From d249eb2002c13ccf416025b2f3010a38d193949a Mon Sep 17 00:00:00 2001 From: Andy Balaam Date: Mon, 19 May 2025 13:33:05 +0100 Subject: [PATCH] Note that servers can delete key backups already --- proposals/4287-shared-key-backup-preference.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/proposals/4287-shared-key-backup-preference.md b/proposals/4287-shared-key-backup-preference.md index 167d97100..ff3efd0f8 100644 --- a/proposals/4287-shared-key-backup-preference.md +++ b/proposals/4287-shared-key-backup-preference.md @@ -105,7 +105,8 @@ server could: * increase the user's attack surface by tricking clients into performing key backups against the user's will, or -* cause data loss by tricking clients into not performing key backups. +* cause data loss by tricking clients into not performing key backups. (But + servers can delete data from key backups at will, so this seems unimportant.) This can be mitigated if clients make the setting, or any change to the setting, visible to users, especially at the time when it affects behaviour (on sign-in).