Y
Hacker News
new
|
ask
|
show
|
jobs
by
ycmbntrthrwaway
3449 days ago
New encryption (public) key is selected by the attacker, so he knows the decryption (private) key. Basically attacker just puts real device offline and registers his own device.
1 comments
Jarwain
3439 days ago
Wouldn't the attacker need to be authenticated as the user of the real device for this to work?
link