Replying to Avatar boston wine

When #frost becomes a viable multisig-style tool for nostr private keys, does the cryptography in some way allow for “converting” an existing nsec into a FROST structure?

In other words, could I retain my primary keypair and somehow make it into a an offline key? (Currently it was generated in nostr:npub18m76awca3y37hkvuneavuw6pjj4525fw90necxmadrvjg0sdy6qsngq955 and has only been exposed to Damus and a pen-and-paper backup).

I’d love to gain the additional security but not have to rebuild the content and social graph that I’ve spent nearly 2 years building. But how?

Or as another route, could I use a new FROST multi/nsec along with an nsec-bunker type authorization tool, such that the new key is the master key behind my bostonwine nsec?

Not sure who to ask… nostr:npub1az9xj85cmxv8e9j9y80lvqp97crsqdu2fpu3srwthd99qfu9qsgstam8y8 nostr:npub1mxrssnzg8y9zjr6a9g6xqwhxfa23xlvmftluakxqatsrp6ez9gjssu0htc and nostr:npub1u8lnhlw5usp3t9vmpz60ejpyt649z33hu82wc2hpv6m5xdqmuxhs46turz, y’all were discussing on today’s nostr:npub1qdcakl75gd7wv0nqmmwrz09ddm5tzl7xj8lq2gclng2qzd8up5yqjpzclt or maybe nostr:npub1xtscya34g58tk0z605fvr788k263gsu6cy9x0mhnm87echrgufzsevkk5s, or nostr:npub1l2vyh47mk2p0qlsku7hg0vn29faehy9hy34ygaclpn66ukqp3afqutajft - nsecbunker is your creation, right?

Hell, might as well #asknostr

bc
bc552e99... 1y ago

I wrote a blog post about frost https://www.iroh.computer/blog/frost-threshold-signatures

For iroh, we use curve ed25519, while nostr is using secp265k1. So the linked code only works with ed25519 keys.

But other than that this transfers 1:1. You can take an existing key and split it into as many key shares as you want. So you can move to a multisig style approach while preserving your nostr identity.

You could take the existing code, replace https://crates.io/crates/frost-ed25519 with https://crates.io/crates/frost-secp256k1, and you would have a working co-signing setup for nostr keys.

Reply to this note

Please Login to reply.

Discussion

Avatar
boston wine 1y ago

Hot damn 🔥⚡️

While the cryptography is well-beyond my skill level, this is incredibly cool and suggests that a hardware device could in fact support this. thanks 🫂

PS tryin to zap you but getting an error generating LN invoice in damus

bc
bc552e99... 1y ago

I am new to nostr. I guess I have to set something up?

Anyway, the cryptography is solid, it’s from the zcash foundation https://zfnd.org/ , and the crates make a good impression in my opinion.

Avatar
boston wine 1y ago

Oh yea - depending on your client there’s usually a way to edit your profile > edit Lightning address and you can input something

Depending how familiar you are with Lightning, happy to help with setting that up if you need 🤙