Replying to Avatar jb55

anything pushed is already public or e2e encrypted (dms), what would be the purpose of end to end encrypting push notifications?

I guess perhaps hiding that from apple? I don’t think they are encrypted atm nostr:npub13v47pg9dxjq96an8jfev9znhm0k7ntwtlh9y335paj9kyjsjpznqzzl3l8

If we encrypted to the npub notifications for watch-only accounts wouldn’t work 🤔

Avatar
Daniel D’Aquino 1y ago

We could encrypt them using the recipient pubkey, but would there be a benefit? All of the data in push notifications is already public in the Damus relay anyways 🤷‍♂️

Reply to this note

Please Login to reply.

Discussion

Avatar
jb55 1y ago

The only thing I could think of is hiding the device id / npub association from apple, but that is already deniable since anyone can login with your npub

d7
Dan 1y ago

The purpose of encryption is not to “hide public infomation”, as you imply. The purpose is to make “what you are doing on your phone” private by default.

Avatar
jb55 1y ago

nostr tags are already not private though? Anyone can tag you and anyone can read that someone tagged you.

Avatar
jb55 1y ago

Push notifications are not a function of what you are doing on your phone, its a function of what our server desides to notify apple based on public information

Avatar
jb55 1y ago

Even if you didn’t want your public notes to go through apns, it’s not likely you could ever prevent that. Once it’s on a public relay somewhere it’s likely it will get mirrored to apns at one point.

d7
Dan 1y ago

The point is that nothing going through a push server should be unencrypted.

d7
Dan 1y ago

Also based on your individual personal feed with is unique to you.

d7
Dan 1y ago

I’m not saying to encrypt all public things on nostr. I’m saying to encrypt everything that goes through a push server, so Apple doesn’t see what you’re doing on nostr and link that to your real world identity, should you care about privacy.

Avatar
Daniel D’Aquino 1y ago

That’s a valid point