Now, this lack of a recovery password procedure seems a bit extreme #mega #cloud #infosecpic.twitter.com/ERylhOT5ay
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
@khaxan Resetting would lose your data. As I understand it, the password is actually used to derive the key that your data is encrypted with
@RichFelker Alternative token? Alternative trusted account maybe? Other companies who lack similar "no recovery" process are working on it
@khaxan Any of those options compromise the crypto. The whole point of crypto is for data to be unrecoverable without knowing the key.
@RichFelker I know the point of crypto. And the options stated are just trying to provide a mechanism not to break it but as a fail safe
@RichFelker a perhaps expensive way 2 do it is to duplicate the info &encrypt it w/ 2 diff keys, one with a pass & other with a USBCert
@RichFelker i was just thinking about regular end users not reinventing the wheel
@RichFelker My point is losing a password is trivial enough for most users (even if they use password mgrs) to no have a "disaster" option
@khaxan I know, but it's a HARD problem. And not one a third party can solve for you.
@RichFelker ah yeah, never said it was easy, that's whats make it interesting to think about
@RichFelker i'm not trying to break crypto ;)
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.