Replying to Avatar Paulo

I’m experimenting with building a simple wealth tracker, where you save encrypted records of your assets’ value to a local relay (indexedDB), and sync to a trusted relay.

If your nsec is compromised, the ideal would be for the data to not be revealed without an extra key.

If I’m not mistaken, the scheme you shared allows me to achieve this, since you’d need the device as well to decrypt. And I would add a passphrase, for when the device is compromised.

Am I doing something stupid? 😅
Avatar
fiatjaf 10mo ago

If you're doing something stupid I don't know, but to me it looks pretty good. I think your concerns make sense and I'm happy that you gave me another use case for this NIP. I'll mention it in the proposal thread.

Reply to this note

Please Login to reply.

Discussion

No replies yet.