Replying to Avatar Vitor Pamplona

Here's the first proposal to send private pictures in NIP-04 DMs from the discussion with nostr:npub1v0lxxxxutpvrelsksy8cdhgfux9l6a42hsj2qzquu2zk7vc9qnkszrqj49 this morning

The idea is to add credentials to NIP-19 URIs (the nostr:nevent.. links) and create an "Anyone with Link" can see scheme. Since DMs are encrypted, only the two people in the conversation will get access to the image. Not even image hosts can see it.

Pros:

1. Simple change to a NIP

2. Straightforward implementation

Cons:

1. If the link is copied and pasted outside of a conversation, whoever has access to that link will see the contents of the image/file.

2. Once the secret is out, it's out.

3. URIs with secrets are bigger.

I believe the Cons can be minimized with appropriate UIs. Thus, I think this is a good proposal.

https://github.com/nostr-protocol/nips/pull/519

8b
8b278ad8... 2y ago

The trouble is that when you start inventing a distributed secret blob store you suddenly have a very different set of challenges than the ones that Nostr has already solved. Look at IPFS and Tahoe-LAFS and to some extent Scuttlebot's blobstore for some suggestions, but none of them are perfect and everyone still complains about these programs.

Really there should be a Nostr team and a team building the secret blob store, and we're risking too much technical debt being forced on the client AND relay developers.

Reply to this note

Please Login to reply.

Discussion

No replies yet.