Post APf2YRKAdhV9u6QF1s by privateger@plasmatrap.com
 (DIR) More posts by privateger@plasmatrap.com
 (DIR) Post #APf0jwhk6ovyVMo4tk by ueberlegend@troet.cafe
       2022-11-16T11:50:37Z
       
       0 likes, 1 repeats
       
       Implementing end to end encryption on a federated network is gonna be a hell of a mess. It’s tricky for a lot of different reasons. I’m not saying we shouldn’t - we definitely should. But we shouldn’t underestimate how damn incredibly complicated it’s gonna be.
       
 (DIR) Post #APf0jxG82yRKE0tXUm by ueberlegend@troet.cafe
       2022-11-16T11:55:36Z
       
       1 likes, 0 repeats
       
       There are reasons why even after decades of having available encryption tools we’re still relying on unencrypted emails! We must not underestimate the complexity of this problem.
       
 (DIR) Post #APf0jxjuGGG7iMpJuS by icedquinn@blob.cat
       2022-11-16T11:56:43.411959Z
       
       0 likes, 0 repeats
       
       @ueberlegend people just didn't want to do it. even in the heyday of PGP where you could just slap it in your mail client.sadly mail clients still seem to be married to S/MIME which is shit
       
 (DIR) Post #APf25M5z07qFHyux60 by kino@fedi.intkos.link
       2022-11-16T12:11:48.550Z
       
       0 likes, 0 repeats
       
       @ueberlegend@troet.cafe I mean, technically protocols like Matrix are part of the fediverse and content therein is E2E during transit. So, it's definitely possible/feasible. I don't know about using ActivityPub, but Matrix protocol is extremely robust and could, for example, facilitate content exchange between instances using it. Just an idea.
       
 (DIR) Post #APf2EPEugHJze8PVOy by ueberlegend@troet.cafe
       2022-11-16T12:13:16Z
       
       1 likes, 0 repeats
       
       @kino yeah I also thought about this. Matrix is currently one of the best available options for encryption in federated networks, what they did is very impressive.
       
 (DIR) Post #APf2YRKAdhV9u6QF1s by privateger@plasmatrap.com
       2022-11-16T12:13:22.015Z
       
       0 likes, 0 repeats
       
       @kino@fedi.intkos.link @ueberlegend@troet.cafe The issue is: you're on a web based client, one that can change at any time. Security with something like that is a mere illusion, you're one malicious change by the admin away from total compromise.This is also why Signal refuses to implement a web client and sticks to native apps.
       
 (DIR) Post #APf2YRjh6nuzBGMcoS by kino@fedi.intkos.link
       2022-11-16T12:17:02.842Z
       
       1 likes, 0 repeats
       
       @privateger@plasmatrap.com It's better than not having E2E whatsoever; And, in many respects, Matrix is a better protocol than AP. It's just interesting to consider. I've seen discussions about utilizing Matrix as alternatives to things like SMTP/IMAP. At any rate, with really any of these protocols or clients and hosts, there is some level of trust required. There will never be a completely perfect system. At least with Matrix you can host your own web client so you can take privacy and security into your own hands without needing to trust a third party.@ueberlegend@troet.cafe
       
 (DIR) Post #APf2aewAzuJ0heG1my by ueberlegend@troet.cafe
       2022-11-16T12:16:57Z
       
       1 likes, 1 repeats
       
       @privateger @kino that’s a huge problem here, yet in Matrix there’s a very sophisticated approach to solving it with having keys stored on the server but encrypted symmetrically with a second password the admin can not reset so they are only ever decrypted on the users machine. That’s still very (too?) complicated for users to bend their heads around though. So it’s far from perfect. But at least it’s a constructive idea.