Yuki Kishimoto on Nostr: From my understanding double ratchet is better for 1:1 messaging and has strong ...
From my understanding double ratchet is better for 1:1 messaging and has strong post-compromise security since uses a different key for every message.
MLS is better and scale well for groups but in case a key is compromised, all future messages could be exposed until the key refresh is performed.
So, IMO, we can use both: double ratchet for 1:1 messaging and MLS for groups.
Published at
2025-03-04 22:04:00Event JSON
{
"id": "aeaa1cbb0e41030c8ec9bb5918bb7867068f079386251392d030baa2252dea04",
"pubkey": "68d81165918100b7da43fc28f7d1fc12554466e1115886b9e7bb326f65ec4272",
"created_at": 1741125840,
"kind": 1,
"tags": [
[
"e",
"c750f796a23dfe7b1336ca4e03464a3490e8b84d474143aa2eaf752c5ea11b42",
"",
"root"
],
[
"e",
"d9a532995f1b9750c4c3016d35d0d9e23090ae79bd4826943db6478227eeeb9e",
"",
"reply"
],
[
"p",
"4523be58d395b1b196a9b8c82b038b6895cb02b683d0c253a955068dba1facd0"
],
[
"p",
"76c71aae3a491f1d9eec47cba17e229cda4113a0bbb6e6ae1776d7643e29cafa"
]
],
"content": "From my understanding double ratchet is better for 1:1 messaging and has strong post-compromise security since uses a different key for every message.\n\nMLS is better and scale well for groups but in case a key is compromised, all future messages could be exposed until the key refresh is performed.\n\nSo, IMO, we can use both: double ratchet for 1:1 messaging and MLS for groups.",
"sig": "78b32a14ad98723cef69c2777c81f0e53269d00f456feebecc80e070fd27bafda9facc24a9d4ec64e4d75e6214d6ebcc277a937706aee46d1845827f48f8e9a0"
}
