2023-02-18 UTC
# [KevinMarks] Pretty much. This is where the model doesn't quite add up. There is the idea of things being determined by keys, but no actual way to keeps keys separate from servers, so there's no real improvement over ssl. In principle you can get the keys from the source server and use that to validate data you got some other way (via a cache server, say) but you're still trusting both servers implicitly, and AFAIK there isn't a 3rd server