Random dumb midnight thought: what if nsec was disposable and was merely used as a key in combination with some other authentication method to your digital identity?
Meaning, a leaked nsec would not be that useful without the other part(s).
Nostr multisig
And having access to the other parts allows you to derive a new nsec.
Or would that mean you’d have a new npub?
This is almost, kinda, sorta what NIP-28 Delegation was supposed to be we've since moved away from that it seems and are now just using Pablo's nsecBunker.
I’ve yet to figure out nsec bunker. You using it?
I teared it once but haven't made the jump to use it for everything, yet.
It took a bit to wrap my head around it but it’s super powerful. Use make a throwaway admin key and put your real keys in the bunker. Then you can rotate the admin key all you want and keep your real key at home.
I experienced inconsistency getting it to work very early on and haven’t been on nostr much outside of Damus lately, but I’ve been meaning to reinstall nsecBunker.
I set it up a month or so ago but only place I could find to use it was Coracle at the time. I logged in the other day but it wasn't able to reach my bunker. It's on my to-do list to get working again now that Spring is supporting it.
This is correct
Should we not just be deriving disposable nsec/npub from a Bitcoin Priv key/pub key pair?
That would lock out anyone without bitcoin no?
that's what I'm suggesting above, but you wouldn't want to use your actual bitcoin keys because the use-case is a little different for bitcoin. You also wouldn't want to leak your bitcoin xpub by publishing it to the world, and if someone steals one of your private signing keys from nostr they would also have access to whatever UXTOs are behind that address.
Interesting
#asknostr
nostr:note1jjs8jnvkqjclhy4ys8pdpdge9xm4zsl66z7qktlptghhl05ms0lq5upq3d
I’m working on something like this for an internal application in which I’m planning to use Nostr to side-load additional data for an existing system. Each user already has a identity managed by the system, and can bind a random npub to that identity by signing and posting a message as their system user.
yes 🙌 👏 disposable nsecs fr fr
How about derived nsecs?
And your identity is your x/zpub for your derication source rather than a npub for each individual key?
Confused 😕
Instead of your npub being a public key for just one private keypair, your npub could be an xpub like for a wallet seed phrase. Then you can use a new private key whenever it suits you, and your profile contains a list of invalidated keys and timestamps, so only the "latest" public key you are using will be recognized by your followers. This way you can have your working private key compromized but your identity is not. If someone steals the private key from your device or browser, you can publish an invalidation for that old pubkey with a timestamp signed by your next private key in the seed derivation sequence. This way everyone can know which pubkey is you and when the old keys became invalid. Now everyone knows which messages are signed by the new "real you" because they know you by your xpub and not your individual public key.
I am not getting this fully and was thinking the same what will happen if lost my private key? Can we move our identity to new private key like we move our btc to private key?
The idea here is not if you lose your private key, but to keep the "source" of your identity separate from your daily use. You would keep your nostr seedphrase saved in a secure place like your bitcoin seedphrase, and only access it with a secure computer or #seedsigner to generate a new keypair and distribute that new nsec to all of your nostr apps and #getalby hot wallet.
uprade to pgp - key expiration, revocation, leverage existing keystores, etc. But also, yes, multisig
Yes, please.
The ghost of NIP-26 is making frequent appearances on nostr 😂
