I went through an ordeal where I thought I lost my phone (but later found it).
I realized that there is no way to revoke my nsec from my phone if I lose it.
I am now convinced now that a multi-key setup with remote signer will be the future of self-custody. You cannot protect your identity without one.
But how do you coordinate key delegation around a single identity? Nostr tried key delegation and failed. Protocols like DIDs have not taken off.
Enter FROST.
FROST has a protocol for updating the shares of a secret, without changing the original secret.
If your nsec was a FROST key with multiple shares, you could use these shares for signing, and you could remove/replace compromised shares without changing your main identity.
You could even rotate keys regularly without changing your nsec. No need for delegation or resolving DIDs. This is the power of FROST.
Who wants to make a remote signer based on FROST?
cmd /
npub1gg…lulq3
2024-05-07 21:34:27
Author Public Key
npub1gg5uy8cpqx4u8wj9yvlpwm5ht757vudmrzn8y27lwunt5f2ytlusklulq3Published at
2024-05-07 21:34:27Event JSON
{
"id": "de2c21b94dec72b062e00c79e59a479aaf1c8828080230cf554d1255a98a02cb",
"pubkey": "4229c21f0101abc3ba45233e176e975fa9e671bb18a6722bdf7726ba25445ff9",
"created_at": 1715117667,
"kind": 1,
"tags": [],
"content": "I went through an ordeal where I thought I lost my phone (but later found it).\n\nI realized that there is no way to revoke my nsec from my phone if I lose it.\n\nI am now convinced now that a multi-key setup with remote signer will be the future of self-custody. You cannot protect your identity without one.\n\nBut how do you coordinate key delegation around a single identity? Nostr tried key delegation and failed. Protocols like DIDs have not taken off.\n\nEnter FROST.\n\nFROST has a protocol for updating the shares of a secret, without changing the original secret.\n\nIf your nsec was a FROST key with multiple shares, you could use these shares for signing, and you could remove/replace compromised shares without changing your main identity.\n\nYou could even rotate keys regularly without changing your nsec. No need for delegation or resolving DIDs. This is the power of FROST.\n\nWho wants to make a remote signer based on FROST?",
"sig": "a66b17b0a2111d5dfa254191132b0f8cc17d6db357c4b95e8f54596f3b4cdacffe790d9ba4aa2e2074dbe54c3b278c1119516ded6409de7c97b13eff249a16bf"
}