MITM attack isn't based on mathematics. Please review how it works. It is based on the simple idea: if attacker controls and can substitute all communication between two parties, then it can also substitute all key exchange, and re-encrypt all sent messages.
No key exchange design or mathematics can prevent this attack.
The only way to prevent or mitigate MITM attack is by using some out-of-band channel that attacker cannot substitute for passing some of the key material or hash.
SimpleX Chat
npub1gs…zfy6l
2024-09-05 20:40:24 UTC
in reply to nevent1q…378u
Author Public Key
npub1gsunl7x2y8ka4rn72y9zmzh0j8ntw8ln3956dxe4vg2mldpt4svsuzfy6lSeen on
wss://relay.momostr.pinkPublished at
2024-09-05 20:40:24 UTCEvent JSON
{
"id": "8e17bb0129f07b2b63e4eb62eb0997ca06c9476cda25bb64a878954cb0925b40",
"pubkey": "44393ff8ca21edda8e7e510a2d8aef91e6b71ff38969a69b356215bfb42bac19",
"created_at": 1725568824,
"kind": 1,
"tags": [
[
"p",
"44393ff8ca21edda8e7e510a2d8aef91e6b71ff38969a69b356215bfb42bac19"
],
[
"e",
"f49d3edfc9861cd87a0d39c73fcc26d923cacdae795d7392d3aab0f8e29ddcea",
"",
"reply",
"81f67fa59f30b52b2a0ef6a95056e81e51d0ffac07c5a0e84020ec2b3ba83c70"
],
[
"p",
"81f67fa59f30b52b2a0ef6a95056e81e51d0ffac07c5a0e84020ec2b3ba83c70"
],
[
"proxy",
"https://mastodon.social/@simplex/113086878483305495",
"web"
],
[
"e",
"da86dd945ecb931809ddb0c46ab5b48e6878d7c03562b1abc002e3c3c442b7ad",
"",
"root",
"44393ff8ca21edda8e7e510a2d8aef91e6b71ff38969a69b356215bfb42bac19"
],
[
"proxy",
"https://mastodon.social/users/simplex/statuses/113086878483305495",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://mastodon.social/users/simplex/statuses/113086878483305495",
"pink.momostr"
],
[
"-"
]
],
"content": "MITM attack isn't based on mathematics. Please review how it works. It is based on the simple idea: if attacker controls and can substitute all communication between two parties, then it can also substitute all key exchange, and re-encrypt all sent messages.\n\nNo key exchange design or mathematics can prevent this attack.\n\nThe only way to prevent or mitigate MITM attack is by using some out-of-band channel that attacker cannot substitute for passing some of the key material or hash.",
"sig": "55db3194dbf165c8d4b0a007f010a34669c4cb1e56d499f5c4ae27110b3b0f7e8c72b904a3f0c146bf0d420d3df7583065b0d0493baebe3056071cb041172cf2"
}