cds-amal

One of my 4am tweets mentions nonce reuse. I was speaking casually bc I was flabbergasted by just how fucking stupid this is. And nonce reuse is historically the stupidest thing so they got crossed in my heads. I got the other one right, so I'll repeat it now: These guys rolled their own crypto so fucking hard that anyone could get your private key from public information. Cardano should stop obsessing over whether this is a Cardano hack and realize that THIS IS INSANE. Fucking up the nonces is common with ECDSA. It is NOT EdDSA/Ed25519. This shit was intentionally DESIGNED to eliminate the footguns that are common with EDCSA. It took WORK for the developers of this wallet to accomplish this. Using the standard crypto libs—which are used by all wallets in a sane universe—would NOT result in this issue. If you are building a wallet and cant get the bare minimum correct, you deserve to die a violent and bloody death. NO ONE should not expect someone who cannot even walk to be able to run, jump, skip, hop, etc. And ALL of those skills are necessary when building a wallet in this adversarial ass space. This must be the end of Emurgo/SecondFi/Yoroi. If you forgive and forget, you are sealing your own fate and being willfully fucking retarded.

Jack Dorsey put 1.3 million dollars into it. Vitalik Buterin gave it 128 ETH. You have never heard of it. It is called SimpleX. It is a messenger. It does not need a phone number. It does not need an email. It does not need a username. It does not need a user ID. Not a hidden ID. Not a hashed ID. None at all. Signal needs your phone number. WhatsApp needs your phone number. Telegram needs your phone number. Every messenger you have ever called "private" knows the one thing your bank, your stalker, and your country use to identify you. SimpleX knows nothing. It was built by Evgeny Poberezkin, a London-based engineer. Before this he wrote Ajv, the JavaScript validator that runs in 300 million downloads every month. He could have built anything. He built the messenger with no users on the server. Here is the trick. Every other messenger gives you an identity. SimpleX gives you a connection. Each chat is its own one-way pipe. The server never sees who you are talking to. It does not even know you exist as a user. 11,327 stars. AGPL-3.0. Version 7.0 beta released two days ago. iOS. Android. macOS. Windows. Linux. Free. A 4-person team in London is the last line of defense between your conversations and every government, every advertiser, and every database breach. The most private messenger ever built is the one you have never heard of. (Link in the comments)