nostr icon indicating copy to clipboard operation
nostr copied to clipboard

Published 20 hours ago verified publisher icon nostr-protocol

Keys security

Open dreson4 opened this issue 2 years ago • 7 comments

The fact that anyone can make a client and request user's private keys is a big security risk. If we have 10s of clients there's a chance at least one of them will get compromised.
Not sure if there's already a solution for this.

How about we link keys? A user can generate new private keys on every client instead of sharing the same key, link the public key to other public keys that they have that way one user can have multiple keys but same identity. When one key is compromised they can simply use other keys to delete the compromised one.

Just a thought, not sure if this is possible in the current implementation or not, I'm still reading through trying to understand it fully. Any ideas are welcome.

dreson4 avatar Dec 19 '22 04:12 dreson4