Replying to Avatar hodlbod

RFC on a new custodial signer I'm building. Highlights:

- Designed to be used with a single app rather than following the user around.

- Has email-based registration/reset workflows.

- Provides a signer/relay combo, reducing nip46 latency.

- Encourages users to "eject", which sends them an email with their ncryptsec, and deletes their account from the database.

The goal is to limit incentives for attackers to steal keys. The keys are only used for a single application, only keys for that application are stored, and the application eagerly deletes keys from the database. Keys are encrypted at rest.

Here's a demo video:

https://coracle-media.us-southeast-1.linodeobjects.com/burrow-demo-20241202.mov

And the source code:

https://github.com/coracle-social/burrow

Avatar
ben 1y ago

what is a ncryptsec?

Reply to this note

Please Login to reply.

Discussion

Avatar
kidwarp 1y ago

Encrypted nsec?

Avatar
calvadev⚡️ 1y ago

Yes.

Avatar
ben 1y ago

where?

https://github.com/nostr-protocol/nips/blob/master/19.md

Avatar
kidwarp 1y ago

It’s probably in another nip

Avatar
ben 1y ago

thanks for wasting my time

Avatar
kidwarp 1y ago

You’re welcome for being an asshat

Avatar
daniele 1y ago

A way to encrypt one's nsec (private key) with a personalized password to make storage/use more secure.

Avatar
ben 1y ago

symmetric encrypted nsec, cool! does that use nip-44? is there a nip? I can’t seem to find it.

Avatar
hodlbod 1y ago

See NIP 49

Avatar
ben 1y ago

Avatar
Charlie Crown 10mo ago

I understand the storage part. But what’s you recommended standard? Should people save their ncryptsec to a password manager? How can I decrypt it without the help of any app?

I’m a bit confused as to how to use this properly. Any help is greatly appreciated.