Open uhoreg opened 5 years ago
I wonder if this is quite the right approach to the issue raised by @ jason:zemos.net.
If China can order the removal of server-side e2ee support, it can as easily ban homeserver applications outright from physical servers.
Seems to me the only future-proof way to give people in C-I-NK countries something like permanent access to e2ee is through the ongoing work on P2P Matrix. We need to create a situation where CINK regimes can’t compromise any server without checking/confiscating one’s phone. At that point, they’re going to back down because doing so could easily incite unrest, which they take pains to avoid.
Although e2ee means that a server cannot read encrypted messages, a malicious server could still block encryption outright. In #construct:zemos.net, @ jason:zemos.net writes:
There are various issues that would need addressing, as there are many ways in which e2ee can be blocked, but reducing the number of e2ee-specific endpoints would be a start.
Currently, the server is involved in:
Some things that could be done are:
This may involve performing more processing on the client-side as some of the e2ee endpoints involve the server doing some work. For example, key backups involve the server choosing the "best" key when multiple keys for the same session are uploaded, and with cross-signing, the server ensures that the self-signing and user-signing keys are properly signed by the master key.