Thread - Nostr Hypermedia

to replicate the payment card, you would need to sign the transaction with the card itself. Currently, one can do MITM attack copying the token and then spend all your coins. btw. How did you envision the vault? Does it run inside the TEE or how would you assure security of the token? You could also pick a confidential blockchain like Oasis Sapphire and do the decryption there on-chain with a read-only query.

↑ Parent

Replies (2)

gandlaf21 _@www.gandlaf.com 6 months ago

ntag-424 cards can generate keys, so on each tap yeu get a new key. you could set it up in a way that each tap has a limit, so only a certain amount can be stolen with each tap

1 replies ↓

matevz 6 months ago

ok, but how does the vault trust that the key was generated on the card and wasn't forged outside? Is it signed with the public key you publish somewhere?

1 replies ↓