Privacy

31686 readers

348 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

Chat rooms

[Matrix/Element]Dead
Discord

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

[email protected]

What are all the Reset buttons meanings in Element (Matrix)? (lemmy.world)

submitted 1 year ago by [email protected] to c/[email protected]

1 comments fedilink hide all child comments

I use Element as my Matrix client, but all of the Secure Backup and Cross-Signing buttons confuse me. Does anyone know the difference between pressing Reset instead of Delete Backup for the Secure Backup? Also, how does Cross-Signing share the same key with Secure Backup, or am I mixing something up?

top 1 comments

sorted by: hot top controversial new old

[–] [email protected] 6 points 1 year ago* (last edited 1 year ago)

Each message in the various rooms are encrypted individually with their own keys. These keys are derived from the session keys of the participants in each of the rooms. That's a lot of keys.

If you wish to read these encrypted messages across multiple devices you'll need to have the same keys on each of those devices ("sessions ") too.

One method to share the keys is for your sessions to "gossip" them between each other.

When you logout of a session, all its keys are deleted.

If you ever logged out of all your sessions at once, you'd lose access to all those keys and you'd never be able to decrypt your old messages again.

To mitigate that, you can create a key backup that is itself encrypted and stored on the server (Secure Backup). This allows you to download the stored keys from the server, restore them to your current device and rejoin the discussions again.

The Cross Signing process is the process used to authorise your new session and allows it to participate in the key-gossip function. By restoring the keys from the Secure Backup you're implicitly signing-in your device and blessing it all at once.

(... as far as I understand it all. Someone with more in-depth knowledge will correct me, I'm sure)