Curious if anyone has looked into using #webfinger #sshkeys and #activitypub to prevent #fediverse message spoofing? I’m not a crypto expert, and would probably need to happen server-to-server, but might it be useful?
Follow
@sivy Well gpg keys would make more sense than ssh keys.
I really wish public key infrastructure had been built into the core of #ActivityPub and I'm strongly critical of the platform for missing that opportunity.
But yep, it can be bolted on. I hope it will be.
That said, there is server to server cryptographic methods already involved. We just need it to be end to end.
