The vision for this is that you have a dedicated "Client Key" that you can paste into whichever clients you enjoy using. You also have 1 or many "Bunker Keys" that are stored on servers listening for events from your client key. Only when both the client and bunker keys contribute their signatures will the signature for the event be valid, and a valid signature will be indistinguishable from one produced by your root key in cold storage somewhere.
What this allows for is even if a client or bunker attempts to rug you, you can just rotate to new key shares and "kick out" the dishonest party. And the best part is that you still have the same npub! Rotating keys doesn't mean you lose your identity.
This is somewhat flexible as well, in the demo I show a 2-of-2 setup. But you can easily increase the participants and threshold needed to produce a valid signature, thus further decreasing the trust assumptions. I could imagine having multiple bunkers with distinct key shares so you'd need all of them to conspire against you in order to get rugged.
zach / Zach
npub1za…m5dy5
2024-07-19 06:31:32
in reply to nevent1q…aqnq
Author Public Key
npub1zach44xjpc4yyhx6pgse2cj2pf98838kja03dv2e8ly8lfr094vqvm5dy5Published at
2024-07-19 06:31:32Event JSON
{
"id": "432477b40a983d465a4602930f3a80f1e9a2c02555f53dbdfc54128a173f0de8",
"pubkey": "17717ad4d20e2a425cda0a2195624a0a4a73c4f6975f16b1593fc87fa46f2d58",
"created_at": 1721370692,
"kind": 1,
"tags": [
[
"e",
"1c49a55ced6a78716a78baeaebc4a18c1cfc6ce1e93d1c6279a94f1b3eaf3fc7",
"wss://nos.lol/",
"root",
"17717ad4d20e2a425cda0a2195624a0a4a73c4f6975f16b1593fc87fa46f2d58"
]
],
"content": "The vision for this is that you have a dedicated \"Client Key\" that you can paste into whichever clients you enjoy using. You also have 1 or many \"Bunker Keys\" that are stored on servers listening for events from your client key. Only when both the client and bunker keys contribute their signatures will the signature for the event be valid, and a valid signature will be indistinguishable from one produced by your root key in cold storage somewhere.\n\nWhat this allows for is even if a client or bunker attempts to rug you, you can just rotate to new key shares and \"kick out\" the dishonest party. And the best part is that you still have the same npub! Rotating keys doesn't mean you lose your identity. \n\nThis is somewhat flexible as well, in the demo I show a 2-of-2 setup. But you can easily increase the participants and threshold needed to produce a valid signature, thus further decreasing the trust assumptions. I could imagine having multiple bunkers with distinct key shares so you'd need all of them to conspire against you in order to get rugged.",
"sig": "e655766166da39cf265a79044c36625e73742ca67c031fc4bf088c994584cb252c0021e4541bf6eb25e7cb4d457bad6ed2e46a9986288801cb4e925164e8f61f"
}