Open edmundlaugasson opened 4 years ago
Seconded, and following this issue. Web App currently encrypts PGP, and decrypts ONLY if you upload private key (not recommended) Desktop App currently encrypts/decrypts Saltpack CLI encrypts/decrypts both formats, but there's a barrier to entry here.
I strongly request moving to Saltpack format for encrypt/decrypt in the Web App, as this will reduce a lot of friction I've seen in getting less-technical users to be more secure!
The ideal-path we want third-parties and internal users to follow looks like this:
Hopefully this is a priority for future development - the two different message formats being used in the Web App and Desktop App is a barrier for wider adoption right now.
Hereby would propose to use Saltpack in web when offering encryption, decryption - just like in app. Currently when non-Keybase user sending message via web, it comes in PGP format that cannot be decrypted in web when not hosting private key (considered not secure). Especially in case of smart device there is no PGP key usually available even in command-line but only Keybase. So, using Saltpack format for encryption could allow decrypt then regardless what to use. As you preach also at https://keybase.io/blog/crypto - Saltpack is a general format. We'd love to see its wide adoption - so, please, adopt it!