Egregoros · Phoenix Framework

Post

Remote status

Context

Phantasm

16h

@benpate So what they are building is actually a way to later enforce censorship of a decentralized network by state actors.
image.png
image.png

RT: https://mastodon.social/users/benpate/statuses/116403046724832335

feld

@feld@friedcheese.us remote

13h

@phnt @benpate

> E2EE
> Fediverse

Complete and utter bullshit. Explain how they manage private keys. Not gonna happen. Their document skips this step and only discusses how to discover public keys. They're waiting until the last minute to solve this piece because it's the hardest part. How can you securely distribute them across every browser/session and app that people use to access Mastodon etc? If they were gonna copy Matrix's SSSS they'd have mentioned it

https://github.com/swicg/activitypub-e2ee/blob/main/architectural-variations.md

Replying to @feld@friedcheese.us

feld

@feld@friedcheese.us remote

13h

@phnt @benpate if they do use something like SSSS where the key is stored on the server encrypted in your profile data, this makes supporting nomadic identities even harder

And then you have the problem of "only users here can use E2EE if their software implemented it" which makes this a less valuable network for securely communicating. Poor network effects, might as well use Signal

Replies

Fetching replies…