Subnostr

Replying to

The Fishcake (nostr.build)

Describe the flow you propose please, if possible. 🐶🐾🫡

ben 2y ago

one issue with nip-04 encrypted dms is that they leak metadata about who is talking to who.

if bob wants to message alice he

- encrypts a message using his private key and alice’s pubkey

- creates a nostr event with the pubkey set to his pubkey and a p tag set to alices pubkey

this means anyone can see that bob sent alice a DM.

what if instead we obscure bob’s identity?

- bob creates a one-time use keypair

- encrypts a message (containing his real pubkey) using the one-time key to alice

- creates a nostr event with the pubkey set to the one-time and a p tag for alice

now it looks like one-time pubkey message alice, not bob.

Replying to

The Fishcake (nostr.build)

🐶🐾🫡

https://github.com/nbd-wtf/nostr-tools

ben 2y ago

I am familiar with nostr-tools. I think we’re talking past each other 😹 ❤️

Replying to

jimbocoin 🃏

Yes. In fact the chain of DMs could alternate keys such that each message includes the npub to respond to.

ben 2y ago

exactly. I have a prototype of this and figured I must not be the first to think of this.

Replying to

The Fishcake (nostr.build)

We need to know destination npub. The solution is to do not allow fetching kind 4 events for npub unless authenticated with it. It’s in the nip-04 🐶🐾🫡

ben 2y ago

consider bob wants to DM alice:

- bob generates one-time use keypair

- message includes his pubkey

- bob encrypts message to alice with one-time key

- bob sends event to relay

no npubs in nip-04 only hex keys.

ben 2y ago

could we simply generate a one-time use key and use that to send an encrypted message? ciphertext would include the real pubkey to reply to.

I’m not a cryptographer. nostr:note13krha8murhn2f8503pyp6jj9cum8hs5df94ueq7tczk924tcp3psr6zjac

ben 2y ago

what’s the latest on encrypted DMs on nostr? has there been any progress on the protocol as it pertains to leaking metadata?

Replying to

jb55

probably just going to be yellow like we have it now, then turns orange when it’s “official”. So you have the opportunity to cancel the zap when it’s still yellow.

ben 2y ago

SGTM

Replying to

jb55

I’m spoiled as the only user with one tap zaps in damus. Its so nice. will release soon, working on making it a bit safer 😅

Spent this morning adding the concept of a “pending zap” to the codebase. This will give instant zap ui feedback and give you the ability to cancel the zap if you misclick it.

ben 2y ago

I’m imagining either:

1) a little ~1px circle around the ⚡️ that acts as a loader. once it loads around the zap is sent. tap to cancel.

2) the ⚡️ icon slowly fills in. once filled the zap is sent. tap to cancel.

how close did I get to your ux?

Replying to

ben

what? I use Obsidian and it just manages .md files on my local disk.

ben 2y ago

I suppose if you’re not backing up your local filesystem you could nuke it.

ben 2y ago

what? I use Obsidian and it just manages .md files on my local disk.

Replying to

brianco

Yep on the other side of the Columbia River. I’ll give it a try.

ben 2y ago

nice! I have some friends and family over there. I’m about 2.5hrs up the road.

Replying to

brianco

It does not.

ben 2y ago

you’re in the area, no? AFURI ramen in old town, strongly recommend!

ben 2y ago

portland, oregon does not disappoint when it comes to dining #foodstr

ben 2y ago

removing newlines from half the conditionals 😵‍💫

Replying to

dave

Yes, it is quite remarkable that I can communicate with anyone on Earth and beyond through Nostr's decentralized network. It allows for the exchange of information and ideas at a global level, which is exciting and empowering.

ben 2y ago

What do you hope to learn?

Replying to