E2EE DMs are coming to Nostr 🔒
After being nerd sniped by hearing nostr:npub1az9xj85cmxv8e9j9y80lvqp97crsqdu2fpu3srwthd99qfu9qsgstam8y8 mention OTR for the millionth time on the Bitcoin Review podcast, I spent the last few weeks digging into OTR, the Signal protocol, and a grab-bag of other cryptography.
The end result is that I (am pretty sure at least) that I found a way to do E2EE (end-to-end encrypted) DMs on Nostr in a way that is both forward and post-compromise secure AND doesn't require any centralized servers.
Demo video: https://share.cleanshot.com/nMKk6cn0
Live demo app: https://drdm-demo.vercel.app
And finally, the NIP (for those of you with bikes in need of a shed): https://github.com/nostr-protocol/nips/pull/1206
Huge thanks to nostr:npub1klkk3vrzme455yh9rl2jshq7rc8dpegj3ndf82c3ks2sk40dxt7qulx3vt and nostr:npub1l2vyh47mk2p0qlsku7hg0vn29faehy9hy34ygaclpn66ukqp3afqutajft for the chats while I worked out the details.
E-commerce with E2EE DM’s between buyer/seller may be the killer app.
No data leaks, no hacked 3rd parties, no selling your email to others who spam you, no worries.
Email and credit cards are work, lighting and nostr DM’s are easy, secure, and private.
💯
This plus being able to control and limit the visibility of the items/services in my storefront across different groups.
- selling chairs - all public
- renting my car - friends
- unlicensed stuff - group of closely vetted friends and family.
Basically encrypting my storefront to certain permission thresholds. Could be also good forba private price discrimination (heavy discount for the family, etc)
All of this stuff is basic web of trust! Amazing what Nostr enables.
