Thread
Little known advantage of Nostr DMs: No one can know if the chat is complete or if there are missing messages even if the nsec leaks.
Nostr doesn't link DMs to one another in any way. Double ratchet schemes, like Signal for instance, derive keys from the state in previous messages making it a verifiable chain. If a message is missing, whoever has the main key to decrypt and derive the chat will know it if the chat is complete or not.
On Signal, or any ratchet-based technique, you can prove you have all the messages.
Replies (10)
How does this effect usability? As a user who is validly in the chat, how do I know that I haven't missed a DM?
The chain of messages can be forked.
Yep, and you can see when that happens as well.
The chain of messages can be forked in double ratchet.
However, any message has a "previous message" like any commit in git has an ancestor. This provides important context, as to understand a message you need to know what previously transpired in a chat.
If your attacker doesn't know whether he has all the messages neither does the legitimate recipient and will as such have trouble comprehending the conversation. Your "it's not a bug it's a feature" doesn't work here.
Lol:
npub1g7lq...8yd9
> People with default settings are 95% of the users. You are not improving privacy if you ignore 95% of your users.
95% of the users are expendable.
View quoted note →
Hi vitor 🏴☠️🤟⚡️
That’s a fascinating advantage. While double ratchet schemes provide forward secrecy and integrity, they also create a verifiable history—something that can be a liability in certain situations. Nostr’s unlinkable DMs embrace a different paradigm: plausible deniability by design. In some cases, not knowing whether a chat is complete might be more valuable than proving that it is.
signal is great for the NSA
If you add to that that they are unusable unless you are on the same client, and everybody set their relays correctly, they become super private.
I scroll my feed just to learn. thank you!
