Replying to Avatar frphank

Oooooohhhh ❤️❤️❤️❤️

The delegate key thing (NIP46) as to happen of course and delegation with expiry like X509 certificates. Expiry means implicit revocation.

Keeping an eye too on those ESP32 devices and their security properties, like flash RAM encryption etc. I think there have been security holes there in the past. They would make for great "open source Yubikeys" with their broad availability.

In case what can also use a see dedicated crypto chip normally like ATECC608B or NXP SE050 but those don't normally do secp256k1 because that shit it exotic as fuck and is really hurting nostr.
Avatar
BlackCoffee 1y ago

The ESP32s are really neat and there's definitely some hardening that can be done with the secure boot, signed firmware features.

Key delegation with an expiry time would be really nice! Good idea.

I don't have any SE experience on ESP32s but from the research I've been doing, you're right, the ATECC608B can't do schnorr sigs. The Coldcard uses this SE and it is compatible with taproot so I'm wondering if there's a way of working this. Either that or CK are using the DS28C36BQ. I need to research more.

Reply to this note

Please Login to reply.

Discussion

Avatar
frphank 1y ago

The DS28C36 is NIST P256 too? https://www.analog.com/media/en/technical-documentation/data-sheets/ds28c36.pdf

(This link above btw is an abridged data sheet. The full datasheet is under NDA for which I call bullshit. Friends don't let friends use Maxim.)

The Koblitz curve is really exotic outside the blockchain/nostr bubble. Nostr doesn't use Schnorr sigs AFAIK just plain EcDsa.

Not sure how Coldcard works.

Avatar
BlackCoffee 1y ago

I'll have a look at the data sheet. Thank you. I'm very new to using SE so it's going to take some figuring out.

Here's the schnorr sigs nostr stuff

https://github.com/nostr-protocol/nips/blob/master/01.md#events-and-signatures

Avatar
frphank 1y ago

Schnorr sigs indeed not sure where I had the idea about EcDsa from. That's even more exotic then. The NXP SE050 would to Koblitz curves in some configurations but just EcDsa not Schnorr. Good luck finding an SE that can do that.