Avatar
ابو مريم 7mo ago

Nostr rant: #asknostr

Can someone explain to me how PRIVATE group chats or communities are supposed to work on nostr?

I have been experimenting in this space for nearly 6 months now and devs have done wonders on building the public side of this. But private is where customer trust is built! That is what the average user is coming for and what they are expecting.

What's the barrier here?

Is running your own relay the only way to do this? The average pleb is never going to be able to do that successfully so I'm not sure how this approach can ever scale to meet mass adoption needed to support communities.

This is probably the most important element needed to bring creators into nostr. Am I missing something or why has this not been a priority?

Reply to this note

Please Login to reply.

Discussion

Avatar
verbiricha 7mo ago

the NIP-29 relays support private groups in the sense that only allowed members can read and poast to them. these are not encrypted group chats btw. is that what you are looking for?

Avatar
ابو مريم 7mo ago

If group is set as private & closed (only allowed memebers to read) why would that be unencrypted?

Avatar
verbiricha 7mo ago

good question, the problem is that encrypted group chat proposals are either limited (NIP-17) or too young (MLS); also both are not very widely supported. nostr:npub1h0uj825jgcr9lzxyp37ehasuenq070707pj63je07n8mkcsg3u0qnsrwx8 has written very good threads on the topic. When I can make something like Chachi (chat + all the other kinds) in a private way I'd be glad to implement it. The best chat apps for privacy are nostr:npub1h0uj825jgcr9lzxyp37ehasuenq070707pj63je07n8mkcsg3u0qnsrwx8 and nostr:npub1tm99pgz2lth724jeld6gzz6zv48zy6xp4n9xu5uqrwvx9km54qaqkkxn72 at the moment, but I hope nostr:npub18stt78efprta2el02tzgnez6ehghzgtt000v58967wvkgezjmprs0n7h7u can be a serious contender soon.

Avatar
0xchat 7mo ago

I agree. NIP-29 group chats are more like Telegram groups (though without encryption), while NIP-17 encrypted group chats are simple to implement but not convenient for managing group members, and suitable only for smaller groups.

MLS group chats are easier to manage group members and more suitable for larger groups, but the implementation is more complex.

The next version of 0xChat will implement MLS group chats, it will be in beta.

Avatar
CanopyKev 7mo ago

Once your group gets over 10 participants the likelyhood that one or some of the encryption keys haven't been leaked / compromised is not good anyway.

Avatar
Keychat 7mo ago

We think there are two main approaches to implementing private groups on Nostr. The first approach uses access control to ensure that only group members can retrieve notes, without using encryption. NIP-42 is based on this idea. However, this approach relies on the relay. The second approach is end-to-end encryption. You can refer to the comparison note we wrote for an overview of different group encryption schemes.

In terms of how notes are displayed, groups can be categorized as *chat groups* or *feed groups*. Based on member relationships, private groups can be divided into friend groups and topic-based groups among strangers. For friend groups, pairwise group or MLS (Messaging Layer Security) is suitable. For topic-based groups among strangers, shared key group and MLS are appropriate choices. Chat groups are better suited for friend groups, while feed groups work better for topic-based groups among strangers.

Avatar
Keychat 7mo ago

nostr:note1qu6hf92ju8esurtt40du6y3tye38jvstyp58tzs89m8mgjjgawpsq4pvdk

Avatar
ابو مريم 7mo ago

Really appreciate the though Keychat puts into this!

I conceptually understand the difference between these group configuations. Still practically trying to sort out implemintation and that's parts just been messy.

I think most are going to want a combination of these things. Many are going assume end-to-end encryption at scale by default (thanks to how centralized fiat SM has technologically dumbed everyone down). There's just a lot that has to be done on the client and user side right now to get this all to work.

Avatar
VictorieeMan 7mo ago

hm

Avatar
hodlbod 7mo ago

Whitenoise by nostr:nprofile1qyfhwumn8ghj7ur4wfcxcetsv9njuetn9uq3jamnwvaz7tmswfjk66t4d5h8qunfd4skctnwv46z7qgewaehxw309aex2mrp0yh8xmn0wf6zuum0vd5kzmp0qy3hwumn8ghj7enfd36x2u3wdehhxarj9emkjmn98ankcmmzv9kr6ctvdshsz9nhwden5te0wfjkccte9e4x2enxvuhxv7tf9uqzq9eemymaerqvwdc25f6ctyuvzx0zt3qld3zp5hf5cmfc2qlrzdh0t6lycm uses strong encryption for privacy within groups. Currently kind of a signal alternative but it could scale to larger groups. However, there is always a social trade off to be aware of. The larger the group, the less trust exists within the group, and the less consequential privacy on the technical level is.

I also think that the relay requirement is an acceptable trade off, since large groups are usually going to have a sufficiently committed admin that will be motivated to run a relay, while smaller groups can thrive in a more informal encryption-supported scenario. The relay requirement may actually be a beneficial barrier to entry that discourages insufficiently motivated would-be community organizers from starting.

Avatar
ابو مريم 7mo ago

Will check out Whitenoise. Saw it shared around but haven't tested it yet.

I like the relay model and from my experience with it, it has worked best. Flotilla being the prime example.

The accessability issue though is a problem as that is a serious barrier to entry. Wven for the motivated there is cost (cloud host vs run your own hardward) and technical learning involved. I'd like to assume anyone that has been on nostr for a while is motivated and commited to this protocol but I'm not sure how the cost and technical barrier scales to that user. And we should have that user in mind when building nostr. Religous/non-profit boards, social activist groups/organizers, the coveted "influencer" communities - these will expect both privacy and trus. These are the users I'm thinking of and we need low cost and low technical entry for this to scale to bring them.