OK, I decided to build this and try to make a living off it: An end-2-end encrypted serverless platform for web/mobile apps, offering user auth, db, & file store services. The end user gets privacy. The app developer gets spared from the liability & burden of handling user data.https://twitter.com/dvassallo/status/1122968287355129856 …
PAKE would be better overall, but if you want to use an asymmetric key directly, signing is far far better for this case than encryption.
-
-
When you say PAKE is better, is that just performance? Or better security or UX? I’ll look more into it. Thanks. PS. I was only thinking of encrypting a challenge message once during the WebSocket setup (upon user login). Then that connection stays authenticated.
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.


Account Management
Database
File Store
All these will be available through a JavaScript API for the browser. Initial iOS and Android support will be through