semisol's avatar
semisol semisol@nostr.land 1 week ago
Non-answer. The keys for encrypting the conversations are in the DB (outside the enclave boundary) and AWS KMS (outside the enclave boundary). AWS and/or OpenSecret can be compelled to disclose “encrypted” data in non-encrypted form, without the introduction of a backdoor into the products or other hurdles that may make it difficulty compared to a normal subpoena.
↑ Parent

Replies (1)

semisol's avatar
semisol semisol@nostr.land 1 week ago
Even if the database is moved into the enclave, it requires persistent storage. All keys for the enclave and other persistent state are provided outside the enclave, which opens it up to risks. And unless *you* are asked each time to share your key with a new enclave firmware, and on each restart or redeploy of their production servers, then the keys are coming from somewhere else that can disclose them.
2 replies ↓