> On Apr 14, 2021, at 11:07, Masataka Ohta <mohta@xxxxxxxxxxxxxxxxxxxxxxxxxx> wrote: > > It may still be a good idea to use Diffie Hellman key exchange, > because it is secure against passive attacks. As an alternative narrative — text:// uses saltpack + keys.pub to provide signing & encryption. Entirely bypassing the present PKI infrastructure altogether. [1][2][3] Claiming a host boils down to publishing one's handle over dns: # dig +short _text._tcp.txt.textprotocol.org txt "textprotocol@github" [1] https://saltpack.org [2] https://keys.pub [3] https://gist.github.com/textprotocol
