Oddbean new post about | logout
 When #frost becomes a viable multisig-style tool for nostr private keys, does the cryptography in some way allow for “converting” an existing nsec into a FROST structure?

In other words, could I retain my primary keypair and somehow make it into a an offline key? (Currently it was generated in @damus and has only been exposed to Damus and a pen-and-paper backup).

I’d love to gain the additional security but not have to rebuild the content and social graph that I’ve spent nearly 2 years building. But how?

Or as another route, could I use a new FROST multi/nsec along with an nsec-bunker type authorization tool, such that the new key is the master key behind my bostonwine nsec?

Not sure who to ask… @NVK @rot13maxi and @benthecarman, y’all were discussing on today’s @BitcoinReview or maybe @jb55, or @PABLOF7z - nsecbunker is your creation, right?

Hell, might as well #asknostr 
 Im hopeful that #subkeys will come to pass 
 Very much same 
 This all sounds exciting... Checking out frost now... Thanks! 
 I'm sorry, I'm having a difficult time finding a relevant post with that hashtag... just seems to be weather/season related stuff...

Maybe, is it this?  FrostSnap?

https://frostsnap.com/introducing-frostsnap.html 
 Precisely 
 OK, thx! #FrostSnap looks awesome!  We're getting closer to the cypherpunk money swap clicky devices that are in all the cool sci-nonfi movies... You know... "How many space credits do I owe you..." Click! Credits transfer complete... 
 So true dude, I was thinking the same thing 🤙 
 It already exists

https://github.com/nickfarrow/frostr 
 No shit. Thanks Ben 🤙 
 Do you know whether an existing key can somehow be converted to a frost multi sig key? Or could be set up as a sub-key of a new frost key which then controls the old nsec? 
 In theory you can split a key but it kinda defeats the purpose because someone will know the original private key. 

You can't use an existing nsec as a sub key, everyone needs to generate keys together 
 Roger that. Appreciate it 
 I wrote a blog post about frost https://www.iroh.computer/blog/frost-threshold-signatures

For iroh, we use curve ed25519, while nostr is using secp265k1. So the linked code only works with ed25519 keys.

But other than that this transfers 1:1. You can take an existing key and split it into as many key shares as you want. So you can move to a multisig style approach while preserving your nostr identity.

You could take the existing code, replace https://crates.io/crates/frost-ed25519 with https://crates.io/crates/frost-secp256k1, and you would have a working co-signing setup for nostr keys. 
 Hot damn 🔥⚡️

While the cryptography is well-beyond my skill level, this is incredibly cool and suggests that a hardware device could in fact support this. thanks 🫂

PS tryin to zap you but getting an error generating LN invoice in damus 
 I am new to nostr. I guess I have to set something up?

Anyway, the cryptography is solid, it’s from the zcash foundation https://zfnd.org/ , and the crates make a good impression in my opinion. 
 Oh yea - depending on your client there’s usually a way to edit your profile > edit Lightning address and you can input something

Depending how familiar you are with Lightning, happy to help with setting that up if you need 🤙