Hybrid Groups

blog/2024-01-05-path-to-hybrid-groups.md

@@ -0,0 +1,101 @@
+---
+title: "Path to Hybrid Groups"
+description: "A look at how we plan on implementing the next generation of Cwtch multi-party messaging"
+slug: path-to-hybrid-groups
+tags: [cwtch, hybrid-groups]
+image: /img/hybridgroups.png
+hide_table_of_contents: false
+toc_max_heading_level: 4
+authors:
+- name: Sarah Jamie Lewis
+  title: Executive Director, Open Privacy Research Society
+  image_url: /img/sarah.jpg
+---
+
+Back in [September 2023 we released Cwtch 1.13](/blog/cwtch-1-13), the first version of Cwtch to be labelled as **stable**, 
+and a major milestone in Cwtch development. 
+
+With the Cwtch interface now stable, we are in a position to begin a new phase in Cwtch development: a Path towards
+**Hybrid Groups**.
+
+![](/img/hybridgroups.png)
+ 
+<!--truncate-->
+
+## The Problem with Cwtch Groups
+
+One of the unique features of Cwtch is that groups are dependent on [untrusted infrastructure](/security/components/cwtch/server).
+
+Because of this, at their most basic, a Cwtch group is simply an agreement between a set of peers on a common
+cryptographic key, and a common (set of) untrusted server(s).
+
+This provides Cwtch Groups with very nice properties such as anonymity to anyone not in the group, but it does mean
+that certain other nice properties like member flexibility, and credential rotation are difficult to achieve.
+
+We want to allow people to make the right trade-off when it comes to their own risk models, i.e. to be able to trade
+efficiency for trust when that decision makes sense.
+
+To do that we need to introduce a new class of group into Cwtch, something we are calling **Hybrid Groups**.
+
+## What Are Hybrid Groups?
+
+The goal of hybrid groups is to balance the security properties of Cwtch peer-to-peer communication with the
+properties of untrusted infrastructure. 
+
+This is done by augmenting existing Cwtch Groups with an additional layer of peer-to-peer communication in order to provide
+efficient participant management, key rotation, and other useful features.
+
+### Levels of Hybrid Groups
+
+In practice, we imagine there will be a few different levels of Hybrid Group, reflecting different trade-offs between inter-peer trust,
+communication efficiency, and group security.
+
+There are **Traditional Groups**, these have similar properties to the existing Cwtch Groups. Highly inefficient, but essentially 
+require zero-trust on behalf of participants other than an expectation that the key is kept secret.
+
+We plan to introduce **Managed Groups**: A new kind of group where all participants explicitly trust a given always-online peer (e.g. a bot) with group operations. These 
+will be highly efficient, at the cost of that explicit trust (if that peer behaves maliciously then certain properties are broken). Managed groups will
+be the first Cwtch groups to allow **Contractable** and **Expandable** groups, and more efficient **Key Rotation**.
+
+And finally a category of **Augmented Groups**: An extension of Managed Groups that places configurable restrictions of the trust given to 
+the peer e.g. by requiring participants to take part in a meta-protocol that confirms certain actions before they are carried out (preventing
+the trusted-peer from harming properties like **Participant Consistency**.
+
+## Group Messaging Metadata
+
+As with the rest of Cwtch, our ultimate goal is that no metadata (and specifically as part of this work, no group metadata e.g. membership, message timing) be
+available to a party outside of the group.
+
+Traditional Cwtch Groups take this to the extreme, and the expense of long syncing times, and a high possibility of disruption. Managed Groups
+and Augmented groups will allow communities to make the right trade-offs allowing for greater resilience and faster syncing.
+
+## A Rough Timeline (Q1)
+
+- By **February 2024**: The Cwtch library will support exposing **Enhanced Permissions**, these are essential to implementing many of the aspects
+of the new group design, as well as improving other parts of contact management. (Expect more about this in a future devlog).
+- By **February 2024**: A formal model for Managed Groups will be created and documented. This will form the basis of the implementation, and ensure that the resulting properties are sound.
+- By **March 2024**: An initial implementation of Managed Groups will be merged into the Cwtch library and gated-support will be available 
+in the UI.
+
+Once Managed Groups have been rolled out for testing, we will assess what we have learned and proceed with similar steps for 
+Augmented Groups.
+
+## Stay up to date!
+
+As always, we will be regularly updating this devlog [and other channels](https://fosstodon.org/@cwtch) as we continue to make progress towards
+surveillance resistant infrastructure!
+
+Subscribe to our [RSS feed](/blog/rss.xml), [Atom feed](/blog/atom.xml), or [JSON feed](/blog/feed.json) to stay up to date, and get the latest on, all aspects of Cwtch development.
+
+## Help us go further!
+
+We couldn't do what we do without all the wonderful community support we get, from [one-off donations](https://openprivacy.ca/donate) to [recurring support via Patreon](https://www.patreon.com/openprivacy).
+
+If you want to see us move faster on some of these goals and are in a position to, please [donate](https://openprivacy.ca/donate). If you happen to be at a company that wants to do more for the community and this aligns, please consider donating or sponsoring a developer.
+
+Donations of **$5 or more** can opt to receive stickers as a thank-you gift!
+
+For more information about donating to Open Privacy and claiming a thank you gift [please visit the Open Privacy Donate page](https://openprivacy.ca/donate/).
+
+![A Photo of Cwtch Stickers](/img/stickers-new.jpg)
+

build-staging/assets/js/15d993af.c85d28e6.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[1174],{3170:e=>{e.exports=JSON.parse('{"permalink":"/blog/tags/cwtch","page":1,"postsPerPage":10,"totalPages":3,"totalCount":23,"nextPage":"/blog/tags/cwtch/page/2","blogDescription":"Blog","blogTitle":"Blog"}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[1174],{3170:e=>{e.exports=JSON.parse('{"permalink":"/blog/tags/cwtch","page":1,"postsPerPage":10,"totalPages":3,"totalCount":24,"nextPage":"/blog/tags/cwtch/page/2","blogDescription":"Blog","blogTitle":"Blog"}')}}]);

build-staging/assets/js/16838ca5.e4d8f48a.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[4704],{4674:a=>{a.exports=JSON.parse('{"label":"cwtch","permalink":"/blog/tags/cwtch","allTagsPath":"/blog/tags","count":23}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[4704],{4674:a=>{a.exports=JSON.parse('{"label":"cwtch","permalink":"/blog/tags/cwtch","allTagsPath":"/blog/tags","count":24}')}}]);

build-staging/assets/js/39c54b43.a73d213c.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[8793],{4990:e=>{e.exports=JSON.parse('{"permalink":"/blog/tags/cwtch/page/2","page":2,"postsPerPage":10,"totalPages":3,"totalCount":23,"previousPage":"/blog/tags/cwtch","nextPage":"/blog/tags/cwtch/page/3","blogDescription":"Blog","blogTitle":"Blog"}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[8793],{4990:e=>{e.exports=JSON.parse('{"permalink":"/blog/tags/cwtch/page/2","page":2,"postsPerPage":10,"totalPages":3,"totalCount":24,"previousPage":"/blog/tags/cwtch","nextPage":"/blog/tags/cwtch/page/3","blogDescription":"Blog","blogTitle":"Blog"}')}}]);

build-staging/assets/js/52f07771.3ccacc54.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[7958],{6818:a=>{a.exports=JSON.parse('{"label":"cwtch","permalink":"/blog/tags/cwtch","allTagsPath":"/blog/tags","count":23}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[7958],{6818:a=>{a.exports=JSON.parse('{"label":"cwtch","permalink":"/blog/tags/cwtch","allTagsPath":"/blog/tags","count":24}')}}]);

build-staging/assets/js/55d4c988.9f7e81ae.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[6946],{9048:a=>{a.exports=JSON.parse('{"label":"cwtch","permalink":"/blog/tags/cwtch","allTagsPath":"/blog/tags","count":23}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[6946],{9048:a=>{a.exports=JSON.parse('{"label":"cwtch","permalink":"/blog/tags/cwtch","allTagsPath":"/blog/tags","count":24}')}}]);

build-staging/assets/js/8eb4e46b.e6ba3de0.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[1],{2638:e=>{e.exports=JSON.parse('{"permalink":"/blog/page/2","page":2,"postsPerPage":10,"totalPages":3,"totalCount":23,"previousPage":"/blog","nextPage":"/blog/page/3","blogDescription":"The latest updated on Cwtch development.","blogTitle":"Development Log"}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[1],{2638:e=>{e.exports=JSON.parse('{"permalink":"/blog/page/2","page":2,"postsPerPage":10,"totalPages":3,"totalCount":24,"previousPage":"/blog","nextPage":"/blog/page/3","blogDescription":"The latest updated on Cwtch development.","blogTitle":"Development Log"}')}}]);

build-staging/assets/js/92999a1c.129fdaff.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[8442],{5310:e=>{e.exports=JSON.parse('{"permalink":"/blog/page/3","page":3,"postsPerPage":10,"totalPages":3,"totalCount":23,"previousPage":"/blog/page/2","blogDescription":"The latest updated on Cwtch development.","blogTitle":"Development Log"}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[8442],{5310:e=>{e.exports=JSON.parse('{"permalink":"/blog/page/3","page":3,"postsPerPage":10,"totalPages":3,"totalCount":24,"previousPage":"/blog/page/2","blogDescription":"The latest updated on Cwtch development.","blogTitle":"Development Log"}')}}]);

build-staging/assets/js/a11b2692.4cea8f43.js

@@ -0,0 +1 @@
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[8688],{4904:s=>{s.exports=JSON.parse('{"label":"hybrid-groups","permalink":"/blog/tags/hybrid-groups","allTagsPath":"/blog/tags","count":1}')}}]);

build-staging/assets/js/a7023ddc.0ff51b90.js

@@ -1 +0,0 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[1713],{3457:l=>{l.exports=JSON.parse('[{"label":"cwtch","permalink":"/blog/tags/cwtch","count":23},{"label":"cwtch-stable","permalink":"/blog/tags/cwtch-stable","count":23},{"label":"release","permalink":"/blog/tags/release","count":3},{"label":"planning","permalink":"/blog/tags/planning","count":5},{"label":"nightly","permalink":"/blog/tags/nightly","count":4},{"label":"whonix","permalink":"/blog/tags/whonix","count":1},{"label":"preview","permalink":"/blog/tags/preview","count":2},{"label":"search","permalink":"/blog/tags/search","count":1},{"label":"contributors","permalink":"/blog/tags/contributors","count":1},{"label":"community","permalink":"/blog/tags/community","count":1},{"label":"reproducible-builds","permalink":"/blog/tags/reproducible-builds","count":3},{"label":"bindings","permalink":"/blog/tags/bindings","count":5},{"label":"repliqate","permalink":"/blog/tags/repliqate","count":3},{"label":"developer-documentation","permalink":"/blog/tags/developer-documentation","count":1},{"label":"documentation","permalink":"/blog/tags/documentation","count":1},{"label":"security-handbook","permalink":"/blog/tags/security-handbook","count":1},{"label":"autobindings","permalink":"/blog/tags/autobindings","count":2},{"label":"libcwtch","permalink":"/blog/tags/libcwtch","count":2},{"label":"support","permalink":"/blog/tags/support","count":3},{"label":"testing","permalink":"/blog/tags/testing","count":2},{"label":"api","permalink":"/blog/tags/api","count":1}]')}}]);

build-staging/assets/js/a7023ddc.8d54de22.js

@@ -0,0 +1 @@
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[1713],{3457:l=>{l.exports=JSON.parse('[{"label":"cwtch","permalink":"/blog/tags/cwtch","count":24},{"label":"hybrid-groups","permalink":"/blog/tags/hybrid-groups","count":1},{"label":"cwtch-stable","permalink":"/blog/tags/cwtch-stable","count":23},{"label":"release","permalink":"/blog/tags/release","count":3},{"label":"planning","permalink":"/blog/tags/planning","count":5},{"label":"nightly","permalink":"/blog/tags/nightly","count":4},{"label":"whonix","permalink":"/blog/tags/whonix","count":1},{"label":"preview","permalink":"/blog/tags/preview","count":2},{"label":"search","permalink":"/blog/tags/search","count":1},{"label":"contributors","permalink":"/blog/tags/contributors","count":1},{"label":"community","permalink":"/blog/tags/community","count":1},{"label":"reproducible-builds","permalink":"/blog/tags/reproducible-builds","count":3},{"label":"bindings","permalink":"/blog/tags/bindings","count":5},{"label":"repliqate","permalink":"/blog/tags/repliqate","count":3},{"label":"developer-documentation","permalink":"/blog/tags/developer-documentation","count":1},{"label":"documentation","permalink":"/blog/tags/documentation","count":1},{"label":"security-handbook","permalink":"/blog/tags/security-handbook","count":1},{"label":"autobindings","permalink":"/blog/tags/autobindings","count":2},{"label":"libcwtch","permalink":"/blog/tags/libcwtch","count":2},{"label":"support","permalink":"/blog/tags/support","count":3},{"label":"testing","permalink":"/blog/tags/testing","count":2},{"label":"api","permalink":"/blog/tags/api","count":1}]')}}]);

build-staging/assets/js/a827eaec.920a2fe6.js

@@ -0,0 +1 @@
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[7548],{9163:e=>{e.exports=JSON.parse('{"permalink":"/blog/tags/hybrid-groups","page":1,"postsPerPage":10,"totalPages":1,"totalCount":1,"blogDescription":"Blog","blogTitle":"Blog"}')}}]);

build-staging/assets/js/b2b675dd.9009aa1a.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[533],{8017:e=>{e.exports=JSON.parse('{"permalink":"/blog","page":1,"postsPerPage":10,"totalPages":3,"totalCount":23,"nextPage":"/blog/page/2","blogDescription":"The latest updated on Cwtch development.","blogTitle":"Development Log"}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[533],{8017:e=>{e.exports=JSON.parse('{"permalink":"/blog","page":1,"postsPerPage":10,"totalPages":3,"totalCount":24,"nextPage":"/blog/page/2","blogDescription":"The latest updated on Cwtch development.","blogTitle":"Development Log"}')}}]);

build-staging/assets/js/fdfbe12f.16901ed1.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[6522],{1484:e=>{e.exports=JSON.parse('{"permalink":"/blog/tags/cwtch/page/3","page":3,"postsPerPage":10,"totalPages":3,"totalCount":23,"previousPage":"/blog/tags/cwtch/page/2","blogDescription":"Blog","blogTitle":"Blog"}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[6522],{1484:e=>{e.exports=JSON.parse('{"permalink":"/blog/tags/cwtch/page/3","page":3,"postsPerPage":10,"totalPages":3,"totalCount":24,"previousPage":"/blog/tags/cwtch/page/2","blogDescription":"Blog","blogTitle":"Blog"}')}}]);

build-staging/blog/atom.xml

@@ -2,12 +2,44 @@
 <feed xmlns="http://www.w3.org/2005/Atom">
     <id>https://docs.cwtch.im/blog</id>
     <title>Cwtch Development Log</title>
-    <updated>2023-09-27T00:00:00.000Z</updated>
+    <updated>2024-01-05T00:00:00.000Z</updated>
     <generator>https://github.com/jpmonette/feed</generator>
     <link rel="alternate" href="https://docs.cwtch.im/blog"/>
     <subtitle>The latest insight into Cwtch Development and what the Cwtch team are working on</subtitle>
     <icon>https://docs.cwtch.im/img/favicon.png</icon>
     <rights>Copyright © ${new Date().getFullYear()} Open Privacy Research Society</rights>
+    <entry>
+        <title type="html"><![CDATA[Path to Hybrid Groups]]></title>
+        <id>https://docs.cwtch.im/blog/path-to-hybrid-groups</id>
+        <link href="https://docs.cwtch.im/blog/path-to-hybrid-groups"/>
+        <updated>2024-01-05T00:00:00.000Z</updated>
+        <summary type="html"><![CDATA[A look at how we plan on implementing the next generation of Cwtch multi-party messaging]]></summary>
+        <content type="html"><![CDATA[<p>Back in <a href="/blog/cwtch-1-13">September 2023 we released Cwtch 1.13</a>, the first version of Cwtch to be labelled as <strong>stable</strong>,
+and a major milestone in Cwtch development. </p><p>With the Cwtch interface now stable, we are in a position to begin a new phase in Cwtch development: a Path towards
+<strong>Hybrid Groups</strong>.</p><p><img loading="lazy" src="/assets/images/hybridgroups-11c21d2516ceadabac8af92290b53a08.png" width="1005" height="481" class="img_ev3q"></p><h2 class="anchor anchorWithStickyNavbar_LWe7" id="the-problem-with-cwtch-groups">The Problem with Cwtch Groups<a href="#the-problem-with-cwtch-groups" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h2><p>One of the unique features of Cwtch is that groups are dependent on <a href="/security/components/cwtch/server">untrusted infrastructure</a>.</p><p>Because of this, at their most basic, a Cwtch group is simply an agreement between a set of peers on a common
+cryptographic key, and a common (set of) untrusted server(s).</p><p>This provides Cwtch Groups with very nice properties such as anonymity to anyone not in the group, but it does mean
+that certain other nice properties like member flexibility, and credential rotation are difficult to achieve.</p><p>We want to allow people to make the right trade-off when it comes to their own risk models, i.e. to be able to trade
+efficiency for trust when that decision makes sense.</p><p>To do that we need to introduce a new class of group into Cwtch, something we are calling <strong>Hybrid Groups</strong>.</p><h2 class="anchor anchorWithStickyNavbar_LWe7" id="what-are-hybrid-groups">What Are Hybrid Groups?<a href="#what-are-hybrid-groups" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h2><p>The goal of hybrid groups is to balance the security properties of Cwtch peer-to-peer communication with the
+properties of untrusted infrastructure. </p><p>This is done by augmenting existing Cwtch Groups with an additional layer of peer-to-peer communication in order to provide
+efficient participant management, key rotation, and other useful features.</p><h3 class="anchor anchorWithStickyNavbar_LWe7" id="levels-of-hybrid-groups">Levels of Hybrid Groups<a href="#levels-of-hybrid-groups" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h3><p>In practice, we imagine there will be a few different levels of Hybrid Group, reflecting different trade-offs between inter-peer trust,
+communication efficiency, and group security.</p><p>There are <strong>Traditional Groups</strong>, these have similar properties to the existing Cwtch Groups. Highly inefficient, but essentially
+require zero-trust on behalf of participants other than an expectation that the key is kept secret.</p><p>We plan to introduce <strong>Managed Groups</strong>: A new kind of group where all participants explicitly trust a given always-online peer (e.g. a bot) with group operations. These
+will be highly efficient, at the cost of that explicit trust (if that peer behaves maliciously then certain properties are broken). Managed groups will
+be the first Cwtch groups to allow <strong>Contractable</strong> and <strong>Expandable</strong> groups, and more efficient <strong>Key Rotation</strong>.</p><p>And finally a category of <strong>Augmented Groups</strong>: An extension of Managed Groups that places configurable restrictions of the trust given to
+the peer e.g. by requiring participants to take part in a meta-protocol that confirms certain actions before they are carried out (preventing
+the trusted-peer from harming properties like <strong>Participant Consistency</strong>.</p><h2 class="anchor anchorWithStickyNavbar_LWe7" id="group-messaging-metadata">Group Messaging Metadata<a href="#group-messaging-metadata" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h2><p>As with the rest of Cwtch, our ultimate goal is that no metadata (and specifically as part of this work, no group metadata e.g. membership, message timing) be
+available to a party outside of the group.</p><p>Traditional Cwtch Groups take this to the extreme, and the expense of long syncing times, and a high possibility of disruption. Managed Groups
+and Augmented groups will allow communities to make the right trade-offs allowing for greater resilience and faster syncing.</p><h2 class="anchor anchorWithStickyNavbar_LWe7" id="a-rough-timeline-q1">A Rough Timeline (Q1)<a href="#a-rough-timeline-q1" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h2><ul><li>By <strong>February 2024</strong>: The Cwtch library will support exposing <strong>Enhanced Permissions</strong>, these are essential to implementing many of the aspects
+of the new group design, as well as improving other parts of contact management. (Expect more about this in a future devlog).</li><li>By <strong>February 2024</strong>: A formal model for Managed Groups will be created and documented. This will form the basis of the implementation, and ensure that the resulting properties are sound.</li><li>By <strong>March 2024</strong>: An initial implementation of Managed Groups will be merged into the Cwtch library and gated-support will be available
+in the UI.</li></ul><p>Once Managed Groups have been rolled out for testing, we will assess what we have learned and proceed with similar steps for
+Augmented Groups.</p><h2 class="anchor anchorWithStickyNavbar_LWe7" id="stay-up-to-date">Stay up to date!<a href="#stay-up-to-date" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h2><p>As always, we will be regularly updating this devlog <a href="https://fosstodon.org/@cwtch" target="_blank" rel="noopener noreferrer">and other channels</a> as we continue to make progress towards
+surveillance resistant infrastructure!</p><p>Subscribe to our <a href="/blog/rss.xml">RSS feed</a>, <a href="/blog/atom.xml">Atom feed</a>, or <a href="/blog/feed.json">JSON feed</a> to stay up to date, and get the latest on, all aspects of Cwtch development.</p><h2 class="anchor anchorWithStickyNavbar_LWe7" id="help-us-go-further">Help us go further!<a href="#help-us-go-further" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h2><p>We couldn't do what we do without all the wonderful community support we get, from <a href="https://openprivacy.ca/donate" target="_blank" rel="noopener noreferrer">one-off donations</a> to <a href="https://www.patreon.com/openprivacy" target="_blank" rel="noopener noreferrer">recurring support via Patreon</a>.</p><p>If you want to see us move faster on some of these goals and are in a position to, please <a href="https://openprivacy.ca/donate" target="_blank" rel="noopener noreferrer">donate</a>. If you happen to be at a company that wants to do more for the community and this aligns, please consider donating or sponsoring a developer.</p><p>Donations of <strong>$5 or more</strong> can opt to receive stickers as a thank-you gift!</p><p>For more information about donating to Open Privacy and claiming a thank you gift <a href="https://openprivacy.ca/donate/" target="_blank" rel="noopener noreferrer">please visit the Open Privacy Donate page</a>.</p><p><img loading="lazy" alt="A Photo of Cwtch Stickers" src="/assets/images/stickers-new-1e9b14bdd638b4907cce833e813a09ad.jpg" width="1024" height="768" class="img_ev3q"></p>]]></content>
+        <author>
+            <name>Sarah Jamie Lewis</name>
+        </author>
+        <category label="cwtch" term="cwtch"/>
+        <category label="hybrid-groups" term="hybrid-groups"/>
+    </entry>
     <entry>
         <title type="html"><![CDATA[Cwtch 1.13 Stable Release Candidate]]></title>
         <id>https://docs.cwtch.im/blog/cwtch-1-13</id>

build-staging/blog/rss.xml

@@ -4,11 +4,40 @@
         <title>Cwtch Development Log</title>
         <link>https://docs.cwtch.im/blog</link>
         <description>The latest insight into Cwtch Development and what the Cwtch team are working on</description>
-        <lastBuildDate>Wed, 27 Sep 2023 00:00:00 GMT</lastBuildDate>
+        <lastBuildDate>Fri, 05 Jan 2024 00:00:00 GMT</lastBuildDate>
         <docs>https://validator.w3.org/feed/docs/rss2.html</docs>
         <generator>https://github.com/jpmonette/feed</generator>
         <language>en</language>
         <copyright>Copyright © ${new Date().getFullYear()} Open Privacy Research Society</copyright>
+        <item>
+            <title><![CDATA[Path to Hybrid Groups]]></title>
+            <link>https://docs.cwtch.im/blog/path-to-hybrid-groups</link>
+            <guid>https://docs.cwtch.im/blog/path-to-hybrid-groups</guid>
+            <pubDate>Fri, 05 Jan 2024 00:00:00 GMT</pubDate>
+            <description><![CDATA[A look at how we plan on implementing the next generation of Cwtch multi-party messaging]]></description>
+            <content:encoded><![CDATA[<p>Back in <a href="/blog/cwtch-1-13">September 2023 we released Cwtch 1.13</a>, the first version of Cwtch to be labelled as <strong>stable</strong>,
+and a major milestone in Cwtch development. </p><p>With the Cwtch interface now stable, we are in a position to begin a new phase in Cwtch development: a Path towards
+<strong>Hybrid Groups</strong>.</p><p><img loading="lazy" src="/assets/images/hybridgroups-11c21d2516ceadabac8af92290b53a08.png" width="1005" height="481" class="img_ev3q"></p><h2 class="anchor anchorWithStickyNavbar_LWe7" id="the-problem-with-cwtch-groups">The Problem with Cwtch Groups<a href="#the-problem-with-cwtch-groups" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h2><p>One of the unique features of Cwtch is that groups are dependent on <a href="/security/components/cwtch/server">untrusted infrastructure</a>.</p><p>Because of this, at their most basic, a Cwtch group is simply an agreement between a set of peers on a common
+cryptographic key, and a common (set of) untrusted server(s).</p><p>This provides Cwtch Groups with very nice properties such as anonymity to anyone not in the group, but it does mean
+that certain other nice properties like member flexibility, and credential rotation are difficult to achieve.</p><p>We want to allow people to make the right trade-off when it comes to their own risk models, i.e. to be able to trade
+efficiency for trust when that decision makes sense.</p><p>To do that we need to introduce a new class of group into Cwtch, something we are calling <strong>Hybrid Groups</strong>.</p><h2 class="anchor anchorWithStickyNavbar_LWe7" id="what-are-hybrid-groups">What Are Hybrid Groups?<a href="#what-are-hybrid-groups" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h2><p>The goal of hybrid groups is to balance the security properties of Cwtch peer-to-peer communication with the
+properties of untrusted infrastructure. </p><p>This is done by augmenting existing Cwtch Groups with an additional layer of peer-to-peer communication in order to provide
+efficient participant management, key rotation, and other useful features.</p><h3 class="anchor anchorWithStickyNavbar_LWe7" id="levels-of-hybrid-groups">Levels of Hybrid Groups<a href="#levels-of-hybrid-groups" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h3><p>In practice, we imagine there will be a few different levels of Hybrid Group, reflecting different trade-offs between inter-peer trust,
+communication efficiency, and group security.</p><p>There are <strong>Traditional Groups</strong>, these have similar properties to the existing Cwtch Groups. Highly inefficient, but essentially
+require zero-trust on behalf of participants other than an expectation that the key is kept secret.</p><p>We plan to introduce <strong>Managed Groups</strong>: A new kind of group where all participants explicitly trust a given always-online peer (e.g. a bot) with group operations. These
+will be highly efficient, at the cost of that explicit trust (if that peer behaves maliciously then certain properties are broken). Managed groups will
+be the first Cwtch groups to allow <strong>Contractable</strong> and <strong>Expandable</strong> groups, and more efficient <strong>Key Rotation</strong>.</p><p>And finally a category of <strong>Augmented Groups</strong>: An extension of Managed Groups that places configurable restrictions of the trust given to
+the peer e.g. by requiring participants to take part in a meta-protocol that confirms certain actions before they are carried out (preventing
+the trusted-peer from harming properties like <strong>Participant Consistency</strong>.</p><h2 class="anchor anchorWithStickyNavbar_LWe7" id="group-messaging-metadata">Group Messaging Metadata<a href="#group-messaging-metadata" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h2><p>As with the rest of Cwtch, our ultimate goal is that no metadata (and specifically as part of this work, no group metadata e.g. membership, message timing) be
+available to a party outside of the group.</p><p>Traditional Cwtch Groups take this to the extreme, and the expense of long syncing times, and a high possibility of disruption. Managed Groups
+and Augmented groups will allow communities to make the right trade-offs allowing for greater resilience and faster syncing.</p><h2 class="anchor anchorWithStickyNavbar_LWe7" id="a-rough-timeline-q1">A Rough Timeline (Q1)<a href="#a-rough-timeline-q1" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h2><ul><li>By <strong>February 2024</strong>: The Cwtch library will support exposing <strong>Enhanced Permissions</strong>, these are essential to implementing many of the aspects
+of the new group design, as well as improving other parts of contact management. (Expect more about this in a future devlog).</li><li>By <strong>February 2024</strong>: A formal model for Managed Groups will be created and documented. This will form the basis of the implementation, and ensure that the resulting properties are sound.</li><li>By <strong>March 2024</strong>: An initial implementation of Managed Groups will be merged into the Cwtch library and gated-support will be available
+in the UI.</li></ul><p>Once Managed Groups have been rolled out for testing, we will assess what we have learned and proceed with similar steps for
+Augmented Groups.</p><h2 class="anchor anchorWithStickyNavbar_LWe7" id="stay-up-to-date">Stay up to date!<a href="#stay-up-to-date" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h2><p>As always, we will be regularly updating this devlog <a href="https://fosstodon.org/@cwtch" target="_blank" rel="noopener noreferrer">and other channels</a> as we continue to make progress towards
+surveillance resistant infrastructure!</p><p>Subscribe to our <a href="/blog/rss.xml">RSS feed</a>, <a href="/blog/atom.xml">Atom feed</a>, or <a href="/blog/feed.json">JSON feed</a> to stay up to date, and get the latest on, all aspects of Cwtch development.</p><h2 class="anchor anchorWithStickyNavbar_LWe7" id="help-us-go-further">Help us go further!<a href="#help-us-go-further" class="hash-link" aria-label="Direct link to heading" title="Direct link to heading">​</a></h2><p>We couldn't do what we do without all the wonderful community support we get, from <a href="https://openprivacy.ca/donate" target="_blank" rel="noopener noreferrer">one-off donations</a> to <a href="https://www.patreon.com/openprivacy" target="_blank" rel="noopener noreferrer">recurring support via Patreon</a>.</p><p>If you want to see us move faster on some of these goals and are in a position to, please <a href="https://openprivacy.ca/donate" target="_blank" rel="noopener noreferrer">donate</a>. If you happen to be at a company that wants to do more for the community and this aligns, please consider donating or sponsoring a developer.</p><p>Donations of <strong>$5 or more</strong> can opt to receive stickers as a thank-you gift!</p><p>For more information about donating to Open Privacy and claiming a thank you gift <a href="https://openprivacy.ca/donate/" target="_blank" rel="noopener noreferrer">please visit the Open Privacy Donate page</a>.</p><p><img loading="lazy" alt="A Photo of Cwtch Stickers" src="/assets/images/stickers-new-1e9b14bdd638b4907cce833e813a09ad.jpg" width="1024" height="768" class="img_ev3q"></p>]]></content:encoded>
+            <category>cwtch</category>
+            <category>hybrid-groups</category>
+        </item>
         <item>
             <title><![CDATA[Cwtch 1.13 Stable Release Candidate]]></title>
             <link>https://docs.cwtch.im/blog/cwtch-1-13</link>

build-staging/de/assets/js/08a52b3e.cf979d42.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[9580],{6754:e=>{e.exports=JSON.parse('{"permalink":"/de/blog/page/3","page":3,"postsPerPage":10,"totalPages":3,"totalCount":23,"previousPage":"/de/blog/page/2","blogDescription":"Die neuste Aktualisierung der Cwtch Entwicklung.","blogTitle":"Entwicklungsprotokoll"}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[9580],{6754:e=>{e.exports=JSON.parse('{"permalink":"/de/blog/page/3","page":3,"postsPerPage":10,"totalPages":3,"totalCount":24,"previousPage":"/de/blog/page/2","blogDescription":"Die neuste Aktualisierung der Cwtch Entwicklung.","blogTitle":"Entwicklungsprotokoll"}')}}]);

build-staging/de/assets/js/0c915b16.4cfac373.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[2833],{6317:e=>{e.exports=JSON.parse('{"label":"cwtch","permalink":"/de/blog/tags/cwtch","allTagsPath":"/de/blog/tags","count":23}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[2833],{6317:e=>{e.exports=JSON.parse('{"label":"cwtch","permalink":"/de/blog/tags/cwtch","allTagsPath":"/de/blog/tags","count":24}')}}]);

build-staging/de/assets/js/1a97c86e.203f6117.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[3727],{9074:e=>{e.exports=JSON.parse('{"permalink":"/de/blog/page/2","page":2,"postsPerPage":10,"totalPages":3,"totalCount":23,"previousPage":"/de/blog","nextPage":"/de/blog/page/3","blogDescription":"Die neuste Aktualisierung der Cwtch Entwicklung.","blogTitle":"Entwicklungsprotokoll"}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[3727],{9074:e=>{e.exports=JSON.parse('{"permalink":"/de/blog/page/2","page":2,"postsPerPage":10,"totalPages":3,"totalCount":24,"previousPage":"/de/blog","nextPage":"/de/blog/page/3","blogDescription":"Die neuste Aktualisierung der Cwtch Entwicklung.","blogTitle":"Entwicklungsprotokoll"}')}}]);

build-staging/de/assets/js/28734d29.0386282b.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[1860],{4512:e=>{e.exports=JSON.parse('{"label":"cwtch","permalink":"/de/blog/tags/cwtch","allTagsPath":"/de/blog/tags","count":23}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[1860],{4512:e=>{e.exports=JSON.parse('{"label":"cwtch","permalink":"/de/blog/tags/cwtch","allTagsPath":"/de/blog/tags","count":24}')}}]);

build-staging/de/assets/js/41944db3.9a9bfb27.js

@@ -1 +1 @@
-"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[7495],{9212:e=>{e.exports=JSON.parse('{"permalink":"/de/blog","page":1,"postsPerPage":10,"totalPages":3,"totalCount":23,"nextPage":"/de/blog/page/2","blogDescription":"Die neuste Aktualisierung der Cwtch Entwicklung.","blogTitle":"Entwicklungsprotokoll"}')}}]);
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[7495],{9212:e=>{e.exports=JSON.parse('{"permalink":"/de/blog","page":1,"postsPerPage":10,"totalPages":3,"totalCount":24,"nextPage":"/de/blog/page/2","blogDescription":"Die neuste Aktualisierung der Cwtch Entwicklung.","blogTitle":"Entwicklungsprotokoll"}')}}]);

build-staging/de/assets/js/5a84578f.7f1e6449.js

@@ -0,0 +1 @@
+"use strict";(self.webpackChunkuser_handbook=self.webpackChunkuser_handbook||[]).push([[5045],{8415:e=>{e.exports=JSON.parse('[{"label":"cwtch","permalink":"/de/blog/tags/cwtch","count":24},{"label":"hybrid-groups","permalink":"/de/blog/tags/hybrid-groups","count":1},{"label":"cwtch-stable","permalink":"/de/blog/tags/cwtch-stable","count":23},{"label":"release","permalink":"/de/blog/tags/release","count":3},{"label":"planning","permalink":"/de/blog/tags/planning","count":5},{"label":"nightly","permalink":"/de/blog/tags/nightly","count":4},{"label":"whonix","permalink":"/de/blog/tags/whonix","count":1},{"label":"preview","permalink":"/de/blog/tags/preview","count":2},{"label":"search","permalink":"/de/blog/tags/search","count":1},{"label":"Mitwirkende","permalink":"/de/blog/tags/mitwirkende","count":1},{"label":"Community","permalink":"/de/blog/tags/community","count":1},{"label":"reproducible-builds","permalink":"/de/blog/tags/reproducible-builds","count":3},{"label":"bindings","permalink":"/de/blog/tags/bindings","count":5},{"label":"repliqate","permalink":"/de/blog/tags/repliqate","count":3},{"label":"developer-documentation","permalink":"/de/blog/tags/developer-documentation","count":1},{"label":"Dokumentation","permalink":"/de/blog/tags/dokumentation","count":1},{"label":"Sicherheitshandbuch","permalink":"/de/blog/tags/sicherheitshandbuch","count":1},{"label":"autobindings","permalink":"/de/blog/tags/autobindings","count":2},{"label":"libcwtch","permalink":"/de/blog/tags/libcwtch","count":2},{"label":"support","permalink":"/de/blog/tags/support","count":3},{"label":"testing","permalink":"/de/blog/tags/testing","count":2},{"label":"api","permalink":"/de/blog/tags/api","count":1}]')}}]);