cammellos
commented
4 years ago @rajeevgopalakrishna I have addressed the feedback in the closed PR here, we can probably keep the conversation here.
I have changed the protocol so that the access_token is generated client side and passed to the server.
I want to change how allowed_user_list works, and instead of passing a list of hashed public keys, the user can encrypt the token with all the public keys of the allowed users in a blob and push that to the server.
When querying users can just pull this blob and look for a token by decrypting the message, so that we don't have to communicate to the server which users are actually allowed, and conversely the users don't have to communicate their real identity to the server. But likely I will address that in a different PR.
oskarth
This commit modifies the spec so that instead of passing a list of
SHA3public_keysto the server for filtering, the user will pass instead a list ofaccess_tokenencrypted with the allowed contact DH PK(bob) PK(alice).It also removes the
blocked_user_list, so all the filtering is done based on thechat_idfield.Effectively both were used a sort of a spam prevention mechanism, but the cost of keeping
blocked_user_listis that a user will need to disclose their identity to the server, and is trivial to circumvent for any determined attacker, so keeping only filtering on chat_id achieves a similar naive prevention of spam without compromising the privacy of other users. Spam prevention is something that we don't have a solution in status app and this reflects the same behavior.These changes effectively means that:
1) The server has no way to know which users are in
allowed_user_list. 2) The client can query the server anonymously, so at no point they have to disclose their identity to the server.Addressed some leftover feedback @rajeevgopalakrishna