Nostr Web Client

We need to make sharded nsecs the default for Nostr.

Amethyst partially signs with its share of the nsec and sends to Amber. Amber can only finish the signature or reject. Amber should not be able to reassemble the nsec from any event from Amethyst (or any other app).

Now repeat this for every single Nostr app.

No single app has the full nsec. The only way to "leak" an nsec is to break into the code of both apps at the same time.

Frost does that. But for singing only.

We also need sharded encryption and decryption schemes.

Bastion 9mo ago

Until there's an air-gapped hardware signing solution (i.e. QR) an nsec can't be practically secured. I'll put up a 1,000,000 sat bounty for anyone who repurposes Blockstream's Jade Plus to do this.

Reply to this note

Please Login to reply.

Discussion

No replies yet.