TOO MUCH CONCERN OVER LACK OF KEY ROTATION.
NOT ENOUGH FOCUS ON HARDWARE SIGNERS AND MULTISIG.
Login to reply
Replies (52)
YES! HARDWARE PEOPLE STEP UP. LET'S GO!
TOO MUCH CONCERN OVER LACK OF KEY ROTATION.
NOT ENOUGH FOCUS ON HARDWARE SIGNERS AND MULTISIG.
View quoted note →
Who's working on any of this stuff?
View quoted note →
If someone wants to modify the #Signet firmware, it already stores keys/passwords/secrets in hardware. It's all #OpenSource. No permission needed to make the change.
TOO MUCH CONCERN OVER LACK OF KEY ROTATION.
NOT ENOUGH FOCUS ON HARDWARE SIGNERS AND MULTISIG.
View quoted note →
Worse,
NOT ENOUGH FOCUS ON PUTTING YOUR SATS IN AN 1181 OR COMMON LAW TRUST AND FORMING A 508c1a PMA.
Key revocation and rotation is a solvable problem and is ultimately about authentication, regardless if a key is ever compromised!
How do you know who is who? Do you remember their npub? Where do you save the name you have for their npub? Right now it is all just a list of pubkeys in a follow list (mostly).
TOO MUCH CONCERN OVER LACK OF KEY ROTATION.
NOT ENOUGH FOCUS ON HARDWARE SIGNERS AND MULTISIG.
View quoted note →
Tell me more
Yes, we need more focus on hardware signers and multisig. Time better spent 🫡
Hardware signer are cool but unfortunately have poor scalability for the masses (cost, shipping logistic, mobile usage). I would aim for multisign/Frost solutions.
ONWARD 🫡
No concern about CSAM on Nostr
No Concern about making decent relay backends
View quoted note →
How about concern for making it easy for newcomers? Or is that the plan, keeping nostr from growing?
it is a first aproach after all
MULTISIG IS AWESOME
TapSigner /Satchips are good for the masses IMO.
Cheap and mobile compatible.
Screens are a bit of an overkilling feature and necessary only for bigger amounts.
Basically when you move your long term savings, with a private key that you will use only few times a year
I'm multisiged up to my eyeballs.
Feels good.
Could Portal by @npub10vkr...l4gu fix this?
+1
app + server + encrypted cloud backup 2 of 3 frost could be nice
already running a multi-sig for my nsec
beta testers wanted
Frostr
👀
How do I test?
When TapSigner for nsec?
I’d love to test.
How can I help test
That's what Inwas gonna say.
this is what I want too
When BIP 39 type NIP for Nostr NSEC?
Then we can add an a additional passphrase
View quoted note →
👀
I can be beta tester what do you need from me
you just use authentication apps or passkey ?
@jack surely Bitkey is exploring adding Nostr?
Maybe a ring format to tap using nfc?
Tangem did a good job of that
Only an influencer up their own ass would think their notes are so valuable they merit a fucking multi-signature scheme.
TOO MUCH CONCERN OVER LACK OF KEY ROTATION.
NOT ENOUGH FOCUS ON HARDWARE SIGNERS AND MULTISIG.
View quoted note →
My @SeedSigner was cheaper than my physical leather wallet
We are talking here about Nostr, hardware signer would require a totally different (easier and convenient) user experience.
Possible? @jack 
Tu as testé @Renaud Lifchitz?
Make a demo for running (for learning)
I know It exists. And it's cool.
But do you think that signing every event with this process is doable for the operativity of a normal user? No way.
The easy solution is FROST bunkers.
No normal person wants to use a HWW or multisig to use nostr
TOO MUCH CONCERN OVER LACK OF KEY ROTATION.
NOT ENOUGH FOCUS ON HARDWARE SIGNERS AND MULTISIG.
View quoted note →
on it, a more official demo vid and launch is coming soon
the frost2x extension repo (forked from nos2x) includes everything you need to setup a demo and dev environment
it includes the extension, a second test node, and an ephemeral test relay as well
just updated the README to be actually useful for setting up a demo, let me know what you think:
GitHub
GitHub - FROSTR-ORG/frost2x: Nostr signer extension, with the power of FROST.
Nostr signer extension, with the power of FROST. Contribute to FROSTR-ORG/frost2x development by creating an account on GitHub.
we have a web extension and desktop app, with plans for a mobile app and self-hosted server apps as well
🤙
