Explore four potential attacks and a security proof for the Telegram messaging app in this 17-minute IEEE conference talk. Delve into the MTProto 2.0 protocol for cloud chats, examining symmetric channels, related keys, plaintext format, and IGE mode. Analyze protocol and implementation vulnerabilities, learn about responsible disclosure practices, and understand the security model. Gain insights into the proof of security, new assumptions, and the integrity of MTProto. Presented by experts from Royal Holloway, University of London, and ETH Zurich, this talk offers a comprehensive look at the security aspects of one of the world's most popular messaging platforms.
Overview
Syllabus
Intro
Motivation
MTProto 2.0 for cloud chats
Symmetric channel
Related keys
Plaintext format
IGE mode
Protocol attacks
Implementation attacks
Responsible disclosure
Security model
Proof of security
New assumptions
Integrity of MTProto
Conclusion
Taught by
IEEE Symposium on Security and Privacy
