Avatar
Alan 1y ago

I’m struggling with how to securely use #Nostr iOS apps.

From what I’ve read we must protect our Nsec; hence, the need to install an extension like nostr:npub1getal6ykt05fsz5nqu4uld09nfj3y3qxmv8crys4aeut53unfvlqr80nfm when using a Nostr web client like nostr:npub12vkcxr0luzwp8e673v29eqjhrr7p9vqq8asav85swaepclllj09sylpugg on the desktop.

When installing a Nostr iOS app like nostr:npub1v5ufyh4lkeslgxxcclg8f0hzazhaw7rsrhvfquxzm2fk64c72hps45n0v5 or nostr:npub18m76awca3y37hkvuneavuw6pjj4525fw90necxmadrvjg0sdy6qsngq955 , I’m asked to enter my Nsec directly into the app.

How do I know where my Nsec is being stored?

Is there something like nostr:npub1getal6ykt05fsz5nqu4uld09nfj3y3qxmv8crys4aeut53unfvlqr80nfm for iOS, or is it a matter of needing to trust each Nostr app I install and hope they are securing my Nsec correctly?

#Security

#Nsec

#iOS

Reply to this note

Please Login to reply.

Discussion

Avatar
jb55 1y ago

iOS apps are probably the most secure way to store your key, way more than desktop apps or browser plugins. in browser plugins your key is exposed to the js environment. iOS apps are sandboxed from each other and keys are stored in the secure enclave.

Avatar
elsat 1y ago

nostr:npub1qkr8gpa3zw866h87d4kv9crczw8f4ekswzxrkwfxqph082268g2smgseex have you tried saving to iOS keychain?

Avatar
Alan 1y ago

I have not. Thank you for the suggestion.

Avatar
jb55 1y ago

this might cause some confusion. We always store the key in the iOS keychain, but this isn’t backed up anywhere. We ask to save it in your password manager or icloud keychain which i think you mean.

Avatar
Alan 1y ago

Good information. Thank you!

Avatar
Alan 1y ago

Thank you for the explanation.

Avatar
Alan 1y ago

Thank you for the explanation, I greatly appreciate it!