-
@ mleku
2025-02-21 16:41:39
nip-04 uses AES-CBC-AEAD iirc, based on a 16 byte nonce and shared secret using ECDH and idk what the HMAC is some standard thing for AES
nip-44 uses a chacha20 based cipher, mostly the same, just mainly using blake2 hash and chacha as the cipher stream
they are on par, in my opinion, based on what i know of cryptographic algorithms, maybe nip-44 is a bit more efficient but its weaknesses are less known because it's newer
the fact of the identities between the two parties and the timing of the communication is available without decryption
it simply should not be given out without auth. at all. period.
but these clowns think that it's ok to send out signals that are encrypted with loads of metadata without any concern for who relays it to who