From 2b195434f4d991155ea95a0361cdea8ef603a562 Mon Sep 17 00:00:00 2001 From: Benjamin Beurdouche Date: Fri, 19 Jan 2024 17:16:10 +0100 Subject: [PATCH] Add a sentence on KT for signing key compromise by the AS --- draft-ietf-mls-architecture.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/draft-ietf-mls-architecture.md b/draft-ietf-mls-architecture.md index 5d9a3de..bc4cfc9 100644 --- a/draft-ietf-mls-architecture.md +++ b/draft-ietf-mls-architecture.md @@ -1375,7 +1375,8 @@ keys and all shared group keys, but Alice performs a key update at time t2, then the attacker is unable to violate any of the MLS security properties after the updates have been processed. -Both of these properties are satisfied even against compromised DSs and ASs. +Both of these properties are satisfied even against compromised DSs and ASs +in the case where a Key Transparency mechanism is in use. Confidentiality is mainly ensured on the client side. Because Forward Secrecy (FS) and Post-Compromise Security (PCS) rely on the active deletion and