocol has been published as RFC 9420, a standards track document by the Internet Engineering Task Force (IETF). MLS is the first standardized and fully specified end-to-end encryption protocol. The specification is freely accessible, and its security has been analyzed in a series of academic publications. Today, the Messaging Layer Security (MLS) protocol has been published as RFC 9420, a standards track document by the Internet Engineering Task Force (IETF). MLS is the first standardized and fully specified end-to-end encryption protocol. The specification is freely accessible, and its security has been analyzed in a series of academic publications.”

The linked blog is an interesting read, too. This from having worked on lots of bog-standard client-to-server implementations with SSL/TLS and IPsec, but not having worked on end-to-end messaging, nor on group messaging.

That MLS also includes what looks like a TLS-like connection handshake is unsurprising, given the effort that has undoubtedly gone into this work.

#InfoSec #rfc9420 #Encryption #encryption #MLS #TLS #security #Security #IETF

RFC 9420 aka Messaging Layer Security (MLS) - An Overview

Messaging Layer Security has been published. MLS is the first standardized, fully specified, freely accessible end-to-end encryption protocol.

Phoenix R&D
deltatux Jul 20, 2023
#Google announces that they will support the new #MessageLayerSecurity (MLS) standard (#RFC9420) that #IETF approved back in March. This new open standard lets supported messaging applications send & receive end to end encrypted messages between different supported apps (sounds very similar to #Matrixchat to me).

Google has also committed to open sourcing their implementation of this new standard as part of the #Android code base.

That being said, Google has not yet committed to a specific timeline at this time.

#securemessaging #privacy #privatemessaging #endtoendencryption #technews

https://www.theverge.com/2023/7/20/23801536/google-messages-app-mls-support-announce
Google is adopting MLS for its end-to-end encryption in Messages

Google will support the Messaging Layer Security (MLS) protocol for its Messages app. The IETF standard can enable strong end-to-end encryption in group messages and interoperability with other supporting platforms.

The Verge