Replying to Avatar Louferlou

Yo. Sorry but as I understand it nostr DM are already encrypted right ? So what are we talking about here, hiding metadas thes kind of things ?

Thanks
Avatar
JeffG 1y ago

Yes. But there are varying levels of encryption and metadata protection.

NIP-04 encrypts the content in a fairly naive way and does nothing to hide metadata.

NIP-44 encrypts the content in a much more robust way but does nothing to hide metadata.

NIP-59 is about "gift-wrapping" events, which uses nip-44 encryption but also hides metadata by nesting the real events in other events.

NIP-17 combines NIP-44 and NIP-59 to get encrypted DMs that hide most metadata but don't give you any forward or post-compromise secrecy (meaning, if you lose your keys, the attacker can decrypt all your past and future messages).

NIP-104 (double ratchet) Uses a format very similar to NIP-17 but a completely different encryption scheme that uses two independent key derivation functions (ratchets) to generate encryption keys and give forward and post-compromise secrecy.

TBH, you can use any of them based on your use case. I think we've been building towards double ratchet for a while though. You also hear the double-ratchet scheme referred to as E2EE (end-to-end encrypted).

Reply to this note

Please Login to reply.

Discussion

Avatar
Louferlou 1y ago

So basically what you are saying is that you are trying to apply OTR to nostr which is a bit like NIP-104 but better or different ?

Avatar
JeffG 1y ago

NIP-104 is the new NIP I'm proposing to do the OTR like double ratchet.

Avatar
Louferlou 1y ago

Understood thank you for your time sir

Avatar
Derek Ross 1y ago

This is a great technical explanation on the various methods and functions of Nostr's DM capabilities and why developers seem to be often working on improving them. The current evolution is exciting and should solve all previous pain points. Fingers crossed.

nostr:nevent1qqsfcrqn6tl6p7j3j70n8z3uka6p7lknppvpwnx5nvh4nrllm06a8pcpz4mhxue69uhhyetvv9ujuerpd46hxtnfduhsygqh88vn0hyvp3ehp238tpvn3sgeufwyrakygxjaxnrd8pgruvfkaupsgqqqqqqskc7az2

Avatar
someone 1y ago

does double ratchet use multiple pubkeys like gift wraps or only the user's regular pubkey?

Avatar
JeffG 1y ago

It uses lots of keys. it does giftwraps but also uses ephemeral keys for generating new chain keys as part of the ratchet mechanism.