Once a message chain is established, Loki enforces Perfect Forward Secrecy and Deniable Authentication. PFS enables resistance from attacks where a long-term key is exposed. A new shared encryption key is used for each session, so if a single session key is revealed, the whole message chain is not compromised. DA refers to the ability for two parties to prove to each other that they are the sender of each new message.

University of Connecticut

- Messenger Encryption
- User Authentication

Messenger Encryption and User Authentication

https://loki.network/wp-content/uploads/2018/10/LokiWhitepaperV3_1.pdf

Loki Whitepaper

Messenger Encryption

Authentication of users is important to ensure protection against 'man in the middle' attacks. Loki uses Pre-Shared Key authentication  where users have multiple options for the establishment of a PSK. They can establish a key out of band, or alternatively, they can agree on a PSK over Loki by asking the other a question which no third-party would know the answer. 

Learn Before

Related