Comment by johnisgood
12 days ago
Yeah, your sister. Now go ahead and give it to a stranger.
Once your key is in the hand of a third party, you lost control of that data, and you have to trust them that they will not give it out to someone else (they will), and you have to trust them to keep it safe, and you have to trust them to [...].
My private key is mine, and mine only, or supposed to be.
>> Now go ahead and give it to a stranger.
Well, maybe a better example then - I have a secure storage deposit with a bank. I'm 100% sure it's secure from opportunistic criminals and no one, including the government, knows what's inside it, however, the bank still holds a master key for that deposit box in case it's compelled to open it for law enforcement.
>>My private key is mine, and mine only, or supposed to be.
Again, OP was talking about balance - how do we make sure that people's private communications are safe from criminals, but at the same time allow law enforcement to look at them if needed. To which my answer is - that's how. That's doesn't make encryption "useless", it's just that this model doesn't fit your specific usecase.
> the bank still holds a master key for that deposit box in case it's compelled to open it for law enforcement.
.. so they can steal it.
https://www.forbes.com/sites/instituteforjustice/2023/12/11/...
Excellent example of why your stuff (be it messages or valuables) are not safe if anyone else has the key.
1 reply →