Comment by dlahoda
2 days ago
> We are long past the limits of what you can fix with code.
example of what is not possible to fix with code?
2 days ago
> We are long past the limits of what you can fix with code.
example of what is not possible to fix with code?
Hardware? The real world? Pretty much everything?
Power. Real power. The power to kill you, take your property, harm your family, tell lies about you on the news, etc.
I've always been surprised by the naivety of tech people with respect to this question. The only possible solution to power is power itself. Software can be a small part of that, but the main part of it is human organization: credible power to be used against other organized holders of power. No amount of technology will let you go it alone safely. At best, you may hope to hide away from power with the expectation that its abuse will just skip over you. That is the best you could hope for if all you want are software solutions.
seems we little bit narrowed general statement into good direction for discussion. so example seems need to be more concrete.
some exact piece of hardware or some exact activity of power?
think of it as tdd. we check few simple exact cases before generalising.
The threat of the state tossing you in jail until you divulge your password/permit backdooring/etc.
You can design in ways such that there isn't a password to give up in the first place. Maybe the key is distributed and you need all x number of people to decrypt. Sure, maybe the state can capture everyone but it becomes significantly harder than targeting a single person and threatening them with torture.
Combine that with rate limiting and a dead man's switch.
Hard power still matters. It gets access to things like fiber closets, upstream dependencies, subtle flaws in encryption schemes that take years to figure out, information linking your networks, and more than I can think of.
Cute tech can slow them down until they go through the effort of controlling most of TOR's exit nodes and point the Eye of Sauron at you.
Picture wrench attacks. What use is your Monero's security, for example, as I turn a screw into you until you give it up?
Shamir's secret sharing. In that scenario, capturing me alone isn't going to get you anything even if I divulge my piece of the secret. You'd still need to find out who has the other pieces, find them, and convince them to divulge as well.
Maybe there's 3 of us, and the 4th part of the password/secret/private key is on a server of mine somewhere. If I don't check in for x duration, it wipes itself.
Yeah it means my Monero is gone now, but at least my attacker didn't get it.