in Scuttlebutt, every message is signed into your feed

Very important point @mikey!
Thanks for bringing it up again. I'm always a bit sad when new people come across this after they are already on board (recent example..). I think these functional priciples and its effecs need to be really boiled down to digestable facts during onboarding.

in otr .. you leak your key.

All the clients I used for some time (pidgin, jackline) implemented otr with some sort of long-term secret so you only had to do the verify over sidechannel dance once. Looks like I've been using it wrong for all those years and should have dumped my key much more often... or I wonder if these long-terms were used to create session keys...

From the how do others #cryptography department I'm still interested to see how ietf mls will develop (think of more specified ratched). Using that and ssb as a trampolin to create ephemeral groups is kinda what I want but am not sure how to consolidate full-decent with its requirements yet.. they even dislike the federated scenario, so it seems from the mailing list.

Direct Anonymous Attestation is another scheme which should offer somehting like anonymous signatures but I don't like the corperate cert auth vibe (it's coming from the TPM community) and didn't dig in much deeper yet.

I also hope group riccochet has something new to offer.