User avatar
flori_ava_star:~cursor_blinking made-with-estrogen verifiedlesbian @star@amazonawaws.com
3mo
so how do I
- have encrypted group state
- with permission (role-/user based) overrides
- where permission overrides and other metadata are not known to the server
- but the group state is stored on the server in an encrypted manner
neocat_googly_shocked neocat_googly_shocked neocat_googly_shocked
2
1
2
0
User avatar
zivi @zaire@fedi.absturztau.be
3mo
@star matrix alarm weewoo weewoo please dont accidentially a matrix
2
0
1
0
User avatar
flori_ava_star:~cursor_blinking made-with-estrogen verifiedlesbian @star@amazonawaws.com
3mo
@zaire matrix doesn't do this
1
0
2
0
User avatar
zivi @zaire@fedi.absturztau.be
3mo
@star i mean like. adding tons of complexity in state synchronization that then results in all sorts of fun times and a chat app that'll randomly refuse to serve its primary purpose of sending messages
1
0
1
0
User avatar
zivi @zaire@fedi.absturztau.be
3mo
@star why is it imperative that permissions are not known to the server?
1
0
0
0
User avatar
illy [Shrimple-mode] protomoji_orange_flag_lesbian @illyBytes@shrimp.imsofucking.gay
3mo
@zaire @star i guess just hides who owns the group when viewered from the pov of the server
2
0
2
0
User avatar
illy [Shrimple-mode] protomoji_orange_flag_lesbian @illyBytes@shrimp.imsofucking.gay
3mo
@zaire @star idk hwo that's gonna be done tho lol
something something encryppted homomorphic functions. stuff like that
2
0
2
0
User avatar
zivi @zaire@fedi.absturztau.be
3mo
@illyBytes @star cryptography is magic and we should be grateful the wielders of the arcane are kind enough to bestow upon the rest of us its gifts
0
0
1
0
User avatar
it/its kitten blobcatnight @nyanpasu64@donotsta.re
3mo
@illyBytes homophobic functions neocat_shocked
1
0
1
0
User avatar
illy [Shrimple-mode] protomoji_orange_flag_lesbian @illyBytes@shrimp.imsofucking.gay
3mo
@nyanpasu64
protomoji_orange_googly_shocked.png
0
0
1
0
User avatar
zivi @zaire@fedi.absturztau.be
3mo
@illyBytes @star fair point i suppose
1
0
1
0
User avatar
flori_ava_star:~cursor_blinking made-with-estrogen verifiedlesbian @star@amazonawaws.com
3mo
@zaire @illyBytes probably sadly out of scope though. but would be cool. maybe someone makes a polyproto extension at some point that does this. a little metadata leakage is fine as a treat /hj
1
0
2
0
User avatar
zivi @zaire@fedi.absturztau.be
3mo
@star @illyBytes this ~thread just kinda makes me think of this soatok.blog/2026/02/14/is-end-to-end-encryption-optional-for-large-groups/
1
0
1
0
User avatar
flori_ava_star:~cursor_blinking made-with-estrogen verifiedlesbian @star@amazonawaws.com
3mo
@zaire @illyBytes i don't really trust soatok anymore since the embarrassing matrix blog post neocat_googly_shocked
1
0
1
0
User avatar
zivi @zaire@fedi.absturztau.be
3mo
@star @illyBytes take requested
2
0
1
0
User avatar
zivi @zaire@fedi.absturztau.be
3mo
@star @illyBytes soatok has been a bit icky for me largely due to the relentless signal-shillery which i can somewhat see the reasoning for but is nontheless annoying
1
0
1
0
User avatar
zivi @zaire@fedi.absturztau.be
3mo
@illyBytes @star as for the linked blogpost: if you think about it, if you're working with spaces that are either public or big enough to be trivially infiltrated by an adversary, e2ee won't really make them all that much safer, will it? e2ee only does anything for you as long as you don't simply let the adversary enter your chat. even if you're looking at this from the perspective of a server operator, i don't think an adversary would stand much to gain from pressuring you about the messages that pass through that they couldn't by just joining the public spaces. if the cops want to force a server to mandate self-doxxing they could do that regardless of any encryption
1
0
2
0
User avatar
flori_ava_star:~cursor_blinking made-with-estrogen verifiedlesbian @star@amazonawaws.com
3mo
@zaire @illyBytes What I really want is optional encryption for guild channels. Because I absolutely agree, in that, if the guild reaches a certain size or popularity, E2EE in popular channels is sort of useless. But: For friends' guilds, for closed collectives; things like that: I do think it is really, really nice. That, and group DMs + DMs in general.
1
0
2
0
User avatar
zivi @zaire@fedi.absturztau.be
3mo
@star @illyBytes DMs + groupchats are an entirely different model and e2ee is pretty much non-negotiable in there yeah
1
0
2
0
User avatar
zivi @zaire@fedi.absturztau.be
3mo
@star @illyBytes to have the option for similarly encrypted private channels in guilds makes sense, but theres probably just not much to be gained in practice from trying to keep the server unaware of the permissions, might as well cut that corner if that means avoiding matrix syndrome
1
0
2
0
User avatar
flori_ava_star:~cursor_blinking made-with-estrogen verifiedlesbian @star@amazonawaws.com
3mo
@zaire @illyBytes i think this can be done pretty nicely without having "matrix syndrome". but it would take a lot of time to develop and would also not add that much to the finished product that it can safely be considered out-of-scope.
0
0
2
0