I agree that metadata privacy and censorship resistance is hard, because it usually ...

Why Nostr? What is Njump?

npub1lce…3apw

2024-09-15 18:45:44

in reply to nevent1q…89za

I agree that metadata privacy and censorship resistance is hard, because it usually means you end up relying on something like a DHT system where everyone can see the origin and endpoint of a message. Arguably putting envelopes inside of envelopes, metaphorically speaking, can obfuscate this a bit (and this is essentially what you get with the Tor network to a degree, as each node just knows to address the next node, and that it came from the previous one), but usually, you end up with leaky metadata, as encrypting this addressing information en route is hard to do secure key exchange with.

As for privacy of contents, however, that shouldn't be hard to do while also being censorship resistant. PGP was around in the mid-90s and the concept still holds.

Seems like "privacy" is too broad a concept, as it can apply to the confidentiality of contents, the anonymity of the sender, or the anonymity of the receiver. And at some point, if you can somehow get all of these right, you get another issue: authentification, such that the receiver can identify who it was sent from, without anyone else being able to do so.

My head's already hurting and I'm not an engineer, but I am inclined to think that SimpleX Chat does have some 'splainin' to do because their assertion doesn't seem to obviously follow from any agreed upon premises at this point.

Author Public Key

npub1lcetwt8hcd9gagdytu4e35ufykxek0elfvx8q3spugmgj9x0ev0q363apw

Seen on

wss://relay.damus.io

Show more details

Published at

2024-09-15 18:45:44

Kind type

1 Short Text Note

Event JSON

{ "id": "6fbf2fcfb5bf8ac2a58375cbd43ba03b543d6f7924296107ef3624eac30ca56b", "pubkey": "fe32b72cf7c34a8ea1a45f2b98d389258d9b3f3f4b0c704601e2368914cfcb1e", "created_at": 1726425944, "kind": 1, "tags": [ [ "e", "4cccb7ce7797223e91c51dcc347145c3de1e9763f00f0c4f437ee0eef6925ddc", "wss://relay.damus.io/", "root", "21335073401a310cc9179fe3a77e9666710cfdf630dfd840f972c183a244b1ad" ], [ "p", "21335073401a310cc9179fe3a77e9666710cfdf630dfd840f972c183a244b1ad" ] ], "content": "I agree that metadata privacy and censorship resistance is hard, because it usually means you end up relying on something like a DHT system where everyone can see the origin and endpoint of a message. Arguably putting envelopes inside of envelopes, metaphorically speaking, can obfuscate this a bit (and this is essentially what you get with the Tor network to a degree, as each node just knows to address the next node, and that it came from the previous one), but usually, you end up with leaky metadata, as encrypting this addressing information en route is hard to do secure key exchange with.\n\nAs for privacy of contents, however, that shouldn't be hard to do while also being censorship resistant. PGP was around in the mid-90s and the concept still holds. \n\nSeems like \"privacy\" is too broad a concept, as it can apply to the confidentiality of contents, the anonymity of the sender, or the anonymity of the receiver. And at some point, if you can somehow get all of these right, you get another issue: authentification, such that the receiver can identify who it was sent from, without anyone else being able to do so.\n\nMy head's already hurting and I'm not an engineer, but I am inclined to think that SimpleX Chat does have some 'splainin' to do because their assertion doesn't seem to obviously follow from any agreed upon premises at this point.", "sig": "38752dd78bf19316a480f878d02ab9c05d7cf12bb942f2e5138fda8facac9eb16f0bfddbe092bca8f070366b8d1fe761695ba803c6a484aea3fd59b5aa98f7c6" }