If you're designing E2EE in 2026
And your expectation for the user experience is that even half your users will
manually verify key fingerprints, safety numbers, etc.
know whay to do when these mechanisms fail
Then you have not been paying attention to the research at all!
That isn't the normal behavior for how we use software.
When's the last time someone you kmow that doesn't know what "TCP" is inspected a webzite's certificate before sending it their password?
Soatok Dreamseeker
npub17u…4305p
2026-02-20 13:36:54 UTC
Author Public Key
npub17uyfsxsnfgg6dgqazlfjv2gdl235mq0dug9wq6kjq9ngzh6pdyese4305pPublished at
2026-02-20 13:36:54 UTCEvent JSON
{
"id": "20e497f41a4c1f4142c97dc6adf7f50330c56b32127a158ddc1b156a048fb93c",
"pubkey": "f708981a134a11a6a01d17d326290dfaa34d81ede20ae06ad20166815f416933",
"created_at": 1771594614,
"kind": 1,
"tags": [
[
"proxy",
"https://furry.engineer/users/soatok/statuses/116103224648258064",
"activitypub"
],
[
"client",
"Mostr",
"31990:6be38f8c63df7dbf84db7ec4a6e6fbbd8d19dca3b980efad18585c46f04b26f9:mostr",
"wss://relay.ditto.pub"
]
],
"content": "If you're designing E2EE in 2026\n\nAnd your expectation for the user experience is that even half your users will \n\nmanually verify key fingerprints, safety numbers, etc.\nknow whay to do when these mechanisms fail\n\nThen you have not been paying attention to the research at all!\n\nThat isn't the normal behavior for how we use software.\n\nWhen's the last time someone you kmow that doesn't know what \"TCP\" is inspected a webzite's certificate before sending it their password?",
"sig": "9c50e88b68b20162c90c8da705c214378712c6a69680d851fc0dfca6607d0410ebf56ae2f1852b1fffc4bb289b0d9db5a988b0444b3b7d09ddfd7c36fcfde7e3"
}