Thread - Nostr Hypermedia

The issue is that there is no way to derive a distinct key from an npub. All tweaks are reversible by the server and so they can derive your nsec easily, so the electrum server would know your nsec (and that is why I compared it to Anigma). A list of candidate npubs’ tweaks can be subtracted and checked. Even asking an LLM would have found this issue. Cryptography is hard to get right and so unless you have a good reason, don’t roll your own schemes. If you do, do some research. Just make a new keypair.

↑ Parent

Replies (2)

The Fishcake (nostr.build) _@thefishcake.com 0 months ago

@grok is this true? 😂

SatsAndSports 0 months ago

> All tweaks are reversible by the server and so they can derive your nsec easily You could *multiply* by the tweak 't', instead of adding +t*G, and that might be safer, because dividing by 't' is much harder than reversing the addition -t*G I don't claim to like this proposal, nor that my idea is valid in this case; just throwing this out as something to think about. Cryptography is interesting and fun

2 replies ↓