blips icon indicating copy to clipboard operation
blips copied to clipboard

Published 20 hours ago verified publisher icon lightning

BLIP 0014: add sender authentication

Open joostjager opened this issue 3 years ago • 6 comments

Adds the possibility for the sender to optionally authenticate themselves. More background: https://lists.linuxfoundation.org/pipermail/lightning-dev/2021-December/003422.html

joostjager avatar Feb 04 '22 09:02 joostjager

It'd be nice to have a rationale section that discusses potential uses for this (and arguably more importantly, cases where this should not be used). eg if you're doing some kind of chat over lightning HTLCs, you probably don't want to use this and instead want to do some kind of double-ratchet thing, and also just talk about how this is generally discouraged for every-day usage.

TheBlueMatt avatar Feb 08 '22 16:02 TheBlueMatt

Added a few example use cases

joostjager avatar Feb 09 '22 19:02 joostjager

One potential use-case we could describe here would be where a sender is a regulated financial institution sending to a pubkey it knows is another regulated financial institution, where they wish to indicate to the recipient who they are by means of node id authentication, and then presumably they will exchange some additional information out-of-band to fulfill their travel rule obligations.

TheBlueMatt avatar Feb 09 '22 22:02 TheBlueMatt

In that case, can't they make a regular lightning payment without sender auth and send the additional info along with the payment hash and/or payment secret out-of-band?

I think in-protocol authentication can be helpful to do just-in-time limits checking. You don't want to end up accepting payments that then need to be held or refunded. Another option is to use lnurl or some other out-of-band communication mechanism to preclear the transaction.

joostjager avatar Feb 10 '22 08:02 joostjager

Ugh, this slipped off my radar.

In that case, can't they make a regular lightning payment without sender auth and send the additional info along with the payment hash and/or payment secret out-of-band?

No, they shouldn't/wouldn't want to send KYC info to everyone, they really want to authenticate themselves as a legitimate institution to the recipient, with the recipient authenticating themselves as a legitimate institution back to the sender as well. Only if they both trust each other should they exchange KYC info.

TheBlueMatt avatar Apr 30 '22 01:04 TheBlueMatt

Has this actually been used by someone? Looking at pending blips, it seems to me that #31 would fit the same needs with better trade-offs?

t-bast avatar Sep 18 '24 11:09 t-bast