Privacy

31385 readers

1063 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

Chat rooms

[Matrix/Element]Dead
Discord

much thanks to @gary_host_laptop for the logo design :)

founded 4 years ago

MODERATORS

[email protected]

What do you think about Keyoxide ? Worth the trouble ? (keyoxide.org)

submitted 6 months ago by [email protected] to c/[email protected]

12 comments fedilink hide all child comments

top 12 comments

sorted by: hot top controversial new old

[–] rezifon 7 points 6 months ago* (last edited 6 months ago) (1 children)

This looks like an attempt to reproduce the web-of-trust functions provided by Keybase.io. Keybase has historically been a great resource that fills the same role as the PGP/GnuPG web of trust for a much broader range of identity attestations.

An open implementation of this concept has been sorely needed since Keybase got bought and shitcanned by Zoom during the COVID lockdown. Zoom wanted to aqui-hire all the Keybase devs to boost development on their lacking encryption and security. Sadly, Keybase has basically been abandonware since then.

[–] [email protected] 1 points 6 months ago

That is truly sad. I was, at one point, simple using Keybase as a free cloud storage.

[–] [email protected] 6 points 6 months ago

Seems to me like this is stepping up to fill the spot that was left by Keybase

[–] [email protected] 4 points 6 months ago

It's very complicated. Maybe the tutorials aren't good enough (for me). It's nice to have a site listing your various accounts. I proved mastodon and linked matrix but that's it. At this state, not worth the trouble (for me)

[–] Asudox 3 points 6 months ago

I use it. The linkable proof is in my Lemmy desc for example.

[–] devfuuu 2 points 6 months ago

It's cool, needs some more work and eventually integrations with it. It's nice to have an alternative to keybase but the things around keybase still need to be created.

[–] [email protected] 2 points 6 months ago (1 children)

Btw, you can even verify your Lemmy account with it ! https://docs.keyoxide.org/service-providers/lemmy/

[–] [email protected] 1 points 6 months ago

Neat. Thank you.

[–] [email protected] 1 points 6 months ago (1 children)

It seems completely pointless to be honest.

Who are you going to prove your cryptographic identity to? Why not just use that same (pretty flimsy) verification method they use directly with that person?

[–] [email protected] 2 points 6 months ago (1 children)

What is that "(pretty flimsy) verification method" you are referring to ? Keyoxide is basically a web-interface (and accompanying tutorials) for PGP/ASP proofs. If you and your colleage know how, it's not for you. I do think having a "web-PGP" passport page is easier to share, especially for just non-techy people.

[–] [email protected] 1 points 6 months ago (1 children)

I mean the whole "put something in your profile/in a post" part that is pretty flimsy.

Also, non-techy people will not be able to use PGP at all, much less anything building on it that requires understanding of the trust relationships. Hell, even in a tech company we are having a hard time getting people to generate keys every couple of years.

[–] [email protected] 0 points 6 months ago

Hence, the ability to read from a PGP key, profile proofs easily on the internet. It's for this specific use.