Techly NewsGet the app

Get the latest tech news

Towards Federated Key Transparency


In late 2022, I blogged about the work needed to develop a specification for end-to-end encryption for the fediverse. I sketched out some of the key management components on GitHub, and then the pu…

Truthfully, I had been hoping to piggyback off one of those upcoming projects (which is focused more on public key discovery for SAML- and OAuth-like protocols) to build the Federated PKI piece for E2EE for the Fediverse. Then, if someone wants to invoke their right to be forgotten, they can just have the instance delete the mapping between User ID and actual username, and we don’t need to break the transparency log’s history. Additionally, Fediverse account usernames are (to my knowledge) generally not private, so I don’t anticipate there being any danger in publishing public keys to an append-only ledger.

Get the Android app

Or read this on Hacker News

« We Are Made of Waves
A Better Regex Experience »