If NIP-46 can be made more reliable, I am ALL FOR this onboarding flow. In fact. I would present the remote signing bunker string as, "This is how you log into Nostr apps. No email or password needed. Just keep this in a password manager and paste it into any compatible client. They will have it listed as signing in using a "bunker." Here's a list of clients:..." Then just give the nsec as a way to recover the bunker if it is compromised. Done.
This quorum of FROST signers is very interesting indeed! No single point of failure. However, it is still a relatively small group needed to collude, and I assume you need their cooperation to retire a bunker string, right? So if they DID collude, it would be no different from your nsec being compromised.
Dikaios1517
npub1ku…v3lhe
2025-01-07 22:00:48
in reply to nevent1q…3nvs
Author Public Key
npub1kun5628raxpm7usdkj62z2337hr77f3ryrg9cf0vjpyf4jvk9r9smv3lhePublished at
2025-01-07 22:00:48Event JSON
{
"id": "a13093f7a13b6de1d55742024698bd1efc9ea78c2a33560ae1ea54f322524e25",
"pubkey": "b7274d28e3e983bf720db4b4a12a31f5c7ef262320d05c25ec90489ac99628cb",
"created_at": 1736287248,
"kind": 1,
"tags": [
[
"e",
"00003e7ddf034e3bf8fad06c4ca1e8b2f4397d28e2495ce2c00868155084d423",
"wss://pyramid.fiatjaf.com",
"root"
],
[
"e",
"00000894708f41f7d5e4de897bdbec41b657095fb98958a9e7190385d3531da6",
"wss://pyramid.fiatjaf.com",
"reply"
],
[
"p",
"b7274d28e3e983bf720db4b4a12a31f5c7ef262320d05c25ec90489ac99628cb"
],
[
"p",
"3bf0c63fcb93463407af97a5e5ee64fa883d107ef9e558472c4eb9aaaefa459d"
],
[
"p",
"7bdef7be22dd8e59f4600e044aa53a1cf975a9dc7d27df5833bc77db784a5805"
],
[
"r",
"wss://filter.nostr.wine/"
],
[
"r",
"wss://nostr.wine/"
],
[
"r",
"wss://relay.brightbolt.net/",
"write"
],
[
"r",
"wss://relay.brightbolt.net/inbox",
"read"
],
[
"r",
"wss://dikaios1517.nostr1.com/",
"write"
],
[
"r",
"wss://relay.primal.net/"
],
[
"r",
"wss://wot.brightbolt.net/"
]
],
"content": "If NIP-46 can be made more reliable, I am ALL FOR this onboarding flow. In fact. I would present the remote signing bunker string as, \"This is how you log into Nostr apps. No email or password needed. Just keep this in a password manager and paste it into any compatible client. They will have it listed as signing in using a \"bunker.\" Here's a list of clients:...\" Then just give the nsec as a way to recover the bunker if it is compromised. Done.\n\nThis quorum of FROST signers is very interesting indeed! No single point of failure. However, it is still a relatively small group needed to collude, and I assume you need their cooperation to retire a bunker string, right? So if they DID collude, it would be no different from your nsec being compromised.",
"sig": "a3fa9a705461d06660222619b5b45ae28caa7c834faa49dc57910f6c1e4fb70ec1d865843a732dd2eca8b82435e125e8bb4b90a8d030a005c9f1caabd8b81176"
}