Nostr Web Client

What about a username and password, but in the backend it is the hash or a random algorithm that creates the key pair? Not sure how that works, doesn’t solve the lost key or ‘password’ though.

ChipTuner 2y ago

The one of the biggest reasons this should never happen here is entropy. The "password" has to come after the key generation part. Now commonly used in bitcoin key generation -> seed-phrases

https://en.bitcoin.it/wiki/Seed_phrase

I know people want easier key management, and recovery, but should not be possible in conventional means.

I am trying to work on a self hosted option, but it's not easy when you aren't a security researcher.

Reply to this note

Please Login to reply.

Discussion

Liberty Farmer 2y ago

Why can't the password be used as entropy in cresting the key? Each letter and number represents a value, and used as input into a keygen crypto formula. Wouldn't something like that work? The end number is still large enough to be unique, but the password should be able to always represent the msec. Much like rolling a die. Using a random number of '5' will always results in XXXX, etc..

I am no cryptographer,, but thoughts?