Twetch ·
twitter is very noisy
i dont think i will use it much anymore
Replies
Twetch ·
We need Twetching Encrypted DM. :) I call it Direct Twetch. But, I bet its coming.
Twetch ·
I think DMs should be off-chain entirely.
Twetch ·
I don't want to receive DM from someone like on twitter insinuating delivering phisical problems to me. Onchain is the most secure :)
Twetch ·
$i tend to agree
@5
take the long view and realize in hundreds of years little in that will matter
Twetch ·
Its a distraction from being productive.
Twetch ·
Hmmmm which BitCoin project already has encrypted messages 🤔🤔🤔🤔🤔
😜
Twetch ·
that would be baemail!
https://tncpw.co/e8900f3d
Twetch ·
Those messages will all get cracked eventually.
Twetch ·
i'm interested to hear more. part of me wants to say "yes, eventually, but only because they'll be around long enough for that to happen" .. but the other part of me wants to say "once that becomes possible, they will seek more important data than my own"
Twetch ·
Who doesn't want to read private messages?
Twetch ·
im thinking that whoever has the physical resources and intellectual means to achieve breaking bitcoin encryption is probably going to use this ability to compromise a more valuable target than most people (including myself) will ever leave behind. but no?
Twetch ·
I'm talking about hundreds of years from now. Digital scavengers will come across our on-chain stuff and will spend an afternoon cracking old Twetch DMs with their RasPi
Twetch ·
at that point (hundreds of years beyond our death) does something like a coffee transaction or a love letter or something like that really matter? at what level of relevance should our history become part of available public record? with this we can choose
Twetch ·
Twitter is like the Mind. Noisy. Use the Mind...
but don't let the Mind use you....
Twetch ·
@397 do you think that no encrypted data should go on chain?
Twetch ·
In case you don't reuse keys, you will have to invest computing power to decrypt every single message independently of previous one, so no, using proper encryption those messages won't be decrypted before the Sun will burn out.
Twetch ·
Encrypting data using the cryptoOperations API is currently not secure enough.
A "rogue button" could silently decrypt your on-chain data without you being aware of it.
Twetch ·
It actually just needs a user naive enough to not click "View Source" and not inspect every Moneybutton.
A decrypt operation can be sneaked in and silently read all your mails.
You will never know it even happened.
Twetch ·
Really depends on your time preference. Do you find it valuable that Thomas Jefferson’s private letters are now public?
Twetch ·
The developer behind the Rogue Button would be liable for breach of user terms, or fraud by false advertising. I am extremely cautious about how I advertise what is happening behind Baemail - it is written verbosely so that people know what's happening.
Twetch ·
Thanks to @2459, Baemail doesn't ever need to touch the original message. A draft is kept in localStorage and once broadcast, is deleted to ensure no decrypted content trace is left. This also happens when a user logs out - all decrypted data is destroyed.
Twetch ·
It is directly against long term business strategy to silently decrypt users' messages. That would be shooting oneself in the foot, because user trust is WAY more valuable than the contents of anyone's private messages. Legitimacy is far greater than Scam.
Twetch ·
Of course.
I would never expect Baemail to do that.
However, an attacker could:
- obtain the encrypted message stored on-chain
- create a game or other website with a Moneybutton
- sneak in a "decrypt" call and obtain the decrypted message
Twetch ·
This is really interesting. Personally I think they ought to be p2p and a hash could be on chain. This makes much more sense, you’re right. However, what if you need a backup to be kept of the message? For example - a contract. You want that to be archived
Twetch ·
Ah - I understand what you were saying now, thanks for clarifying. 🙂
Twetch ·
CyberTwetch!