nprofile1qy2hwumn8ghj7un9d3shjtnddaehgu3wwp6kyqpq78rvtslm3qykq8uy5afswta2qz5pk9atjxsepht4x8ldddssp6kqf336ju (nprofile…36ju)
Infodump follows aimed at nobody in particular:
AES is the symmetric cipher, Signal uses ECC (on Curve25519 & derivatives: So X25519 and Ed25519) for the DR protocol, and ML-KEM as the KEM for the initial key exchange.
ECC is not quantum-safe: You can recover a private key from the public key and decrypt communication if you have a quantum computer. The protection from using a PQC (post-quantum) KEM for the initial key exchange is limited.
Additionally, Signal has a specific threat model, which can make using it insecure for a lot of usecases. For one, it is not anonymous. This means that it does not protect your identity, it only protects your messages. Aka it is fine for chatting with trusted parties, but dangerous for chatting with untrusted parties.
ity /
npub18d…3hgth
2025-03-24 23:15:20
in reply to nevent1q…ymc3
Author Public Key
npub18d3kmxcnumcm0kn6hngh79h3xa5kvc409yvfendwpzltx3qtpnhq43hgthPublished at
2025-03-24 23:15:20Event JSON
{
"id": "b2117de798b84cf19f2fff7b2afd48b8ec8a88aac92b46eaa6dbfb476aee2642",
"pubkey": "3b636d9b13e6f1b7da7abcd17f16f137696662af29189ccdae08beb3440b0cee",
"created_at": 1742858120,
"kind": 1,
"tags": [
[
"p",
"f1c6c5c3fb8809601f84a753072faa00a81b17ab91a190dd7531fed6b6100eac",
"wss://relay.mostr.pub"
],
[
"p",
"6f9089e5e6810f9514a501f04b94466f7473f4db7fb0e9e389966dc7cfb76251",
"wss://relay.mostr.pub"
],
[
"e",
"de4c7357fe2e523867f8080c7cf722780cbd7a929162116694ccf2443457712a",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://estradiol.city/users/ity/statuses/114219949817053369",
"activitypub"
]
],
"content": "nostr:nprofile1qy2hwumn8ghj7un9d3shjtnddaehgu3wwp6kyqpq78rvtslm3qykq8uy5afswta2qz5pk9atjxsepht4x8ldddssp6kqf336ju \n\nInfodump follows aimed at nobody in particular:\n\nAES is the symmetric cipher, Signal uses ECC (on Curve25519 \u0026 derivatives: So X25519 and Ed25519) for the DR protocol, and ML-KEM as the KEM for the initial key exchange.\n\nECC is not quantum-safe: You can recover a private key from the public key and decrypt communication if you have a quantum computer. The protection from using a PQC (post-quantum) KEM for the initial key exchange is limited.\n\nAdditionally, Signal has a specific threat model, which can make using it insecure for a lot of usecases. For one, it is not anonymous. This means that it does not protect your identity, it only protects your messages. Aka it is fine for chatting with trusted parties, but dangerous for chatting with untrusted parties.",
"sig": "567109628691d07848b53789b9020062a0173b977adb50853e59bf012c09748fe205674e74d813cf1fa5336c1f6d0a53837fef8d8e5e005e7d3df7de577c3789"
}