TOO MUCH CONCERN OVER LACK OF KEY ROTATION.
NOT ENOUGH FOCUS ON HARDWARE SIGNERS AND MULTISIG.
Discussion
Yes, exactly
💯
Who's working on any of this stuff?
nostr:note12ms9x0p79krje7gv76axfvcfrrt7fs9xyyzk0sw069gp80f8wgrs29w40j
If someone wants to modify the #Signet firmware, it already stores keys/passwords/secrets in hardware. It's all #OpenSource. No permission needed to make the change.
I disagree! Key revocation and migration is a solvable problem!
Worse,
NOT ENOUGH FOCUS ON PUTTING YOUR SATS IN AN 1181 OR COMMON LAW TRUST AND FORMING A 508c1a PMA.
Tell me more
Key revocation and rotation is a solvable problem and is ultimately about authentication, regardless if a key is ever compromised!
How do you know who is who? Do you remember their npub? Where do you save the name you have for their npub? Right now it is all just a list of pubkeys in a follow list (mostly).
Yes, we need more focus on hardware signers and multisig. Time better spent 🫡
Hardware signer are cool but unfortunately have poor scalability for the masses (cost, shipping logistic, mobile usage). I would aim for multisign/Frost solutions.
TapSigner /Satchips are good for the masses IMO.
Cheap and mobile compatible.
Screens are a bit of an overkilling feature and necessary only for bigger amounts.
Basically when you move your long term savings, with a private key that you will use only few times a year
+1
app + server + encrypted cloud backup 2 of 3 frost could be nice
My nostr:npub17tyke9lkgxd98ruyeul6wt3pj3s9uxzgp9hxu5tsenjmweue6sqq4y3mgl was cheaper than my physical leather wallet
We are talking here about Nostr, hardware signer would require a totally different (easier and convenient) user experience.
I know It exists. And it's cool.
But do you think that signing every event with this process is doable for the operativity of a normal user? No way.
The easy solution is FROST bunkers.
ONWARD 🫡
No concern about CSAM on Nostr
No Concern about making decent relay backends
it is a first aproach after all
MULTISIG IS AWESOME
I'm multisiged up to my eyeballs.
Feels good.
How do I test?
the frost2x extension repo (forked from nos2x) includes everything you need to setup a demo and dev environment
it includes the extension, a second test node, and an ephemeral test relay as well
just updated the README to be actually useful for setting up a demo, let me know what you think:
I’d love to test.
check out the readme here, just updated:
How can I help test
👀
I can be beta tester what do you need from me
check out the readme here, just updated:
you just use authentication apps or passkey ?
we have a web extension and desktop app, with plans for a mobile app and self-hosted server apps as well
Tu as testé nostr:nprofile1qqspue77xa2pwyr3608ek39ku4rtm98apgk2876dhwcmq4rgtjg3deqpz9mhxue69uhkummnw3ezuamfdejj7qgkwaehxw309aex2mrp0yhx6mmnw3ezuur4vghsz9rhwden5te0wfjkcctev93xcefwdaexwtc0yj7ca?
Pas encore 😁
Invite nostr:nprofile1qyt8wumn8ghj7etyv4hzumn0wd68ytnvv9hxgtcppemhxue69uhkummn9ekx7mp0qqsyy2wzruqsr27rhfzjx0shd6t4l20xwxa33fnj900hwf46y4z9l7gxv93nl aka Dr. Manhattan on your pod nostr:nprofile1qyv8wumn8ghj7urjv4kkjatd9ec8y6tdv9kzumn9wsq3vamnwvaz7tmjv4kxz7fwwpexjmtpdshxuet5qqsqfjg4mth7uwp307nng3z2em3ep2pxnljczzezg8j7dhf58ha7ejgqgzx3h
When BIP 39 type NIP for Nostr NSEC?
Then we can add an a additional passphrase
nostr:note12ms9x0p79krje7gv76axfvcfrrt7fs9xyyzk0sw069gp80f8wgrs29w40j
nostr:nprofile1qqsgydql3q4ka27d9wnlrmus4tvkrnc8ftc4h8h5fgyln54gl0a7dgstw3r3l surely Bitkey is exploring adding Nostr?
Maybe a ring format to tap using nfc?
Tangem did a good job of that
Only an influencer up their own ass would think their notes are so valuable they merit a fucking multi-signature scheme.
Possible? nostr:nprofile1qyxhwumn8ghj7mn0wvhxcmmvqyehwumn8ghj7mnhvvh8qunfd4skctnwv46z7ctewe4xcetfd3khsvrpdsmk5vnsw96rydr3v4jrz73hvyu8xqpqsg6plzptd64u62a878hep2kev88swjh3tw00gjsfl8f237lmu63q8dzj6n 
No normal person wants to use a HWW or multisig to use nostr