for example, public shared func send(message: Text, to: Principal)
but the canister only store the hashed to
but not the actual to
, can node providers hosting my canister still see the actual to
at any level (method call level, implementation level) or not, since the canister state only stores hashed to
?
1 Like
The message with the to
that is sent from the client to the canister is signed but not encrypted, so it’s contents are public for any in between parties.
VetKeys probably will probably enable the canister to do encryption of message content with a transport key.
1 Like
so it’s effectively impossible to provide anonymity on a canister since the message sent to canister and the data (eg: private stable var list
) can be viewed by node providers? (assuming vetkeys wont be used)
1 Like