this spec i made didn't get a lot of attention, but i think its pretty cool:
https://github.com/nostr-protocol/nips/pull/1893
Private Note Storage is like giftwraps but:
- Not spammable, author keys are pseudonoymous and deterministic from your main key.
- Simpler wrapping. No seal is needed since the wrap key is deterministic. You just have the wrap and the internal rumor.
- Only for your own notes
- Zero public metadata tied to you. Giftwraps require a p tag of who is receiving the event. Since we are deterministically generating the private author key that is not tied to the master key, we can just query on that.
Further improvements not defined in this spec:
- HD keys (bech32) for creating private notes on new keys each time. No pubkey re-use for different private notes.
Imagine having an HD keypath that stores a specific type of private note. There would be zero identifiable information on the public note. no p tags, just a random looking pubkey associated with a specific HD key path.
I'm looking into this for storing private ai convos.
interesting for storing private bookmarks too. with the hd approach it would be easier to manage your own key pairs too. the user wouldn't have to keep track of a load of different pub keys.
are the notes still safe if the one private key was compromised?
if the private key is compromised, you still need the users two factor combined with the app salt to even know if they have private notes stored on the network
