Replying to Avatar Samson Mow

Either Nostr evolves to have every client being a relay, or it will fail. The risk is the same as that of LSPs.

Think adversarially and think far into the future. Imagine Nostr running at Telegram scale with 1B users, not the tight knit community is now.
Avatar
Leo Fernevak 1y ago

Agreed. Then there is the problem of a single private key. If that key is compromised, we are no longer in control over our identity. This is particularly problematic for companies that need to share their private key with several people.

If Nostr were to have two private keys, one of them a master key with admin capabilities for the identity, the protocol would need a new architecture.

As a result, whenever a Nostr spin-off architecture solves this problem, every company, corporation and security-minded user will migrate to the protocol with higher security. That's just how things work.

Reply to this note

Please Login to reply.

Discussion

Avatar
Carsten Keutmann 1y ago

NIP-26

Delegated Event Signing

https://github.com/nostr-protocol/nips/blob/master/26.md

Avatar
Leo Fernevak 1y ago

That's a great NIP solution.

The main issue I see is in cases where the root key is already compromised. It also requires a fully secure handling of the root key.

If we implement NIP-26 and then create new root keys from scratch, we could safely move from our old Nostr identities to new ones.

Avatar
Carsten Keutmann 1y ago

Root key management is hard, no easy way around it.

This is one of many solutions:

https://primal.net/e/note1xw04kjsq2cnay0xua7l5cnqgu9qkfnun4npmw54tyy68v8kr2wuq4x6jq8

Avatar
Anchorite 1y ago

Only if it's 10x better