• poVoq@slrpnk.net
      link
      fedilink
      arrow-up
      3
      ·
      edit-2
      2 years ago

      AFAIK they don’t exist because OMEMO keys are device and not account specific, so this entire class of attack surface does not exist.

    • j@mastodon@mastodon.social
      link
      fedilink
      arrow-up
      3
      ·
      2 years ago

      @sexy_peach @cypherpunks

      I’m a random user but I did hear some discussion on the potential for this kind of vulnerability a while ago in the XMPP Conversations group chat.

      OMEMO does not allow access to previous messages when you add a new device. If the message wasn’t originally encrypted for the target device, the device will not be able to read it. But the best place to ask this question is in that group chat.