Avoiding fabrication of contents (continued)

Avoiding fabrication of contents

Sign blocks of the encrypted call session

⇒ The parties to the call can prove which content is or is not part of their call

⇒ There is no need to make the signing key public, only the corresponding public key is needed – this could be published in a public place/record for later use.

 

This potentially leaks private key bits due to the large number of signatures! However, it is not clear what rate this leakage occurs at (especially with video conferencing).

---

Transcript

[slide414] And not surprisingly, there is a problem, and that is potentially we leak some of the bits of our key because we're signing it again and again and again because we have a lot of media traffic.