Oddbean new post about | logout
 Are push notifications end to end encrypted? #privacy #damus 
 anything pushed is already public or e2e encrypted (dms), what would be the purpose of end to end encrypting push notifications?

I guess perhaps hiding that from apple? I don’t think they are encrypted atm @danieldaquino 

If we encrypted to the npub notifications for watch-only accounts wouldn’t work 🤔 
 You can encrypt them with a local client generated key 
 We could encrypt them using the recipient pubkey, but would there be a benefit? All of the data in push notifications is already public in the Damus relay anyways 🤷‍♂️ 
 The only thing I could think of is hiding the device id / npub association from apple, but that is already deniable since anyone can login with your npub 
 The purpose of encryption is not to “hide public infomation”, as you imply. The purpose is to make “what you are doing on your phone” private by default. 
 nostr tags are already not private though? Anyone can tag you and anyone can read that someone tagged you. 
 Push notifications are not a function of what you are doing on your phone, its a function of what our server desides to notify apple based on public information 
 Even if you didn’t want your public notes to go through apns, it’s not likely you could ever prevent that. Once it’s on a public relay somewhere it’s likely it will get mirrored to apns at one point. 
 The point is that nothing going through a push server should be unencrypted. 
 Also based on your individual personal feed with is unique to you. 
 I’m not saying to encrypt all public things on nostr. I’m saying to encrypt everything that goes through a push server, so Apple doesn’t see what you’re doing on nostr and link that to your real world identity, should you care about privacy. 
 That’s a valid point 
 What would be the purpose of end to encrypting the push notifications?

So that you can browse nostr privately, obviously, without reporting to a corporation everything that you’re looking at.