Dream flow: buy new phone, enter 12 words, done.
Everything's set up, including my config, apps, contacts, etc. The 12 words are my nsec in this case ofc.
Discussion
Make it so!
Goals
👀💜
I dream of a Nostr Linux distro where your config is saved to relays. Install anywhere and log in.
Basically .dotfiles on nostr?
Yes! Combine with some Nostr native file hosting for your home folder and you're set!
We would also like this a lot. It's been getting harder and harder to get new backdoors.
Thirteen for me. twelve words is my decoy persona.
Would be nice to use 12 words and a passphrase, then repeat with another passphrase to have a nice decoy phone. In case of coercive physical attack you would (temporary) lose controlo of your identity, but at least funds and data would remain safe.
Encrypt backup on (private?) relay,
Decrypt backup with nsec,
Profit.
i think one of the next steps is to get a hardware company to develop something like this.
I wonder if Android is programmable enough to pull this off.
we can't have that because samsung
on it 🫡
I have thought about this also.
Read this thread. Paradigms are shifting...
Amazing
You guys are so stinking smart
Just use Calyx and its built-in backup, or derivatives of it (it's Apache licensed, there's no limit to the forks we could make of it!)
I feel like this note explains most of what I need to know about some nostr builder's visions of the future. Not to put everyone in one basket, but my technology world view is essentially completely opposed to this. I don't even want a smart phone anymore.
nostr:note18tp3qvuzelnndlvp5ll4z7lq008vhfut6y53e0skc44p7cldr6dsmpurlp
Planned for zap.store: automatic backups of your installed apps, optionally encrypted.
So maybe not the phone config, but apps and contacts definitely possible to restore with npub/nsec.
Baby steps. First major release coming next week.
nostr:note18tp3qvuzelnndlvp5ll4z7lq008vhfut6y53e0skc44p7cldr6dsmpurlp
That’s it. That’s digital identity. Done.
wow
These 12 words might be as sensitive (if not more) than the words that allow me to send #bitcoin. They're the seed phrase for my digital identity, which is tied to rw identity. The downstream interactions are far more complex than something used to write txs on a timechain.
If someone gets my bitcoin seed phrase, all that money in that wallet is gone; they can impoverish me. Someone gets my nsec, they can *be* me, which could be worse.
What can guard against this? Something like this: https://github.com/nostr-protocol/nips/issues/282
🤯
Part of why I like buying a new phone is because it DOESN'T have the mess I left on the old one...
Same
Easy to do if you have a third party involved (they just record your config)
What I want is for this setup without a trusted third party and connecting to my own server.
Config saved to Umbrel server maybe?
Very yes
Would be extremely cool
👀👀 this would be awesome
Yes
What would happen if you accidentally entered your nsec on a compromised website, application or device?
The same that would happen if you enter your bitcoin seed phrase into a compromised thingy
The phone recovery 12 words are BIP-85 from the one true key that you protect, everything else is recoverable through derivation paths.
One seed to rule them all.
This is exactly how Passport Prime is gonna work. Except you won't even need to enter seed words (you can if you want to OFC) just tap some NFC cards!