This is why we need WebAuthn[1] supporting browser-side encryption using passkeys (or any other secure enclave)[2]. Relying on servers to encrypt data for you will be seen as comical 5 years from now.<p>[1]: <a href="https://blog.millerti.me/2023/01/22/encrypting-data-in-the-browser-using-webauthn/" rel="nofollow">https://blog.millerti.me/2023/01/22/encrypting-data-in-the-b...</a><p>[2]: <a href="https://sneakernetsend.com/" rel="nofollow">https://sneakernetsend.com/</a>
[dupe]<p>Some more discussion:<p><a href="https://news.ycombinator.com/item?id=39672317">https://news.ycombinator.com/item?id=39672317</a>