Replying to Avatar semisol

NIP-04 weaknesses have also been greatly exaggerated and feel like an intentional attempt to force through their own encryption scheme.

It was sold on the premise that "NIP-04 could leak your private keys" while that would require an uncountable rounds of user interaction, a key-recovery attack on AES and getting the user to sign events with *modified versions of their nsecs*.
Avatar
Vitor Pamplona 3mo ago

Every cryptographer that I showed the nip04 spec thought it was a joke, because it was so bad in so many angles.

Reply to this note

Please Login to reply.

Discussion

Avatar
semisol 3mo ago

It is a joke, the primary concern being that an AES key should only be reused for so long.

But the rush to replace it, while the author is fearmongering people with attacks that are infeasible, with issues like message size in the spec and unnecessary complexity like MACs *when the data is already signed* is simply nonsense.

Avatar
Vitor Pamplona 3mo ago

Rush? It took two full years to to the change. And nostr:nprofile1qqs8evfumcr8pevs7qkta84qlnc7qhkmchxg5syhx8a9gdjyqxqu78gppemhxue69uhkummn9ekx7mp0dpmzxy was the only one to actually provide any alternative. No one else did anything.