• Natanael@infosec.pub
    link
    fedilink
    English
    arrow-up
    1
    ·
    7 months ago

    The encryption still works roughly the same, the difference is mostly visible metadata.

    Multiple bundles of encrypted message + decryption key & recipient tag for 1 person, or one bundle of the encrypted message and then keys for multiple people & recipients which the server can separate out when relaying the message

    (message keys are encrypted to each recipient’s keypair*)

    *simplified because I can’t be bothered to explain how deniability is implemented. Just look up the Signal protocol’s ratchet