.@ircri Keybase is in the worst of both worlds, asking you to manage your own keys, but also to upload your private key to the server
@FiloSottile @ircri I'd suggest checking out this blog post from @matthew_d_green: http://blog.cryptographyengineering.com/2012/04/icloud-who-holds-key.html …
-
-
-
@FiloSottile@ircri as they even state, if their JS has your private key, they have your private key... -
-
@FiloSottile@ircri well, I did write a whole blog post about it: http://tonyarcieri.com/whats-wrong-with-webcrypto … -
-
@FiloSottile@ircri or they could use TextSecure -
- 2 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.