Let's talk about nostr security really quick:
AFAIK, each nostr "account" is a public/private key pair. When "signing in" to an account on the various clients, you paste your private key into the client and trust that the client doesn't compromise your key. This is really bad key management and opsec. If these accounts are going to have any value over time, they must be managed correctly by users and proper key management must be enforced through a hardened UX design.
Perhaps the better way to do this is by using something like hierarchically deterministic keys. You're master key or seed is kept secret and hidden (perhaps in your password manager or safe/vault at home). Then, you derive a single use private key for the first client you sign into. Then, a new NIP defines a protocol for other clients to sign into your account from the first client; an interact between the second client and the first client will result in the second client having a new derived private key from the first derived key. With this setup, if the second client is compromised, the first client should be safe.
Each note shared could attach some client identifier in order for followers to be able to derive the public key necessary to verify signatures/decrypt notes. This identifier also allows the master key owner to be able to revoke a client key in the event it is compromised. A new key could be derived for the client again and a protocol could be defined in order to recover notes that were compromised within the use of the client.
This scheme describes a sort of sign-in architecture not unlike access keys which may be created by centralized services like Twitter, GitHub, etc. The access keys are permissioned and the actual user's private key stored in a colder fashion. At any point the master key stored by the user is the ultimate recovery key.
I'm sure there is a lot to unpack here, and I left a lot of details out. But, I think this is a general good conversation starter and would like to work on it a bit more if it seems like a good idea to the nostr devs (jb55 (npub1xts…kk5s) npub1xtscya34g58tk0z605fvr788k263gsu6cy9x0mhnm87echrgufzsevkk5s fiatjaf (npub180c…h6w6))
sam / HODLMES 🍊
npub1jc…rq9p0
2023-01-09 04:00:22
Author Public Key
npub1jcycpq67x5ge9av8g47gkrt9h488nljd76kakanvjtjf9k79lrzqzrq9p0Published at
2023-01-09 04:00:22Event JSON
{
"id": "7d5c64816727bc90c26b8a6dae2d770236f00e784e710d17f17da00a93f801f9",
"pubkey": "960980835e351192f587457c8b0d65bd4e79fe4df6addb766c92e492dbc5f8c4",
"created_at": 1673236822,
"kind": 1,
"tags": [
[
"p",
"32e1827635450ebb3c5a7d12c1f8e7b2b514439ac10a67eef3d9fd9c5c68e245"
],
[
"p",
"3bf0c63fcb93463407af97a5e5ee64fa883d107ef9e558472c4eb9aaaefa459d"
]
],
"content": "Let's talk about nostr security really quick:\n\nAFAIK, each nostr \"account\" is a public/private key pair. When \"signing in\" to an account on the various clients, you paste your private key into the client and trust that the client doesn't compromise your key. This is really bad key management and opsec. If these accounts are going to have any value over time, they must be managed correctly by users and proper key management must be enforced through a hardened UX design.\n\nPerhaps the better way to do this is by using something like hierarchically deterministic keys. You're master key or seed is kept secret and hidden (perhaps in your password manager or safe/vault at home). Then, you derive a single use private key for the first client you sign into. Then, a new NIP defines a protocol for other clients to sign into your account from the first client; an interact between the second client and the first client will result in the second client having a new derived private key from the first derived key. With this setup, if the second client is compromised, the first client should be safe.\n\nEach note shared could attach some client identifier in order for followers to be able to derive the public key necessary to verify signatures/decrypt notes. This identifier also allows the master key owner to be able to revoke a client key in the event it is compromised. A new key could be derived for the client again and a protocol could be defined in order to recover notes that were compromised within the use of the client.\n\nThis scheme describes a sort of sign-in architecture not unlike access keys which may be created by centralized services like Twitter, GitHub, etc. The access keys are permissioned and the actual user's private key stored in a colder fashion. At any point the master key stored by the user is the ultimate recovery key.\n\nI'm sure there is a lot to unpack here, and I left a lot of details out. But, I think this is a general good conversation starter and would like to work on it a bit more if it seems like a good idea to the nostr devs (#[0] npub1xtscya34g58tk0z605fvr788k263gsu6cy9x0mhnm87echrgufzsevkk5s #[1])",
"sig": "4e5e7e4cdc2cde4b37d90c6f27862ba70e7fa8508ab7ded461ed34d8b09bd6ee3d4b6b6bf0ad635127f9aeed67a29aedfa064788af42ef3980def7fbcbe42a00"
}