Feature #3653

Allow the use of a Forgetfulness Server

Added by devrandom over 3 years ago.

Status:NewStart date:08/15/2014
Priority:NormalDue date:
Assignee:hans% Done:


Target version:-


A Forgetfulness Server remembers small key/value pairs in RAM and wipes
on request / after a timeout. Call this "forgettable data".

For example, in order to fulfill perfect-forward-secrecy (PFS) goals, the OTR session
state could be encrypted with a forgettable random password and then saved to disk.
The password would be wiped when the app comes back from sleep.

You could use multiple Forgetfulness Servers to reduce the chance of
collusion between the server operator and an attacker.

Also available in: Atom PDF