Nostr Web Client

Sort of, but the bigger issue is what happens if someone who knows the key leaves the company or org. Enclaves solve a bunch of management issues, like quasi-delegation, but they don't solve that core issue.

semisol 7mo ago 💬 1

Or look at OpenBao

Reply to this note

Please Login to reply.

Discussion

Garbage nsec 7mo ago 💬 1

Thanks yeah, we did look at that, as well as closed-source stuff like Akeyless. It's all very cool stuff, but at end of the day either one or more human beings can know the secret, or no human being can ever. Sort of like an unavoidable binary there.

semisol 7mo ago 💬 1

Or, smartcards… I’m thinking of working on something like that. 2FA for keys: a password and a physical token

Garbage nsec 7mo ago

Nice, cards are cool. Nosskey also has some neat stuff on the passkey/WebAuthn side. https://github.com/ocknamo/nosskey-sdk

It's that for businesses and corporate security in general it's tricky cause there is no higher level reset. For all this other stuff like Akeyless, it's still implicitly assumed there is some higher level reset if worse comes to worse.

You start your digital life in Nostr at the supreme court already, you lose you're out of appeals.