Every company requiring this type of functionality I'm the non-nostr world has to run a 'server'. Sure they can get free up to 10 seats from Google or whatever to have their employees send email from their domain, but that's not really free that's a trial of a paid server. Nostr is no different. If you're a company you should probably have a relay suite, and this server acts much like googles suite for your company. It can have extra features there like, keeping company notes, running bunkers, have apis, manage nip05s, run bots etc. So as fiatjaf (nprofile…xuyp) said, it would be easy to have a bunker or API to handle the access to a single company key and revokation would be instant.
The eventually inconsistent nature of the public nostr network is not going to be able to come to a consensus on something like a key rotation. Just like delete is in the spec, the deletes are very hard to propagate. The same would be true for any attempt to revoke a key.
However, the NIP87 spec for private groups does do key rotation for a private group, but this requires the group to be on a limited number of relays as part of the spec. Perhaps delegation could work this way, but the reach of the notes would be limited to a set of relays. Notes would be more relay specific, and a combination of outbox and relay specific notes would need to be implemented in clients. At which point you would likely still want to run a relay for the company, but you could 'trial' the functionality on any set of relays that you trust enough for your purposes.
cloud fodder
npub10n…ztl5h
2024-07-10 16:42:34
in reply to nevent1q…utaz
Author Public Key
npub10npj3gydmv40m70ehemmal6vsdyfl7tewgvz043g54p0x23y0s8qzztl5hPublished at
2024-07-10 16:42:34Event JSON
{
"id": "dfb0dcfca0c34a90e989b3df6cc6db22ad8dec2afa55a5555048247566a0d6a4",
"pubkey": "7cc328a08ddb2afdf9f9be77beff4c83489ff979721827d628a542f32a247c0e",
"created_at": 1720629754,
"kind": 1,
"tags": [
[
"e",
"e6b9938568422700568944318b028106e698534b3549f2b670c9cb5ca534b929",
"",
"root"
],
[
"e",
"a623e604b030c2ed70afda1eb5e52a419d8042e7f2ffef09b6a9987bbbac2456"
],
[
"e",
"29684e331c285cdda50b5a6afa12f4d03ab500f84661b9347ed5499d728593c6",
"",
"reply"
],
[
"p",
"6e468422dfb74a5738702a8823b9b28168abab8655faacb6853cd0ee15deee93"
],
[
"p",
"3f770d65d3a764a9c5cb503ae123e62ec7598ad035d836e2a810f3877a745b24"
],
[
"p",
"3bf0c63fcb93463407af97a5e5ee64fa883d107ef9e558472c4eb9aaaefa459d",
"",
"mention"
]
],
"content": "Every company requiring this type of functionality I'm the non-nostr world has to run a 'server'. Sure they can get free up to 10 seats from Google or whatever to have their employees send email from their domain, but that's not really free that's a trial of a paid server. Nostr is no different. If you're a company you should probably have a relay suite, and this server acts much like googles suite for your company. It can have extra features there like, keeping company notes, running bunkers, have apis, manage nip05s, run bots etc. So as nostr:nprofile1qqsrhuxx8l9ex335q7he0f09aej04zpazpl0ne2cgukyawd24mayt8gprfmhxue69uhhq7tjv9kkjepwve5kzar2v9nzucm0d5hszxmhwden5te0wfjkccte9emk2um5v4exucn5vvhxxmmd9us2xuyp said, it would be easy to have a bunker or API to handle the access to a single company key and revokation would be instant.\n\nThe eventually inconsistent nature of the public nostr network is not going to be able to come to a consensus on something like a key rotation. Just like delete is in the spec, the deletes are very hard to propagate. The same would be true for any attempt to revoke a key. \n\nHowever, the NIP87 spec for private groups does do key rotation for a private group, but this requires the group to be on a limited number of relays as part of the spec. Perhaps delegation could work this way, but the reach of the notes would be limited to a set of relays. Notes would be more relay specific, and a combination of outbox and relay specific notes would need to be implemented in clients. At which point you would likely still want to run a relay for the company, but you could 'trial' the functionality on any set of relays that you trust enough for your purposes.",
"sig": "224c3fc8d9c98b6750185c9f5b9d49aa6b34c0ff846f8d8b725111656105dd0b18700fcd3f62328a91ed61140292f3410c1fc1bef9287625508fdc094b532ca7"
}