First, let's talk a bit about end-to-encryption (E2EE).
The reason for using E2EE is that you don't trust the people operating the servers you're using. In a centralised service (eg WhatSapp, TellMeGram, Wire, Signal), you have the trust the operators to roll out the E2EE competently, and to *not* backdoor it. So unless there's some way to independently confirm that the server operators have done that, using E2EE on a centralised service is pure privacy theatre:
https://archive.is/ShLiH
(2/?)
Strypey /
npub1pw…qtc65
2023-08-10 07:11:38
in reply to nevent1q…dyr9
Author Public Key
npub1pwwm8s9zxssfm3aqv3g4fvqfh9kglr76m5z434cymju9gp9jhwwqdqtc65Published at
2023-08-10 07:11:38Event JSON
{
"id": "084e58406cf2afc07bf1e3140412d145f439a99246531bac32ffd17d20f70964",
"pubkey": "0b9db3c0a234209dc7a0645154b009b96c8f8fdadd0558d704dcb85404b2bb9c",
"created_at": 1691651498,
"kind": 1,
"tags": [
[
"e",
"e6212f2ab39ecfa60f1da4ae0d0c96d7b9830892eea6da6230e7f0311f48acc5",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://mastodon.nzoss.nz/users/strypey/statuses/110864072577130028",
"activitypub"
]
],
"content": "First, let's talk a bit about end-to-encryption (E2EE).\n\nThe reason for using E2EE is that you don't trust the people operating the servers you're using. In a centralised service (eg WhatSapp, TellMeGram, Wire, Signal), you have the trust the operators to roll out the E2EE competently, and to *not* backdoor it. So unless there's some way to independently confirm that the server operators have done that, using E2EE on a centralised service is pure privacy theatre:\n\nhttps://archive.is/ShLiH\n\n(2/?)",
"sig": "3cd25b584f15a87e2cdbd0747faf099eccfeb29b4e01ba23f505c9ec16dfff24d2ab08ff4df8fcc08022eac9cace2dd54e497fe37f70260990fadc1054b251be"
}