#social 2019-01-09

2019-01-09 UTC
timbl, jdormit_m, xmpp-social and ajordan joined the channel
# 10:11 
fr33domlover Hello everyone
# 10:11 
fr33domlover In ActivityPub and HTTP signatures, does it make sense to use a single key for all actors?
# 10:12 
fr33domlover Like each server uses a single key to sign all messages
# 10:33 
rialtate[m] To a certain extent yes, http sigs irrevocably ties the actor pub key to a private one in the server's possession and precludes AP client based dropin E2EE.
Guest84 joined the channel
# 11:05 
fr33domlover rialtate[m], hmm why precludes? Also to which extent is the answer yes? ^_^
# 11:27 
rialtate[m] Well "master keys" are generally supposed to be treated specially in proper cryptography, e.g. Hardware Security Module. And even then,  generally speaking, you would use the master key to secure many individual e.g. message keys, or in this case maybe actors.
# 11:27 
rialtate[m] As for E2EE if it is a different key for http sigs then the other side needs to  know where to look for the e2ee key. Without http sigs naive software can let the user decide if they think the server might have possession of the key (e.g. do they trust the admin is running unmodified server software with no mitm, which could be supplemented with hash type verification schemes)
# 11:33 
fr33domlover rialtate[m], hmmm what if key rotation occurs? i.e. that master key is changed once an hour or so? Generally in web apps AFAIK there may be a key used for encrypting session cookies, all clients of the web app have their cookies encrypted with that same key. Is that safe here too? To sign all relevant HTTP requests with the same key? (especially if it gets regenerated on a regular basis)
# 11:34 
fr33domlover I mean, basically when server A sends an activity to server B, server B wants to be sure server A agrees that activity came from the specified actor
# 11:35 
fr33domlover Since server A holds all the keys anyway, giving each actor a separate key is a bit sort of pretending
# 11:36 
fr33domlover Becase the truth is, what you really check is that server A approves the signature, not whether the user does
# 11:36 
fr33domlover So might as well use a single key?
# 11:37 
fr33domlover (That represents the single server A)
# 11:51 
rialtate[m] Yeah. A frequently changed key would be about the same security profile as standard https keys more or less (trading user escalation for remote code execution attack surfaces)
timbl and hellekin joined the channel
# 13:16 
hellekin Hi there. Taking the opportunity of the upcoming meeting to drop a line on the ActivityPub round table that will happen at next FOSDEM https://forum.enough.community/t/invitation-to-prepare-the-activitypub-round-table-at-fosdem/253
# 13:46 
csarven hellekin: The contents of that URL are not publicly visible unless one creates an account by agreeing to its privacy policy and ToS. Not particularly appealing IMO. I wasn't able to find the license that's used for the content that's created either.
jdormit_m joined the channel
# 13:59 
hellekin oh sorry, I pasted the wrong one. https://forum.enough.community/t/activitypub-round-table/134
# 14:01 
hellekin csarven: just added the link to https://fosdem.org/2019/schedule/track/decentralized_internet_and_privacy/
# 14:02 
hellekin (speakers not yet settled / announced)
jdormit_m, timbl and cwebber2 joined the channel
# 15:50 
cwebber2 hello
# 15:51 
cwebber2 socialcg call in 10mins right?
jdormit_m joined the channel
# 16:06 
melody i never know anymore
# 16:06 
cwebber2 ;\
timbl and eprodrom joined the channel
# 16:21 
eprodrom Are we in the middle of a telecon?
# 16:23 
melody if we were i'd expect minutes
# 16:24 
hellekin it should have started 23 minutes ago
# 16:24 
hellekin I don't have mumble right now...
# 16:27 
eprodrom Nobody on mumble
# 16:32 
hellekin Chocobozzz: I know you're going to be at the Framasoft GA instead of FOSDEM but it would be nice to have you in the preparation discussion for the ActivityPub round table (and all of you present on this channel I guess :)
timbl joined the channel
# 17:05 
hellekin so is the meeting not happening then?
tantek, timbl and hellekin joined the channel
# 18:25 
heluecht[m] hellekin (IRC): Give some details for that round table.
# 18:26 
heluecht[m] Chocobozzz: Yeah, it's sad that you aren't on FOSDEM. I would have liked to have problems in federation solved with you.
timbl joined the channel
# 20:14 
hellekin Chocobozzz: did you just imply you will be at FOSDEM?
# 20:15 
hellekin heluecht[m]: what details would you like? It's a round table that cwebber2 is interested in having, and that should bring together a number of AP actors (editors, contributors, implementors). Topics have not yet been discussed, that's why we're having this preparatory discussion this month.
# 20:19 
hellekin Chocobozzz: oops. I interpreted heluecht[m]'s answer as yours for some reason. I guess I lost the habit of my IRC... Dammit.
timbl joined the channel
# 20:35 
cwebber2 hi
# 20:35 
cwebber2 hellekin: yes I was wondering, I saw that the roundtable had some listed people but I didn't know who they were
# 20:35 
cwebber2 I think it would be good to have people who were involved with or have implemented the protocol be the majority of the panel
Guest84_ and hellekin joined the channel