Petite Abeille petite.abeille at gmail.com
Fri Mar 5 10:50:09 GMT 2021
- - - - - - - - - - - - - - - - - - -
On Mar 5, 2021, at 11:30, Björn Wärmedal <bjorn.warmedal at gmail.com> wrote:
I definitely think that TOFU solves some problems. Not all, but some.
And somewhere we have to decide which problems we want to solve and
which ones we're willing to accept. Gemini is not a great protocol if
you're in need of strong privacy.
Indeed. Arguably, no protocols are :)
It's my opinion that the easiest course of action is to ignore the TOFU problematic altogether — and blindly use TLS for transmission security only.
TOFU doesn't seem to be a good operational fit for Gemini.
Developing a whole new trust model to support it is beyond the scope of the Gemini protocol — in my view.
The easiest win would be to stick to just plain TLS — and call it a day.
±0¢