Message-ID:

It is surely a great calamity for a human being to have no obsessions. -- Robert Bly

computers / alt.privacy.anon-server / Bitmessage signing clear text?

Bitmessage signing clear text?

<tmt64k$1rpu$2@gioia.aioe.org>

https://news.novabbs.com/computers/article-flat.php?id=13202&group=alt.privacy.anon-server#13202

copy link Newsgroups: alt.privacy.anon-server sci.crypt alt.privacy

Path: i2pn2.org!i2pn.org!aioe.org!C9tvVYvMcx+5HN31CmwTXA.user.46.165.242.91.POSTED!not-for-mail
From: gne...@anonymous.invalid (Gneiss)
Newsgroups: alt.privacy.anon-server,sci.crypt,alt.privacy
Subject: Bitmessage signing clear text?
Date: Thu, 8 Dec 2022 11:16:34 -0600
Organization: Aioe.org NNTP Server
Message-ID: <tmt64k$1rpu$2@gioia.aioe.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Info: gioia.aioe.org; logging-data="61246"; posting-host="C9tvVYvMcx+5HN31CmwTXA.user.gioia.aioe.org"; mail-complaints-to="abuse@aioe.org";
Content-Language: en-US
X-Notice: Filtered by postfilter v. 0.9.2

by: Gneiss - Thu, 8 Dec 2022 17:16 UTC

Ein anonymer Benutzer schrieb:

"Alternatively, you can extract the private signing key of your
bitmessage address, import it into a bitcoin wallet like electrum, and
sign the message bitcoin-style. But the verification procedure would be
equally awkward, so why bother."

You did say the procedure is awkward. This is true for most of the
crypto applications offered to the public.

This awkwardness is the first of the red flags that indicate lack of
design skill in the application development process.

At no time should a developer release software that is awkward to the
user of it.

At no time should the users of the software settle for the awkwardness
of it. In second, they should not be trusting of it if it is hard or
awkward to the use.

This is especially the case for applications such as openssl and gnupg
and the cryptocurrencies. They are not trustworthy because of the
difficulty in the use and the availability of too many useless features
that cause the reading of the documentation to require extensive effort
and hunting for the simple parts of it.

The pitfalls caused by this witness to the lack of thought that preceded
the race to write the code of the applications.

Another problem presents to us from the users of the applications.

They are even more so stupid than the application developers. They think
if the software is hard to use, and they can by much wasted time finally
do something with it that this is a signal of their superior intellect.
They do not realize that the superior intellect would first refuse to
waste time with the difficulty of complex nonsense.

These are my immediate reflections on the sad state of the software of
cryptography.

------------------------------------------------------
I second that suggestion.

The way the message format is designed is fairly rigid and specific
about the use of encryption and signatures. But you can always achieve
the same result (effectively unencrypted) by sending a message to a key
that you control, or to a public channel address.

Alternatively, you can extract the private signing key of your
bitmessage address, import it into a bitcoin wallet like electrum, and
sign the message bitcoin-style. But the verification procedure would be
equally awkward, so why bother.

------------------------------------------------------
If you send a message from a private address that only you have the key
for, then that is proof that you sent the message and not anyone else
pretending to be you.

------------------------------------------------------
Is possible to sign a text message, cleartext, with bitaddress?
Just like I already do with bitcoin address.

Subject	Author
Bitmessage signing clear text?	Gneiss