Gordon Mohr | gojomo.eth ꧁ꙮꙮ꧂ on Twitter: "@paulbohm @elonmusk some forms of this exist in work like ‘subresource integrity’ (https://t.co/oXg0jpkHil), Signed Exchanges (SXGs: https://t.co/wyZ0PaLSBT), & even hacks for nonparticipating sources like TLSNotary/PageSigner (https://t.co/FR9U2zphzl)" / Twitter

Twitter DMs should have end to end encryption like Signal, so no one can spy on or hack your messages

41.5K

123.1K

1.4M

Replying to

Idea: Remote Attestation that javascript/html app is a signed&published release. Could be done by browser or plugin. Enables end-to-end cryptography in javascript apps.

Gordon Mohr | gojomo.eth ꧁ꙮꙮ꧂

@gojomo

Replying to

@paulbohm

and

@elonmusk

some forms of this exist in work like ‘subresource integrity’ (developer.mozilla.org/en-US/docs/Web), Signed Exchanges (SXGs: web.dev/signed-exchang), & even hacks for nonparticipating sources like TLSNotary/PageSigner (github.com/tlsnotary/Page)

developer.mozilla.org

Subresource Integrity - Web security | MDN

Subresource Integrity (SRI) is a security feature that enables browsers to verify that resources they fetch (for example, from a CDN) are delivered without unexpected manipulation. It works by...

2:17 AM · Apr 28, 2022

Conversation