Subnostr

Replying to

Big Barry Bitcoin

Am I being dumb, or could nsecbunker allow us to act as our own access control for other people?

For example, you can provide an nsec bunker url to a friend which is preconfigured with access controls.

They use it to log into a nostr based encrypted photo gallery.

They can only see the friends folder and your signer will not decrypt anything else.

You can revoke their access at any time.

#asknostr

AU9913 1y ago

Possibly, however, you would need the app to specifically disable screen capture. Even so, there is no stopping someone from recording the screen from an external device, so keep it for specific use cases (ie not nudes)

Reply to this note

Please Login to reply.

Discussion

Big Barry Bitcoin 1y ago

Of course, photos cannot be owned unless you keep them to yourself which makes them useless.

But this idea compared to traditional auth has these benefits:

1. You can host anywhere.

2. Data is encrypted at rest, so no leaks from unauthorized hackers.

3. You own the keys at all times, never share.

Downside would be that potentially large data is being sent back and forth from your nsec bunker server.

That is, if I understand the nsec bunker model correctly.

AU9913 1y ago

You wouldn't use the nsec bunker to host the images though, just identity delegation

Big Barry Bitcoin 1y ago

But don't you send the encrypted content to the bunker and have it return the decrypted content?

AU9913 1y ago

It's a remote signer, not a storage appliance