The encryption still works roughly the same, the difference is mostly visible metadata.
Multiple bundles of encrypted message + decryption key & recipient tag for 1 person, or one bundle of the encrypted message and then keys for multiple people & recipients which the server can separate out when relaying the message
(message keys are encrypted to each recipient’s keypair*)
*simplified because I can’t be bothered to explain how deniability is implemented. Just look up the Signal protocol’s ratchet
The encryption still works roughly the same, the difference is mostly visible metadata.
Multiple bundles of encrypted message + decryption key & recipient tag for 1 person, or one bundle of the encrypted message and then keys for multiple people & recipients which the server can separate out when relaying the message
(message keys are encrypted to each recipient’s keypair*)
*simplified because I can’t be bothered to explain how deniability is implemented. Just look up the Signal protocol’s ratchet