Post · Open Science

@Blort @nicfab we know about wkd and some of us have engaged with it in earlier times. Our current trajectory of #chatmail developments is not directly fitting as we are aiming to hide all cryptographic identity information from the transport layer (email servers). Wkd rather reinforces the central role of email servers in managing and controlling a users cryptographic identity. Besides there are error cases (wkd down/erroring), stale keys and other issues that cause UX challenges.

Nicola Fabiano

@nicfab@fosstodon.org replied · 4 days ago

@delta @Blort I won't go into technical details here. There is an IETF draft that I referred to. I appreciate your work, but standards must be respected. If any WKDs are not working, there may be misconfiguration issues.

Delta Chat

@delta@chaos.social replied · 4 days ago

@nicfab @Blort we know there is an IETF doc about wkd. Delta is probably one of the most standards based messengers out there https://github.com/chatmail/core/blob/main/standards.md
But that doesn't mean any IETF standard is unconditionally a good idea for resilient decentralized messaging.

GitHub

core/standards.md at main · chatmail/core

Chatmail Rust Core library, used by Android/iOS/desktop apps, bindings and bots 📧 - chatmail/core

Nicola Fabiano

@nicfab@fosstodon.org replied · 4 days ago

@delta @Blort 3/3 - That's why I see WKD and projects like DeltaChat as complementary rather than competing — WKD improves the email baseline. At the same time, Delta pushes the boundaries of what email-based messaging can achieve. Different tools for different threat models and use cases.

Nicola Fabiano

@nicfab@fosstodon.org replied · 4 days ago

@delta @Blort 2/3 - WKD solves one specific problem (key discovery), making traditional email encryption more accessible. However, as you point out, true resilience requires more: forward secrecy, metadata protection, and decentralization without single points of failure.

Nicola Fabiano

@nicfab@fosstodon.org replied · 4 days ago

@delta @Blort 1/3 - Absolutely right — IETF standards aren't automatically the best fit for every use case. DeltaChat is actually a great example of this nuanced approach: it leverages email infrastructure creatively while adding features like Autocrypt and ChatMail servers to address some of email's inherent limitations.

Open Science

We are a network of scientists, developers and organizations building the next generation of digital spaces for open science.

Open Science: About · Code of conduct · Privacy · Users · Instances

Bonfire open science · 1.0.0-rc.2.35 no JS en

Automatic federation enabled