You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Specifically: "The server is “untrusted” in the sense [it] learn[s] nothing about users & messages besides what is inherently observable from its pattern of requests, and it should not have access to sensitive metadata, or sender or receiver information"
Seems like a very weak definition of "untrusted", especially when two comparison techniques explicitly attempt to restrict knowledge derived from access patterns.
This is a valid critique - our intention is to find terminology for "a server that has little-enough information about its users that it could conceivably be deployed in an adversarial environment, eg where disk/RAM snapshots could occur," but maybe we need to work on how we define that, since the server is still a privileged asset and has access to more information than a generic internet user.
The text was updated successfully, but these errors were encountered:
From mastodon:
This is a valid critique - our intention is to find terminology for "a server that has little-enough information about its users that it could conceivably be deployed in an adversarial environment, eg where disk/RAM snapshots could occur," but maybe we need to work on how we define that, since the server is still a privileged asset and has access to more information than a generic internet user.
The text was updated successfully, but these errors were encountered: