72
nobody 2y ago

Even better, there is no reason whatsoever that the key could not be uploaded to the user’s cloud, tied to their phone. Even SimpleX does this. Encrypt the key, store it in iCloud or Google Drive.

Makes restoring easy in case of a fuck up, but doesn’t put all the keys in one place. The social company isn’t the custodian.

In my iCloud account fully encrypted is not nearly as offensive as in their database. And it’s not a wonky flow. Lots of apps store stuff in your cloud.

Reply to this note

Please Login to reply.

Discussion

Avatar
badonyx 2y ago

I guess that's also how most mainstream encrypted chat apps work? Don't understand why ZBD went full retard with this.

Avatar
badonyx 2y ago

Maybe they did do this and we are just making bad assumptions? I guess the problem is that any app that does this might eventually make some change, knowingly or otherwise, that leaks your SK. This is not theoretical, it has already with cloud password managers and crypto apps.