Nostr Web Client

Did we give up custodial nsecbunker providers? What else do we need on that front? nostr:npub1l2vyh47mk2p0qlsku7hg0vn29faehy9hy34ygaclpn66ukqp3afqutajft nostr:npub1zfss807aer0j26mwp2la0ume0jqde3823rmu97ra6sgyyg956e0s6xw445 nostr:npub1mygerccwqpzyh9pvp6pv44rskv40zutkfs38t0hqhkvnwlhagp6s3psn5p nostr:npub10000003zmk89narqpczy4ff6rnuht2wu05na7kpnh3mak7z2tqzsv8vwqk

daniele 1y ago

Nsec.app and local signers like Amber made custodial providers less interesting for tech savvy and diligent users that know how to self custody; but for onboarding a lot of casual newcomers, a custodial solution still seems a needed solution.

I'm reading the MuSign2 and Frost proposals, it's an interesting approach, but how do you ensure a robust infrastructure of more than 3 parties, which should be totally disconnected to demonstrate security? What incentives should these nsebunker providers have? Do they get paid? And should the user choose them randomly and pay them separately? And what happens if a payment is not made or if multiple nsecbunkers disappear at the same time breaking the quorum?

An alternative solution is to offer a single custodial nsecbunker, supported by a well-known entity (OpenSats?) and build a really clear user experience to lead the user (maybe forced after x amount of time?) to self-custody their key. Of course, this kind of structure would immediately become a centralized weakness, and thus a clear target for anyone who wants to destroy Nostr. Not to mention that it is not an absolutely easy structure to create and manage with good security standards; who would actually do it?

I don't know what would be the most effective way to proceed. I would probably try to elaborate the Frost approach, paired with a real good UI to enforce the user to keep a backup and validate it randomly every so often.

Reply to this note

Please Login to reply.

Discussion

fiatjaf 1y ago

Technically you would still hold the key as a user, stored somewhere safe. You just wouldn't use it daily, as all your signing would be done by these providers in the cloud. So if they disappear you can get your key from storage and use it to create more shards. You could also distribute shards to multiple providers, like 5, and make the signature be possible with just 3 out of the 5, and so on.

I don't know about the incentives, it would be almost free for these providers to support a new user, so I'm not sure payments will be needed. I mean, Blockstream has been providing co-signing services for Green wallet users for years at zero cost, for example.

Kim Stock 1y ago

I would say we need to hurry because the bankers are starting to get their money back…..

The Trusts are not funds registered under the Investment Company Act of 1940 as amended (“1940 Act”) and are not subject to regulation under the 1940 act, unlike most exchange-traded products or ETFs. An investment in the Trusts is subject to a high degree of risk and heightened volatility. Digital assets are not suitable for an investor that cannot afford the loss of the entire investment.

Kim Stock 1y ago

And there will be losses

daniele 1y ago

> Technically you would still hold the key as a user,

Good, so we align on my last sentence "paired with a real good UI to enforce the user to keep a backup".

That makes sense.