|
|
|
|
|
|
by SteveJS
5165 days ago
|
|
|
The claim of how the server doesn't have the information to decrypt seems valid. The key is computed locally and never sent to the sever. That doesn't make this a good idea, but I see plenty of comments already pointing to the specifics of bad RNG, crypto in Javascript being problematic, etc. |
|
|