Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Was expected one question but haven't found one: how it is actually encrypted? Any whitepaper or information how diffs could be handled over encrypted data? Or it is a just encrypted .git folder?


Looks like it's built on top of kbfs[1].

[1]: https://keybase.io/docs/kbfs/understanding_kbfs


The "actually encrypted" part is NaCL (ED25519 + sha256) as supported by Go [2]. Interestingly, the common way to use NaCL applies Curve25519 to encrypt a symmetric key which is the used for the payload. They don't do that. AFAICT, everything is using the ECC curve.

[2] https://keybase.io/docs/crypto/kbfs


So they've rolled out their own encryption?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: