I find this example mildly infuriating/amusing: func Encrypt(message []byte) ([]... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		cafxx 12 days ago \| parent \| context \| favorite \| on: Go Proposal: Secret Mode I find this example mildly infuriating/amusing: `func Encrypt(message []byte) ([]byte, error) { var ciphertext []byte var encErr error secret.Do(func() { // ... }) return ciphertext, encErr }` As that suggests that somehow for PFS it is critical that the ephemeral key (not the long-term one) is zeroed out, while the plaintext message - i.e. the thing that in the example we allegedly want secrecy for - is totally fine to be outside of the whole `secret` machinery, and remain in memory potentially "forever". I get that the example is simplified (because what it should actually do is protect the long-term key, not the ephemeral one)... so, yeah, it's just a bad example.

kbolino 11 days ago [–]

PFS is just one of many desirable properties, and getting access to plaintext is just one of many kinds of threat. Getting access to ephemeral keys and other sensitive state can enable session hijacking. It's still not a great example, though, because it doesn't illustrate that threat model either.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact