Hacker News new | ask | show | jobs
by yuliyp 3079 days ago
> As long as all the communication between peers are e2e, I think this situation can be solved by peers advertising the people they have invited to the group, later clients can refuse to do key exchange with parties, which are not announced before.

This breaks group join links.
2 comments
bluesign 3079 days ago
It does not then admin will just announce invite link and clients will check whoever joined with that invite link.

Ofc then whatsapp can reuse that link, but there is already some warning for invite links in whatsapp help

link
dredmorbius 3079 days ago
Details?
link
yuliyp 3079 days ago
See https://faq.whatsapp.com/en/android/23776567/?category=52452... for the details of the feature. The identity of the new member isn't known at invite time.
link
baby 3079 days ago
It doesn't have too though, if you create a join link you could also advertise the code to other participants. When the new member joins via this invitation link, the code is recognized by everyone.

(I've been downvoted for saying that, but the solution works)

link
Godel_unicode 3079 days ago
What public key do you suppose would be used to encrypt those messages without giving the server the ability to read them?
link
baby 3079 days ago
messages are already encrypted in the group chat, but there is another problem I didn't think about (see other comment)
link
yuliyp 3079 days ago
As soon as the code is redeemed, the server has access to the code.
link
baby 3079 days ago
1. when you create a joining link, it creates a secret uuid

2. this uuid is shared with the rest of the group

3. if Alice joins the group, every uuid created is shared to Alice (except the one Alice used, if Alice used a joining link)

4. when Bob attempts to join the group via the group id, if Bob does not have a known code Bob is refused

5. if Bob uses a known code, Bob is accepted and everyone deletes the code

This does not prevent different participant views to be created, but this is already a problem in WA anyway.

link
yuliyp 3078 days ago
(a) it means each code can only be redeemed once, which is a bit of a usability hit (b) it still doesn't stop a malicious server, which can try to MITM the group join and proxy messages to the client.
link