It wouldn't be a strong signature, it would simply be the other half of the numb... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		maxerickson on Feb 7, 2012 \| parent \| context \| favorite \| on: Path uploads your entire iPhone address book to it... It wouldn't be a strong signature, it would simply be the other half of the number pair. Numbers A and B both have easy access to A:B and B:A. The hashes for a given user could still be attacked using their phone number, but a global table wouldn't work.

jdvh on Feb 7, 2012 [–]

That's clever. You can then even improve the algorithm by only sending the hash of A:B for every phone number, where A < B (numerically). Then you don't have to worry about whether it's Friend:Local or Local:Friend.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact