this post was submitted on 24 Jul 2024
78 points (100.0% liked)

Technology

37800 readers
410 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 26 points 5 months ago (2 children)

what? why?? there are so many open source options already???

[–] [email protected] 52 points 5 months ago (1 children)

This and the new LLM "feature" in ProtonMail suggests that someone higher up has had a sniff of the techbro kool-aid.

[–] [email protected] 6 points 5 months ago (1 children)

Yeah. Part of what I get for paying is the Bridge app so I can use Thunderbird instead of the website. I don’t want or need the LLM thing.

[–] [email protected] 8 points 5 months ago

I pay for it because I thought it was a trustworthy service that had earnt my money. Instead, if they continue with stuff like this then I'll go back to not trusting subscription services again.

[–] [email protected] 15 points 5 months ago (1 children)

Are there any that are cloud-hosted, secure, and private? My experience is limited, but I've never found an easy way in. I can't imagine anyone who's not tech-savvy getting started without walking through a minefield of scams.

Every now and then I look at options for how I might actually use crypto, and everything looks either outrageously scammy or way too much trouble. Pretty much every exchange I've looked at holds the keys to your account, and several have gone under or outright stolen their users' funds.

The question is, when Proton embraces bitcoin, should it make me trust bitcoin more, or trust Proton less? I don't know. I'm still skeptical. Their blog post is interesting, but also doesn't answer a lot of questions. https://proton.me/blog/proton-wallet-launch

I mean, look at this:

Buy Bitcoin securely in 150+ countries

If you are new to Bitcoin, Proton Wallet also has integrations that make it easy to buy Bitcoin in 150+ countries, and we have also put together a comprehensive Bitcoin guide for newcomers.

That "comprehensive" guide spends three paragraphs talking about the "Blocksize War", and makes absolutely no mention of how a user can actually buy bitcoin using Proton Wallet. WTF, Proton? Who is your target audience here exactly?

[–] [email protected] 4 points 5 months ago (1 children)

cloud-hosted, secure, and private

Until homeomorphic encryption becomes a thing, cloud can't be secure or private.

every exchange I've looked at holds the keys to your account

Exchanges, are not wallets. You're supposed to move the coins out of the exchange for safekeeping. If you can't, then it's not a crypto exchange, it's an ETF peddler.

how a user can actually buy bitcoin using Proton Wallet.

Wallets, are not exchanges. They can link to exchanges, like Metamask does, but their core function is to hold your keys.

[–] [email protected] 3 points 5 months ago (2 children)

Until homeomorphic encryption becomes a thing, cloud can't be secure or private.

Why do you need homeomorphic encryption? Isn't client-side encryption good enough for most use cases?

[–] [email protected] 3 points 5 months ago (1 children)

Yes. Homomorphic encryption is for data processing, not data storage.

[–] [email protected] 2 points 5 months ago* (last edited 5 months ago)

I am aware. What processing is only possible in the cloud, and not locally?

Edit: My apologies, I didn't realize you weren't the same person I originally replied to. Please disregard!

[–] [email protected] 1 points 5 months ago* (last edited 5 months ago)

Client-side is not cloud.

Yes, you can keep client-side reasonably secure. You can't send the data for cloud processing and seriously expect much security or privacy... for now. Encrypt client-side and use cloud as storage... maybe; encryption algorithms also have a "best by" date.

My point is:

  • "Cloud hosted" can not be fully "secure and private" right now.
  • "With cloud storage", has a "best by" date.
  • "Not cloud"... well, is not cloud 🙂

Letting anyone with the ability to switch the software without you noticing, anywhere near the keys controlling some Bitcoin funds, is a really bad idea.