Nostr Web Client

I will henceforth refer to the TLS threat model as "its not the cloud^H^H^H^H^H Certificate Authority, its someone else's DNS resolver!"

Reply to this note

Please Login to reply.

Discussion

simulx 2y ago

i use a hash of pubkey mapped to bip words as a verbal verification of my contact's keys, and a multisig custody for my keys (pedersom dkg)

Peter Todd 2y ago

Certificate authorities are a really convoluted way for browser vendors to maintain control over DNS. We could have easily ended up in a world where this was all handled by dnssec.

Matt Corallo 2y ago

All while claiming DNS “isn’t in their security model” (yes, that’s what tls people keep saying…)