Hacker News new | past | comments | ask | show | jobs | submit login

seems that how they generate the keys, it's basically the same. The same password would generate the same keys. Anyone who uses the same password would be able to decrypt data sent to anyone else using the same password.

Am I understanding this correctly?




If I send you an encrypted file with minilock, you won't know my password, and I won't know yours, but you'll be the only one that can read it, and also you'll be sure I've sent it and not anyone else.

Public key crypto has more advantages and users should understand the basics. This introduction may be more clear (4:30) https://www.youtube.com/watch?v=vMiBwMHcSn0

Also I would only use their 7-random-words feature for passwords.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: