this post was submitted on 29 Aug 2023
68 points (100.0% liked)

Technology

37747 readers
196 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
 

Researchers from several institutes worldwide recently developed Quarks, a new, decentralized messaging network based on blockchain technology. Their proposed system could overcome the limitations of most commonly used messaging platforms, allowing users to retain control over their personal data and other information they share online.

you are viewing a single comment's thread
view the rest of the comments
[–] HubertManne@kbin.social 4 points 1 year ago (3 children)

I disagree here. with p2p/federated you have to worry about if your microprovider goes out. I think blockchain would be a useful way to keep a users preferences and to keep usernames distinct.

[–] regalia@literature.cafe 9 points 1 year ago (2 children)

p2p has no middle man. There's nothing to go out. Blockchain is a literal plague, especially in this scenario when a simple database can handle this. MXIDs already provide distinct usernames. Preferences are often stores client side.

You do not need to burn a tree, push a Ponzi scheme, and make this data permanently public to solve this. That is a terrible idea, and any solution you come up with will be always better without a Blockchain.

[–] FlowVoid@midwest.social 2 points 1 year ago* (last edited 1 year ago) (2 children)

The blockchain Is not public. It can only be accessed by nodes whose members are in the channel.

I'm curious whether without a blockchain there is a solution that (a) allows users to access all their encrypted messages even if any individual server goes down, (b) preserves a record of all communications/edits, and (c) is resistant to record tampering by a malicious server admin.

[–] regalia@literature.cafe 3 points 1 year ago (1 children)

Yeah it's called storing things client side lol.

Also the whole point of encryption is that it can't be tampered with by a middle man. We've accomplished all of that already.

[–] FlowVoid@midwest.social 2 points 1 year ago* (last edited 1 year ago) (1 children)

Storing client side isn't good enough, your records could be lost or destroyed. That's why people use Gmail.

And it's not just third parties, what about untrusted recipients? For example, how do you prove you sent someone a message on a decentralized system?

[–] regalia@literature.cafe 2 points 1 year ago (1 children)

you can store things encrypted

also do you know what identity keys are? We've solved that decades ago with pgp keys lol

[–] FlowVoid@midwest.social 2 points 1 year ago* (last edited 1 year ago) (1 children)

Even if it's encrypted, it can be lost or destroyed if it's stored client side.

I know what identity keys are, but they don't solve the problem. If someone says they didn't receive your message, the best way to prove you successfully sent it is to use a distributed ledger.

[–] regalia@literature.cafe 2 points 1 year ago (1 children)

Yes there is??? Do you know what a read receipt is?

Again, storing messages on the blockchain is a fucking terrible idea. I don't need to store the dumb memes my friends send to each other eternally on the blockchain, nor does anyone give a shit. If it's important enough to want to be saved, you do this new technique called a damn backup.

I don't want to open myself up to my key getting hacked and my entire life history's messages getting leaked. I don't want to open myself to someone stealing my device where my key is stored and having indefinite access to all my past, present, and future data. I don't want to leave my data publicly available with all the metadata and message sizes to see for any unknown third parry, and to who is being sent what to whom. I don't want to be vulnerable to potential encryption breaking techniques in the future. I don't want to deal with the gas cost, the huge amount of latency that would make real time chat unviable, and the insane amount of overhead to solve an already solved problem with an objectively worse solution in every possible way.

These are problems that don't need to be solved with blockchain. Every problem you're suggesting has been solved decades ago and for absolutely free. You are dense as hell and aren't even attempting to look at the already existing technology that has already solved this. Fuck out of here crypto bro.

[–] FlowVoid@midwest.social 2 points 1 year ago* (last edited 1 year ago) (1 children)

Do you know what a read receipt is?

That doesn't solve the problem. If you don't get a read receipt, then you can't prove you sent the message. And if the recipient doesn't want you to be able to prove you sent a message, they can disable sending read receipts.

This sort of system is not meant for your use case. It is not meant for memes or other things nobody cares about. It is meant for people who need an auditable permanent copy of their communication.

For example, businesses sending orders, contracts, etc to each other. Or lawyers sending documents to each other. They need systems that are private, not susceptible to central server failure, yet nevertheless auditable in case of an untrustworthy recipient.

If a lawyer sends a time-sensitive letter to opposing counsel, the recipient must not be able to claim, "You did not send it to me on time". Blockchain is a good solution for such needs.

I don't want to leave my data publicly available with all the metadata

Did you read the paper? This isn't Bitcoin. The metadata is not available to the public.

[–] regalia@literature.cafe 2 points 1 year ago (1 children)

This is such an obscure situation that doesn't even need to be solved with blockchain. Look at the article being posted. "Messaging network for safer communications", which now apparently turns to just a single situation where a lawyer needs to send a time sensitive email and needs to prove it was sent? Which again, doesn't actually even solve the problem. In this case, your blockchain ponzi scheme email can easily get caught by a spam filter. You've now turned the use case to some global read receipt system, which is dumb as hell and something nobody needs.

This use case literally does not exist. It can also be solved by a simple email server. A business that wants to keep logs of all their messages being sent out or received can store everything on their server with inbound or outbound emails. If in the super extreme scenario where a lawyer sends an email and the counsel ignores it, they can get in a lot of legal trouble for lying and would just get delayed. They lawyer can also prove they sent an outbound copy on their email server. What do you think needs to be "auditable" in communication? A business sending a damn receipt does not need this solution, that's the end user for their email being valid. A lawyer sending private documents to each other want the literal last thing to be on a fucking public cloud server that is invisibly accessible by any fucking third party. Do you hear yourself? Are you a real person??

Literally none of these obscure scenarios you're trying to come up with even need a blockchain solution. You should recognize how hard you're trying to justify this as it being a dumb fuck solution. Despite all these issues you're apparently inventing, we use our existing technology every day and none of these are issues. You're coming off more like ChatGPT then a normal person.

[–] FlowVoid@midwest.social 2 points 1 year ago* (last edited 1 year ago) (1 children)

I just gave you one example of a use case. It's hardly unique. There are plenty of time-sensitive messages sent in business settings, and plenty of people who don't necessarily want to acknowledge receiving them.

More examples, off the top of my head:

  • Manager tells worker they need to cover an emergency on the weekend, worker claims they never received the message.

  • Business wants to cancel a work order, contractor shows up and says they weren't properly notified of the cancellation.

  • Supervisor sends disciplinary note to employee before dismissal, employee says it was never sent and then claims wrongful termination.

And of course, this has nothing to do with email. So if you set up a "spam filter" that deletes your boss's messages, that's on you. They know they sent you the message, even if you delete it or otherwise pretend they didn't.

This is about an independent audit trail, not "keeping logs". Your personal email server doesn't count, because you can alter the log to show whatever you want. Nobody is going to take your word for it.

Finally, it's pretty clear you have no idea how this system is supposed to work, because you keep claiming that documents are "accessible by any third party". You do understand that not every blockchain system is public, right?

[–] regalia@literature.cafe 3 points 1 year ago (1 children)

You didn't even know what a pgp key was before this convo or read receipts, you have no idea what you're talking about. This is not a real problem and is already solved with outbox emails.

Your personal email server doesn’t count, because you can alter the log to show whatever you want. Nobody is going to take your word for it.

Falsifying evidence is a crime.

Manager tells worker they need to cover an emergency on the weekend, worker claims they never received the message.

Lol then the manager will say "why did you not respond", it's on the worker. They're not going to pull up a fucking blockchain, they're going to pull out their phone and say "see, I sent you this".

Business wants to cancel a work order, contractor shows up and says they weren’t properly notified of the cancellation.

That's the contractors fault. Blockchain is irrelevant. If they didn't check their email, they're sure as hell not going to check a dumb ass blockchain.

They know they sent you the message, even if you delete it or otherwise pretend they didn’t.

Crazy, I wonder how they know that? Maybe because they know they pressed the "send" button, and it's the other party's responsibility to accept.

Again, none of these situations need a dumb fucking blockchain.

You do understand that not every blockchain system is public, right?

https://www.blockchain.com/explorer

[–] FlowVoid@midwest.social 2 points 1 year ago

You didn't even know what a pgp key was before this convo or read receipts

Lol what? I knew what they were, I just thought it was stupid to bring them up because they solve nothing.

Falsifying evidence is a crime.

Oh, then there is no need to worry about it, I guess.

"why did you not respond",

"Respond to what??"

they're going to pull out their phone and say "see, I sent you this".

Then the worker pulls out their phone and says, "see, it's not on my phone"

That's the contractors fault. Blockchain is irrelevant. If they didn't check their email, they're sure as hell not going to check a dumb ass blockchain.

Unless, of course, the sender/manager actually didn't properly notify the contractor/employee, and now they are lying to cover their ass.

Like many disputes, it amounts to he-said-she-said. When it goes to court, the jury will flip a coin. There is a better way.

[–] ICastFist@programming.dev 2 points 1 year ago (1 children)

The blockchain Is not public. It can only be accessed by nodes whose members are in the channel.

So, federation across channel participants, but with blockchain instead of a "shared database"?

[–] FlowVoid@midwest.social 1 points 1 year ago

Yes, that sounds like their goal.

Blockchain is used to prevent a malicious participant from altering/corrupting records.

[–] HubertManne@kbin.social 2 points 1 year ago (1 children)

I don't think you get it. With a distributed ledger your username could be unique. sorta like the digital art pieces. So if your instance goes down you register at another one with your token and it recognizes you and associates you with everything it conceivably can (some stuff may only have been saved on the instance which is gone). So if the new instance has magazines you interacted with it should still be able to see comments as yours and such.

[–] regalia@literature.cafe 12 points 1 year ago (1 children)

Buddy wait until you hear about pgp keys or identity keys in general. No ponzi scheme and tree burning required!

Again, there's always a solution that's better and doesn't need the blockchain. Blockchain is literally never the answer unless you're trying to kill the environment and scam others all in one go.

[–] HubertManne@kbin.social 2 points 1 year ago

tree burning is bitcoin specific implementation. distributed ledger does not rely on processing power being wasted for no good reason. Believe me I don't like bitcoin or its ilk but am fine with grid coin for example. pgp keys are for authentication and don't store information. distributed ledger is not for authentication its for just like it sounds. keeping a ledger.

[–] BarryZuckerkorn@beehaw.org 9 points 1 year ago (1 children)

I disagree here. with p2p/federated you have to worry about if your microprovider goes out.

This Quarks protocol still seems to require reliance on "nodes," which is the same thing as a federated service, with extra steps. It's more overhead without any of the portability you want.

[–] HubertManne@kbin.social 1 points 1 year ago

oh sorry. I was not saying in general, not that this implementation is good. I could see the distributed ledger being used though to good effect. Unfortunately it rarely is.

[–] amki@feddit.de 1 points 1 year ago

Same thing with centralised services only that you have no options to choose from