This is a problem with Maple.
A TEE has no persistent memory. All persistent state needs to be outside the TEE, and data and encryption keys must be reinjectef on each startup if there is any state.
In Maple’s case, the data is stored in an external Postgres DB. And the keys to protect the data eventually anchor to AWS KMS, where any employee with privileged access can subvert ALL protections.
They hold the keys instead of the users.
**This is the only reason they can provide password resets without losing your data, or social logins.**
semisol
npub122…cgrkj
2026-05-29 18:43:59 UTC
in reply to nevent1q…3dvm
Author Public Key
npub12262qa4uhw7u8gdwlgmntqtv7aye8vdcmvszkqwgs0zchel6mz7s6cgrkjPublished at
2026-05-29 18:43:59 UTCEvent JSON
{
"id": "afad3a24d77546b3b42f0bc058fb66d0e66576d37fa500d88c77d68cedc53fb3",
"pubkey": "52b4a076bcbbbdc3a1aefa3735816cf74993b1b8db202b01c883c58be7fad8bd",
"created_at": 1780080239,
"kind": 1,
"tags": [
[
"e",
"0000ef7f9db39890fa0b5125a1db87bc4fde9b6b5aa63d28b2b7870bc2d9f3bc",
"wss://eden.nostr.land/beacon-prism-beacon",
"root"
],
[
"e",
"99264247bd17d1c5c04a75a1edf44667ee544e62607c2275db0a89b36e01621a",
"wss://relay.damus.io",
"reply",
"da18e9860040f3bf493876fc16b1a912ae5a6f6fa8d5159c3de2b8233a0d9851"
],
[
"p",
"3c559080f647074a638e9cc6d4c487a06bfab810402aab9a6794fb49a053153e"
],
[
"p",
"da18e9860040f3bf493876fc16b1a912ae5a6f6fa8d5159c3de2b8233a0d9851"
]
],
"content": "This is a problem with Maple.\n\nA TEE has no persistent memory. All persistent state needs to be outside the TEE, and data and encryption keys must be reinjectef on each startup if there is any state.\n\nIn Maple’s case, the data is stored in an external Postgres DB. And the keys to protect the data eventually anchor to AWS KMS, where any employee with privileged access can subvert ALL protections.\n\nThey hold the keys instead of the users.\n\n**This is the only reason they can provide password resets without losing your data, or social logins.**",
"sig": "6b8c71d5bba40f9188fcc071c8cda00ba4d68429daf3e41ec592611f62629ca5b6deaa949e48e198797165811164ca81fd6eab3d17a652fd61c24387bba75307"
}