As said I'm not a crypto expert, thanks for pointing me to the ephemeral keys, cool!
My point was more psycological and about the fact that Signal is not a silver bullet if the partner is compromised "though the use of ephemeral keys and prekeys provides some mitigation". Of course, I reapeat, besides the crypto technique just the whole UX experience make the product better and more secure, no doubts.
Perhaps I iper-semplified the matter and was too in hurry to define Signal ad "not more secure in any sense", my fault ✋
PS: Nostr is a protocol, Signal a product/platform, perhaps in the future someone will develop a DM infrastructure using Nostr that achive a great security standard, let's see 🤞
dtonon / daniele
npub100…8vwqk
2023-01-09 17:40:23
in reply to nevent1q…3370
Author Public Key
npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqkPublished at
2023-01-09 17:40:23Event JSON
{
"id": "e0cae47d2c0fbfea921e8a420c242c5ee803cd006a0b1330adefdfa6343e6378",
"pubkey": "7bdef7be22dd8e59f4600e044aa53a1cf975a9dc7d27df5833bc77db784a5805",
"created_at": 1673286023,
"kind": 1,
"tags": [
[
"e",
"cccb38000e0f5c182e5807133f77bebcf7ce695b730041a6e7309d45c9752449",
"wss://nostr.ono.re",
"reply"
],
[
"p",
"b93049a6e2547a36a7692d90e4baa809012526175546a17337454def9ab69d30"
],
[
"p",
"590e177703aaee8153349f97457e81aa734c6cfe7fa609b07bf99393020f2ee3"
],
[
"p",
"7bdef7be22dd8e59f4600e044aa53a1cf975a9dc7d27df5833bc77db784a5805"
],
[
"p",
"7bdef7be22dd8e59f4600e044aa53a1cf975a9dc7d27df5833bc77db784a5805"
]
],
"content": "As said I'm not a crypto expert, thanks for pointing me to the ephemeral keys, cool!\nMy point was more psycological and about the fact that Signal is not a silver bullet if the partner is compromised \"though the use of ephemeral keys and prekeys provides some mitigation\". Of course, I reapeat, besides the crypto technique just the whole UX experience make the product better and more secure, no doubts.\n\nPerhaps I iper-semplified the matter and was too in hurry to define Signal ad \"not more secure in any sense\", my fault ✋\n\nPS: Nostr is a protocol, Signal a product/platform, perhaps in the future someone will develop a DM infrastructure using Nostr that achive a great security standard, let's see 🤞",
"sig": "df435c69ec5c99d0e53e3842d5e767e8e05ff4643c2582b0274a04519dc95c325105dc89d3d96c7d18b5ba0ffa9e4f6e182909ffcf46f245d5b99391ff8d3848"
}