Semisol on Nostr: The protocol provides no benefit compared to ephemeral key exchanges. One part of DR ...
The protocol provides no benefit compared to ephemeral key exchanges.
One part of DR is post-compromise security: if the current state of the ratchet is leaked, the mixing of new secret information via say key exchanges will render it unusable. The NIP lacks this functionality.
The rotation of encryption keys every message does not provide any benefit except the fact you can authorize new devices without giving them access to previous communications, without the post-compromise security bit.
The message key being leaked without the ratchet state being leaked is a very unlikely, if not impossible, scenario.
One part of DR is post-compromise security: if the current state of the ratchet is leaked, the mixing of new secret information via say key exchanges will render it unusable. The NIP lacks this functionality.
The rotation of encryption keys every message does not provide any benefit except the fact you can authorize new devices without giving them access to previous communications, without the post-compromise security bit.
The message key being leaked without the ratchet state being leaked is a very unlikely, if not impossible, scenario.