security: handshake V2

Open JarbasAl opened this issue 1 year ago • 0 comments

V1: current password Hsub handshake

V2 proposal: Encrypted Hsub handshake

the main differences:

we don't leak the salt this way
if someone could theoretically break SHA256
- no leaking the password by reversing the hash.
- if AES is broken then all of hivemind crypto is broken too

Dec 23 '24 21:12 JarbasAl