Testing an old idea: NFC-based transient accounts: accounts that log off as soon as the app goes to the background, deleting all traces of the account from the phone.
It looks like this in debugging speeds: https://video.nostr.build/ef4274d150303fd28f5e7b6b02a7b0102176263dfb1b491969a0caab6b61e6ad.mp4
If you are an activist and if your phone is confiscated, they will never find anything on the phone. Not even your public key.
Walk around with Amethyst installed and an NFC tag hidden in your clothing. When you need to use Amethyst, tap the tag, insert your password and login. Lock the screen to delete everything.
The NFC has a NIP-49 password-encrypted nsec. If you need, destroy and dispose the NFC tag.
Really cool!
Feature request, rather than decrypting the key with the password, it should be like a seed passphrase. It would allow you to have deniability, with a decoy profile in case authorities force you to decrypt that NFC tag.
With NIP-49 it is possible for authorities to know you gave them a wrong password (or the data on the NFC tag is corrupted). But a wrong passphrase will just lead you to a another nsec, where you can put some decoy notes.
Yeah decoys would be awesome!
nostr:nprofile1qqswuyd9ml6qcxd92h6pleptfrcqucvvjy39vg4wx7mv9wm8kakyujgpypmhxue69uhkx6r0wf6hxtndd94k2erfd3nk2u3wvdhk6w35xs6z7qgwwaehxw309ahx7uewd3hkctcpypmhxue69uhkummnw3ezuetfde6kuer6wasku7nfvuh8xurpvdjj7a0nq40 did you think about decoy nsecs in the NIP-49 spec using the wrong password?
I can't find the event you are replying to, so I will answer in general.
No I did not think about that. If you enter the wrong password the decryption will fail, it won't give a decoy nsec.
Good idea. Nevertheless it should be in a password format so that it can be typed by the user and given to authorities without raising attention as an anomaly.
