Nostr Web Client

On Obtainium you can get, for example, nostr:nprofile1qqsrf5h4ya83jk8u6t9jgc76h6kalz3plp9vusjpm2ygqgalqhxgp9gpr3mhxue69uhkummnw3ezucnfw33k76twv4ezuum0vd5kzmqpz4mhxue69uhhyetvv9ujumt0wd68ytnsw43qzxrhwden5te0wfjkccte9eekummjwsh8xmmrd9skc34yxrm wallet on a "trust Microsoft" and also "pray not to get phished in the search results" trust model.

On Zapstore it will show first and it is signed by nostr:nprofile1qqsrf5h4ya83jk8u6t9jgc76h6kalz3plp9vusjpm2ygqgalqhxgp9gpr3mhxue69uhkummnw3ezucnfw33k76twv4ezuum0vd5kzmqpz4mhxue69uhhyetvv9ujumt0wd68ytnsw43qzxrhwden5te0wfjkccte9eekummjwsh8xmmrd9skc34yxrm.

You can even pull the event from our relay and verify it yourself.

We are not the same.

Frederic 4mo ago

That’s a big deal verifiable signatures directly from the dev beat “trust the store” every time.

Reply to this note

Please Login to reply.

Discussion

calle 4mo ago

the app is already signed just saying

Zapstore 4mo ago

It's about TOFU, nostr:nprofile1qqs9pk20ctv9srrg9vr354p03v0rrgsqkpggh2u45va77zz4mu5p6ccpzemhxue69uhk2er9dchxummnw3ezumrpdejz7qgkwaehxw309a5xjum59ehx7um5wghxcctwvshszrnhwden5te0dehhxtnvdakz7qrxnfk

calle 4mo ago

What's that?

Final 4mo ago

Trust On First Use. On Android, the OS automatically trusts the signing key of an app when you install and use it. Any updates to the app can only be allowed if they have the same key as the original install (and are not a previous version).