Nostr Web Client

Replying to

calle

not the payer, just the mint

SPA (Super Phat Arrow) 1y ago 💬 1

How can you know that the payer isn't giving you a fake token?

Reply to this note

Please Login to reply.

Discussion

calle 1y ago 💬 2

You check the DLEQ proof the payer includes in the token (which is a proof that the signature of the mint is correct):

https://github.com/cashubtc/nuts/blob/main/12.md

calle 1y ago

Relevant section: Carol (another user) verifies DLEQ proof

SPA (Super Phat Arrow) 1y ago 💬 1

calle 1y ago

it's a neat little trick. the DLEQ's original purpose was to prevent tagging by the mint but we noticed that it can also be used to make the signature publicly verifiable.