matevz on Nostr: to replicate the payment card, you would need to sign the transaction with the card ...
to replicate the payment card, you would need to sign the transaction with the card itself. Currently, one can do MITM attack copying the token and then spend all your coins.
btw. How did you envision the vault? Does it run inside the TEE or how would you assure security of the token? You could also pick a confidential blockchain like Oasis Sapphire and do the decryption there on-chain with a read-only query.
Published at
2025-06-04 05:31:46Event JSON
{
"id": "5a8c04e6d2931fe2738eb0e800185d1a2750c7b88e68669420f5bb27baacc6dc",
"pubkey": "642e65ed1060df0f37b49abd014eb0654193a5820063f0ebdbd7471d6948ce04",
"created_at": 1749015106,
"kind": 1,
"tags": [
[
"e",
"f472d64cf1aaf75742224bb93dc696bc84a6ca0eac395b97f2faf625e60ea707",
"",
"root"
],
[
"p",
"06b7819d7f1c7f5472118266ed7bca8785dceae09e36ea3a4af665c6d1d8327c"
]
],
"content": "to replicate the payment card, you would need to sign the transaction with the card itself. Currently, one can do MITM attack copying the token and then spend all your coins.\n\nbtw. How did you envision the vault? Does it run inside the TEE or how would you assure security of the token? You could also pick a confidential blockchain like Oasis Sapphire and do the decryption there on-chain with a read-only query.",
"sig": "2f1de37fe29440ac4d9ff485c1afe473641659b71f10bf1857707a5c59c73304709800e04a91f753bb940c9cd6bc5cee0064383b21fa6b772a2c5ffb78a3866b"
}
