Nostr Web Client

Does the feed really need to be serialized and hashed, or just have the most basic of signatures?

Here's an b64 encoded signature. Are you able to decode it and verify that nostr:npub1yvgrrzf4dnmu30qfhw95x87ruu0g2kpv3a64h8hpvqsre8qeuspsgd6pv9 signed this feed? https://www.base64decode.org/

eyJjcmVhdGVkX2F0IjogMTczOTkwMzE0MiwiY29udGVudCI6ICIiLCJraW5kIjogMzMzMzMsInRhZ3MiOiBbXSwicHVia2V5IjogIjIzMTAzMTg5MzU2Y2Y3YzhiYzA5YmI4YjQzMWZjM2U3MWU4NTU4MmM4Zjc1NWI5ZWUxNjAyMDNjOWMxOWU0MDMiLCJpZCI6ICJiMTVkNzg4NGJkMDkyODQ1NDczYWVlODgxYjhiMTNkNWJjMjI1NmNiOWE0Yzk0N2UxZDIyMTM1ZmU4YzcyZWRjIiwic2lnIjogIjcyMDIxNTIwYzIxNDUzNDEyN2NiMDNmMDM2MzE2ZjkwZWRlMTU4YzM0YzQ4YTUwMGE0Mzk1MzM3YjhjNzU3NTFhMGMzMWM5OGQ0OWI1MzU5OTliNDNkZjA1NDZlZmFiODg3MjIxMDE4MmIzOWI5MjNhMzgzZjZiZTQ0MjBmZjBiIn0=

If this is in the feed, isn't that enough for a server to know that the feed has been authorized by the npub to be updated. https://raw.githubusercontent.com/thebells1111/bible-song-band/refs/heads/main/feed.xml

Basically, a server gets a request for a feed update, looks up the old feed, check the npub in the old feed, verify the new feed has the same npub, check the signature, if it's legit, then update the old feed with the new feed. This can be done across multiple servers for redundancy.

hzrd149 10mo ago

That's a signature of nothing though. sure the pubkey signed that event but it only proves that they signed a k:33333 event, it doesn't relate to the feed at all

For example I could easily copy that feed, modify it, host it on my own site and say its your feed

https://npub1ye5ptcxfyyxl5vjvdjar2ua3f0hynkjzpx552mu5snj3qmx5pzjscpknpr.nsite.lol/feeds/example.xml

The difficulty of cryptographic signatures is that they only work if your able to hash and sign the content itself. otherwise they are kind of pointless

Reply to this note

Please Login to reply.

Discussion

hzrd149 10mo ago

If the k:33333 signed the feed GUID then that at least would prove that you say you "own" the GUID, but still the feed could be modified and there is know way to know what the original one is 😞

StevenB 10mo ago

With podcasting, pirating a feed has always been possible. Although that should be addressed, the problem I'm thinking about isn't pirating so much as it's redundancy. If you, me, and Spencer all had servers, I want to host yours and his feed as well as my own as a backup, and you guys do the same for me. I'm trying to think of a way that I can prove to your server that it's me that's actually requesting the feed update, and not someone else. Perhaps the way to do it isn't the signature in the feed, but I encode the whole feed, sign it, then send it to your server. I'm in your list of approved npubs, so you verify it's me, decode the feed and replace the old one.

StevenB 10mo ago

I guess this still doesn't solve the problem of how to verify my feed hasn't been tampered with when being stored on someone else's server. You could very easily replace all my value addresses with your own prior to publishing, so I'd have to trust anyone I was using as a redundancy. Seems signing the whole feed is necessary as you were pointing out.

StevenB 10mo ago

What about something like this?

When I publish, I can hash the feed, sign the hash, add the signature to the feed, then publish the feed.

https://raw.githubusercontent.com/thebells1111/bible-song-band/refs/heads/main/nostr.xml

A podcast app removes the signature from the feed, verifies the signature matches the npub in the feed, hashes the feed (with the signature removed) and verifies the hash matches the hash in the signature.

https://svelte.dev/playground/134809f1af4d4651a35516502432cf3b?version=5.20.2

hzrd149 10mo ago

The issue is hashing the feed, whats the standard way to turn an XML file into a string? do you take the whole file or do you format it in a very specific way?

If you take the whole file as a raw text string, then it becomes invalid as soon as you add the signature to it because you've changed it. and if podcast apps where smart enough to remove the signature from the XML file before verifying, they would have to be specific about what they removed. because one missed char or white space and the file will be invalid :(

StevenB 10mo ago

My idea is the .xml file is read it as a simple string. The host or feed builder would minify the string using a standardized function (this helps to remove extra spaces, new lines, etc that would create a different hash), then hashes it, signs the hash, then add that signature to the xml file.

Adding the signature to the file of course breaks the hash.

So to verify, an app would first remove the signature from the xml file, then minify the string using the same function the host did, then hash then hash it. The string should match the string that was originally hashed because the signature was removed first, and the hashes should match.

And yes, there would have a specific tag to add and remove to ensure nothing extra was added, but as long as everyone was using the same inserting and removal functions, that 'should' guarantee consistency across multiple apps and hosts.

The other would be a function that every app and host uses that parses the xml to a json file, remove the signature tag from the json file, then hash the JSON.stringified object, sign that hash, add it back to the JSON signature tag, then convert back to xml. As long as there's a consistent way to remove the signature before hashing, I think it would work.

StevenB 10mo ago

Now, I don't think there's a way around preventing piracy, that is someone from taking your feed, changing the value block and npub to their own, and signing it and posting it on their server.

There's never been a way to prevent that, and I'm not sure signatures can, any more than they can stop either of us from signing a note that says "I rock" and claiming to be the original author. But signatures can definitely help with the problem of redundancy and ensuring the feed hasn't been tampered with.

StevenB 10mo ago

Here's a proof of concept that allows storing a signed hash in the feed.

https://svelte.dev/playground/134809f1af4d4651a35516502432cf3b?version=5.20.2

If you're on the backup server's approved npub list, they can store it for you for redundancy, otherwise they can reject the feed.

The app can then fetch the feed and verify the hash against the feed.

If the redundant server acted maliciously and modified the feed prior to storing it, like in the Stolen Feed example in which the value address changes, then the app would flag it as an unauthorized change and fetch the feed from the next server in the redundancy list.