Hey hey, dear #[0] #[1] #[2] #[3] π€
Is there any possibility to implement 2FA to #nostr?
W it shines for me that would make the protocol unbeatable in terms of security.
Sorry if this question makes no sense π
Login to reply
Replies (12)
Clients could let you do that
But then if your private key leaks, there is no sense in it, right?
Iβm going to assume you need the 2FA to decrypt your key
If so, it will have no sense, of course.
On the other hand, if it could be used as a second layer proof?π But then any activity should be signed with both the private key and TOTP, I believe. And also it is questionable if you can have several authenticatee relays...
So it will make no sense, or?
Dunno, you should propose a NIP on how your idea should work. This is an open protocol and I donβt have all the answers π€
Thank you, I see π«
Even though I never coded anything more complex than a 'Hello world' message, I'll dig into this topic and maybe even propose a NIP π€
Have a great weekend βοΈ
It makes no sense because 2FA is just a second password you give to a centralized entity.
But it is an interesting idea if you think you could have a key that is split in two and a server keeps half and only signs your events once you provide 2FA auth to it.
Perhaps a non-shitcoin custody use case for MPC actually.
Yeees, that would be killer, right?
Because now I'm a bit scared every time I am putting in my private key into amethyst, astral, or whatever.
You can implement it as MuSig. Your second factor is just another signer in a 2-of-2.
I'm not sure that the relays are ready to retrieve multisig. Anyways it shines really promising.
What I thought was to put all relays on a chain (bitcoin or sidechain) so they add some crucial data simultaneously.
For example, if the user wants to have 2FA - this data would be added to the next block so all relays accept messages from this user only signed with 2FA.
nostr:nevent1qy2hwumn8ghj7un9d3shjtnyv9kh2uewd9hj7qg7waehxw309ahx7um5wgkhqatz9emk2mrvdaexgetj9ehx2ap0qy2hwumn8ghj7mn0wd68ytn00p68ytnyv4mz7qgswaehxw309ahx7tnnw3ezucmj9uq36amnwvaz7tmwdaehgu3wvf5hgcm0d9hx2u3wwdhkx6tpdshsz9thwden5te0wfjkccte9ehx7um5wghxyee0qythwumn8ghj7un9d3shjtnwdaehgu3wvfskuep0qyvhwumn8ghj7un9d3shjtnwdaehgunfvdsjucm0d5hsztrhwden5te00phz6tftwaehxttgdcmxgte0dehhxarj94c82c3wwajkcmr0wfjx2u3wdejhgqgkwaehxw309ajkgetw9ehx7um5wghxcctwvshsqgrxungq7wjldm4ag04tlgzjc7anlqzhvyknhj0tyylmz2fq9g43qc6q2emy