I'm sorry, but I have to strongly disagree with you. Delete requests honoring can't be enforced on the protocol level. And the idea that it can be done and users could rely on it is dangerous.
For relay to be compliant with the protocol (now or in the future) is enough to not return deleted notes, but you can't make sure that there is no copy of the old notes. Maybe they are still in the database with deleted flag, or they are in backups or they were broadcasted to a private relay not accepting kind 5 at all and you can't query it...
By changing the wording in NIP-09 from SHOULD to MUST you are not going to change the reality. The only thing which happens is that users will get a false hope of security.
Most of the relays and clients are honoring the delete requests to the extant that you can get rid of typos or accidental likes. This is good enough for me, but I do automatically assume that bad actor can have all my notes and keep them indefinitely.
You are right about the one key pair being dangerous if leaked and the idea of using child keys for different services and applications is something we should be talking more.
Aida
npub1aj…hdt20
2024-08-13 08:28:08
in reply to nevent1q…l855
Author Public Key
npub1ajdaw3j4g6aqv86alhn3df8jpulj0mxz3jjgwpm4uh598hc348gqthdt20Published at
2024-08-13 08:28:08Event JSON
{
"id": "72d191547c879697decddb56852d466f36484bc4b0cd7658a83065a505361572",
"pubkey": "ec9bd7465546ba061f5dfde716a4f20f3f27ecc28ca4870775e5e853df11a9d0",
"created_at": 1723530488,
"kind": 1,
"tags": [
[
"e",
"12ea37700158bc199e365ff2da5a802a427644d5b0e4caac6ebe8d09e41cd01a",
"",
"root"
],
[
"p",
"4eb88310d6b4ed95c6d66a395b3d3cf559b85faec8f7691dafd405a92e055d6d"
]
],
"content": "I'm sorry, but I have to strongly disagree with you. Delete requests honoring can't be enforced on the protocol level. And the idea that it can be done and users could rely on it is dangerous. \n\nFor relay to be compliant with the protocol (now or in the future) is enough to not return deleted notes, but you can't make sure that there is no copy of the old notes. Maybe they are still in the database with deleted flag, or they are in backups or they were broadcasted to a private relay not accepting kind 5 at all and you can't query it... \n\nBy changing the wording in NIP-09 from SHOULD to MUST you are not going to change the reality. The only thing which happens is that users will get a false hope of security. \n\nMost of the relays and clients are honoring the delete requests to the extant that you can get rid of typos or accidental likes. This is good enough for me, but I do automatically assume that bad actor can have all my notes and keep them indefinitely. \n\nYou are right about the one key pair being dangerous if leaked and the idea of using child keys for different services and applications is something we should be talking more. ",
"sig": "f4f23edfced318dcd191d1fb4f758d6c6d2d223a50b610dd59058d5ecdb2038330d0c5e55d40429b77d8d5362bf6633ee3327c556b129133b0a0a451cecaa4db"
}