Nice work, nostr:nprofile1qy08wumn8ghj7mn0wd68yttsw43zuam9d3kx7unyv4ezumn9wshsz9thwden5te0wfjkccte9ejxzmt4wvhxjme0qythwumn8ghj7mn0wd68ytnkw4k8qetd9e3k7mf0qqs0w2xeumnsfq6cuuynpaw2vjcfwacdnzwvmp59flnp3mdfez3czpslef05y . We need more Nostr signing devices!
Discussion
Id like to help with that. I would like to test my noscrypt library on some hardware as that it also a target use case. I would also like to see a serial (or similar) API drafted for platform software support. Id like to add hardware support to NVault in the future.
Oooooohhhh ❤️❤️❤️❤️
The delegate key thing (NIP46) as to happen of course and delegation with expiry like X509 certificates. Expiry means implicit revocation.
Keeping an eye too on those ESP32 devices and their security properties, like flash RAM encryption etc. I think there have been security holes there in the past. They would make for great "open source Yubikeys" with their broad availability.
In case what can also use a see dedicated crypto chip normally like ATECC608B or NXP SE050 but those don't normally do secp256k1 because that shit it exotic as fuck and is really hurting nostr.
The ESP32s are really neat and there's definitely some hardening that can be done with the secure boot, signed firmware features.
Key delegation with an expiry time would be really nice! Good idea.
I don't have any SE experience on ESP32s but from the research I've been doing, you're right, the ATECC608B can't do schnorr sigs. The Coldcard uses this SE and it is compatible with taproot so I'm wondering if there's a way of working this. Either that or CK are using the DS28C36BQ. I need to research more.
The DS28C36 is NIST P256 too? https://www.analog.com/media/en/technical-documentation/data-sheets/ds28c36.pdf
(This link above btw is an abridged data sheet. The full datasheet is under NDA for which I call bullshit. Friends don't let friends use Maxim.)
The Koblitz curve is really exotic outside the blockchain/nostr bubble. Nostr doesn't use Schnorr sigs AFAIK just plain EcDsa.
Not sure how Coldcard works.
I'll have a look at the data sheet. Thank you. I'm very new to using SE so it's going to take some figuring out.
Here's the schnorr sigs nostr stuff
https://github.com/nostr-protocol/nips/blob/master/01.md#events-and-signatures
Schnorr sigs indeed not sure where I had the idea about EcDsa from. That's even more exotic then. The NXP SE050 would to Koblitz curves in some configurations but just EcDsa not Schnorr. Good luck finding an SE that can do that.