At the core of are a couple potentially useful ideas. has entirely wrapped them in a pile of anti-competitive garbage designed to defend their massive profit margins, but nonetheless, those specific technical ideas might still be useful. 's "notarization" is basically the same. That leads me to ask the key question:

What would a -respecting system of look like? What info is useful for trusting the ?

Hi @eighthave,
being the same as last time and taking responsibility for the product.

So individual trust can build over time.

Translates to: install is visibly signed by the same dev-generated key.

Follow

@mro I agree, highlighting the role of the signing key seems key. An app signing key is in effect a pseudonym. The hard part is that there is that there is no concrete way for users to verify what the key management practices of the developer are. Judging that from the outside means looking for any signs that the signing key was misused. If a dev wants to hide misuse of their signing key, that is pretty easy to do. For example, they could sign malware and only ship that to targeted users

Hi @eighthave
> users to verify what the key management practices of the developer are
why should they?

Sign in to participate in the conversation
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml