(www.inkandswitch.com)

863 points gasull | 2 comments | 05 Jul 25 14:45 UTC | HN request time: 0.456s | source

1. hodgesrm ◴[06 Jul 25 16:13 UTC] No.44481966[source]▶

> Local-first apps, on the other hand, have better privacy and security built in at the core.

I love this article, but the section on security raised a lot of questions. What's the model for authorizing access to documents for collaboration? How do you managed keys safely for encrypted data? How do users recover "lost" keys?

Cloud computing models have a lot of security mechanisms built-in. You might not like the model (AWS IAM for example) but at least there's a foundation already in place.

replies(1): >>44482294 #

2. nanomonkey ◴[06 Jul 25 16:59 UTC] No.44482294[source]▶

>>44481966 (TP) #

Shamir's Secret sharing allows one to store secret keys within m of n number of your peer group (where m is less than n), thus you can hand out an encrypted secret with 5 of your friends and reproduce the secret by getting 3 of them to respond back to you with the secret at a later date. None of the peers will be able to reproduce the secret by themselves.

There are other options for key storage, revoking group privileges, etc. It's an extensive topic, but the foundation is there, it just depends on your network and use cases.

↑

Local-first software (2019)