Instead of trusting a third party to protect your credentials, you're trusting an auditable, open source platform. I cant see myself using it for anything important, but I understand the draw.
On reflection, this is probably not as stupid as it sounds.
The point is using blockchain to store your (encrypted) data. It's not feasible to backup everything this way, but a list of passwords is short enough.
If all you do is open source and the only things you need to back up privately are passwords, this way you can avoid having your own backups at all.
But why would a blockchain be any better than a peer-to-peer filesystem, for example?
Also, it seems like a really bad idea to have your encrypted passwords open for anyone to have a crack at - any flaws in the b.lock encryption protocol or implementation could have disastrous consequences. Unfortunately I wasted some minutes of my life looking into their encryption, and it's bad (not using authenticated encryption, using a malleable encryption mode (CTR), directly encrypting secrets with your wallet private key...)
rschulman|7 years ago
woodaroo|7 years ago
zwevgzewgzv|7 years ago
[deleted]
pps43|7 years ago
The point is using blockchain to store your (encrypted) data. It's not feasible to backup everything this way, but a list of passwords is short enough.
If all you do is open source and the only things you need to back up privately are passwords, this way you can avoid having your own backups at all.
GordonS|7 years ago
Also, it seems like a really bad idea to have your encrypted passwords open for anyone to have a crack at - any flaws in the b.lock encryption protocol or implementation could have disastrous consequences. Unfortunately I wasted some minutes of my life looking into their encryption, and it's bad (not using authenticated encryption, using a malleable encryption mode (CTR), directly encrypting secrets with your wallet private key...)