it's sybil attack mitigation. also known as a unique identifier. but hasn't simp security been broken? the fact that the obvious solution of self custody of your secret in an asymmetric cryptographic public key infrastructure hasn't occurred to them somehow, mysteriously, even though nostr has been around for 4 years now. i just don't know how they could have never thought of that. they must be living under a rock. also, 6 months ago, i got claude to export my signal chat history, because some stupid people were using signal to bullshit me. i learned that it didn't use a proper nonce (cleartext, random prefix that is combined with the secret key) - AND it also used gnome keychain for the secret. and none of that was made visible in the interface. the nonce was literally 12 space characters. a placeholder. no actual random generation. completely broken for plaintext attacks.

Replies (1)

Whoa 🤯 As for using the public/private key pair like Nostr, I think it did occur to them but the sink costs into current paradigm probably was a a huge factor resulting in it being ignored. Or they just don't care lol