I finally began documenting the #E2EE cryptosystem I'm implementing in #Enigmatick
https://gitlab.com/enigmatick/enigmatick-core/-/blob/master/ENCRYPTION.md
Even though my implementation in Enigmatick is still a work-in-progress, I think I've settled on the big details enough that I can begin documenting the ideas. And my implementation is less important than getting the core ideas out there for thought and discussion.
Please use this issue for comments:
@justin Am I understanding it correctly that client's secret keys are client-side encrypted and stored on the server (as olm accounts)? If so, which key is used for encryption?
Do clients sync their keys using those server-side encrypted accounts?