the arguments against the user-side encryption scheme are simply the bandwidth costs
for each additional user, each user has to send another message to broadcast to everyone
there is probably in-between ways of doing this but the ability to prove authenticity is lost as soon as you start key exchange processes that are ephemeral or otherwise not computable without knowing some ephemeral random secret value and catching that key in the message stream
i think that the natural path of private messaging groups is in opposition to the growth of the number of members in the group
once you pass the dunbar number it's impossible to do it properly as a client side encryption and this opens up being able to authenticate the message and decrypt it without compromising your actual secret key identity at the same time
i think that it's worth making the cost of proving a message authenticity by forcing the breach of your secret key
because then everyone can decript all of your messages as well, it's like a three way mexican standoff
mleku / mleku™️
npub1fjq…leku
2024-07-04 23:15:34
in reply to nevent1q…2ztk
Author Public Key
npub1fjqqy4a93z5zsjwsfxqhc2764kvykfdyttvldkkkdera8dr78vhsmmlekuPublished at
2024-07-04 23:15:34Event JSON
{
"id": "060c0403a40bfb65b6fec0ba2c927b59c0c6be3e25d10e055bfe7491d2fd27c0",
"pubkey": "4c800257a588a82849d049817c2bdaad984b25a45ad9f6dad66e47d3b47e3b2f",
"created_at": 1720127734,
"kind": 1,
"tags": [
[
"e",
"0348a66ff5586842df16ffa97e03864c1d5f95f05325f4673680ecdd645ae32a",
"",
"root"
],
[
"e",
"5c0af279b69007afdd7f68d158151af43ee626bd422702ccf2dc7de1ee349b38",
"",
"reply"
],
[
"p",
"7cc328a08ddb2afdf9f9be77beff4c83489ff979721827d628a542f32a247c0e",
"",
"mention"
],
[
"p",
"50809a53fef95904513a840d4082a92b45cd5f1b9e436d9d2b92a89ce091f164",
"",
"mention"
],
[
"p",
"c5cfda98d01f152b3493d995eed4cdb4d9e55a973925f6f9ea24769a5a21e778",
"",
"mention"
]
],
"content": "the arguments against the user-side encryption scheme are simply the bandwidth costs\n\nfor each additional user, each user has to send another message to broadcast to everyone\n\nthere is probably in-between ways of doing this but the ability to prove authenticity is lost as soon as you start key exchange processes that are ephemeral or otherwise not computable without knowing some ephemeral random secret value and catching that key in the message stream\n\ni think that the natural path of private messaging groups is in opposition to the growth of the number of members in the group\n\nonce you pass the dunbar number it's impossible to do it properly as a client side encryption and this opens up being able to authenticate the message and decrypt it without compromising your actual secret key identity at the same time\n\ni think that it's worth making the cost of proving a message authenticity by forcing the breach of your secret key\n\nbecause then everyone can decript all of your messages as well, it's like a three way mexican standoff",
"sig": "45abf1057cf1132802556fdb5832bb587125d23aee58dd610eb42c78fdd9eb9353392f864e9c202aaa7e489fe2acf8cb7dc6b7582109830e0dada068c88c706c"
}