Comment on [deleted]
vrighter@discuss.tchncs.de 1 year ago
do you have the full blockchain on your phone? no?
Do you host the full blockchain on a server at home and access that through your phone? no?
Then you’re consuming someone’s private api. They can send you whatever and you will trust it, because you don’t verify anything they return.
iopq@lemmy.world 1 year ago
If you connect to the internet through an ISP you can’t trust that either. That’s why we have encryption, you can only block the whole message from appearing completely, you can’t change its contents
vrighter@discuss.tchncs.de 1 year ago
using encryption in this case protects you from the isp messing with your communication to the api provider. The api can still lie to you and encrypt the lie.
iopq@lemmy.world 1 year ago
The API provider similarly can’t sign an encrypted message with a key it doesn’t have