Oddbean new post about login | logout So... Repudiation Relays?
Exactly 🤔
Wouldn't that require a sort of WoT but for relays? Otherwise, how can I trust a relay is not just making stuff up about someone?
The truth is out there 🗝️
you have to trust the relay, there’s no way around that. I’ve looked into other mechanisms: - undeniable signatures - delegate keys that you leak occasionally after some epoch But they are somewhat complicated. This is a dumb yet simple alternative
I think the delegate key approach is way safer, but people don’t like delegations 🤷♂️
It's not like people don't like, but more that it's though to coordinate all clients to support it in a consistent way.
All going hate is really smart, and that’s where that ship titanics
There have been plenty of people who have expressed explicit distaste for it @fiatjaf @semisol @PABLOF7z @Cameri and probably more i’m forgetting. I think someone even tried to remove it as a nip if I remember correctly.
I thought Pablo was the one to propose it ¯\_(ツ)_/¯ I haven't followed the discussion but imagine the distaste boils down to the added complexity all while not being a perfect solution. If nostr were centralize, this wouldn't be a concern since we could shove key delegation down everyone's throats.
I didn't propose it, I was an advocate for it -- we even did a panel with @KeithMukai at Nostrica for it. The closer I got to it the more I realize it was a very problematic NIP. I think NIP-46 is the right way of doing "delegation" as it's equivalent to taking complexity offchain
I think revocation is needed, and more thinking on the spec
Trust the relay?!? ... meeeeh
Yeah this would make more sense for things like running a relay for some sensitive work project where its your own relay and you really don’t want to leak anything. It’s a bit niche.