Commits (2)
......@@ -4,6 +4,14 @@
\usepackage[margin=2.5cm, headheight=15pt]{geometry}
\usepackage[unicode, hidelinks]{hyperref}
% Prettier hyperlinks, thanks http://tex.stackexchange.com/posts/847/revisions
......@@ -149,6 +157,44 @@ On Figure \ref{fig:layout}\todo{Update screenshot}, you can see the layout of Ri
% \item Invite people to the current room.
\section{End-to-end encryption}
End-to-end encryption (E2EE) makes sure your messages, file attachments, and calls are encrypted in a way that nobody except the participants can know its content (i.e. even those who have direct access to the server are unable to decipher what is really stored on the server).
Starting from Riot V0.9.1, this feature is available to everyone using Riot. If you're interested in using it, please, read this whole section to get an understanding of how to enable it and important things to look out for.
Whereas E2EE makes your communications more secure, there are a few things to bear in mind:
\item For security reasons, it's impossible to disable E2EE for a room once it's enabled.
\item Only members with high privileges (i.e.\ admins and moderators) can enable E2EE.
\item As of V0.9.1, new devices and users joining an encrypted room won't be able to decrypt its past content.
\item Due to the reason mentioned just above, E2EE may not be ideal for public rooms and cases when you often switch to new devices (e.g.\ computers in a library).
\item Only those Matrix clients will be able to decrypt the contents of the room that support E2EE.
\subsection{Enable E2EE for a room}
To enable E2EE, open the settings of the room and click on \textsc{Enable encryption (warning: cannot be disabled again!)}, read the warning message, and click on OK.
\subsection{Device verification and blacklisting}
If you've enabled E2EE for the first time, you have probably noticed that there's a yellow warning sign in front of the message somebody has sent you. This sign means you haven't verified the other person's device yet, which is highly recommended before moving on for the following reasons:
\item This way, you make sure it is really the person you want to communicate with on the other side, and
\item there's nobody between you listening in.
Either click on this yellow sign or click on the user's name in the member list and then on the button \textsc{Verify\dots} below the device you want to verify. Then, a new pop-up message should appear.
In the pop-up message, look at the device name, ID, and key. Ask the other person to open the account settings (if you need help finding it, see No.\ 9 in Section \ref{sec:layout}), scroll down, and read out these pieces of information---\emph{especially the device key} under the section \textsc{Cryptography}. (For extra security, let them read it out by other means of communication, such as talking in person or on the phone.) If what they say and what you can see on your side match, click on \textsc{I verify that the keys match}. Otherwise, you may want to immediately hang up your call (if there's any going on), look for the device on the right, and \textsc{Blacklist} it.
\subsection{Device management}\label{sub:device-management}
In the account settings, look for the section \textsc{Devices}. You can rename your devices by clicking on their name, and you can also \textsc{Delete} them.
\section{Integrations and bridges}
\subsection{Joining an IRC channel}