When #frost becomes a viable multisig-style tool for nostr private keys, does the cryptography in some way allow for “converting” an existing nsec into a FROST structure?
In other words, could I retain my primary keypair and somehow make it into a an offline key? (Currently it was generated in @damus and has only been exposed to Damus and a pen-and-paper backup).
I’d love to gain the additional security but not have to rebuild the content and social graph that I’ve spent nearly 2 years building. But how?
Or as another route, could I use a new FROST multi/nsec along with an nsec-bunker type authorization tool, such that the new key is the master key behind my bostonwine nsec?
Not sure who to ask… @NVK @rot13maxi and @benthecarman, y’all were discussing on today’s @BitcoinReview or maybe @jb55, or @PABLOF7z - nsecbunker is your creation, right?
Hell, might as well #asknostr
Im hopeful that #subkeys will come to pass
This all sounds exciting... Checking out frost now... Thanks!
I'm sorry, I'm having a difficult time finding a relevant post with that hashtag... just seems to be weather/season related stuff...
Maybe, is it this? FrostSnap?
https://frostsnap.com/introducing-frostsnap.html
Precisely
OK, thx! #FrostSnap looks awesome! We're getting closer to the cypherpunk money swap clicky devices that are in all the cool sci-nonfi movies... You know... "How many space credits do I owe you..." Click! Credits transfer complete...
So true dude, I was thinking the same thing 🤙
It already exists
https://github.com/nickfarrow/frostr
Do you know whether an existing key can somehow be converted to a frost multi sig key? Or could be set up as a sub-key of a new frost key which then controls the old nsec?
In theory you can split a key but it kinda defeats the purpose because someone will know the original private key.
You can't use an existing nsec as a sub key, everyone needs to generate keys together
Roger that. Appreciate it
I wrote a blog post about frost https://www.iroh.computer/blog/frost-threshold-signatures
For iroh, we use curve ed25519, while nostr is using secp265k1. So the linked code only works with ed25519 keys.
But other than that this transfers 1:1. You can take an existing key and split it into as many key shares as you want. So you can move to a multisig style approach while preserving your nostr identity.
You could take the existing code, replace https://crates.io/crates/frost-ed25519 with https://crates.io/crates/frost-secp256k1, and you would have a working co-signing setup for nostr keys.
Hot damn 🔥⚡️
While the cryptography is well-beyond my skill level, this is incredibly cool and suggests that a hardware device could in fact support this. thanks 🫂
PS tryin to zap you but getting an error generating LN invoice in damus
I am new to nostr. I guess I have to set something up?
Anyway, the cryptography is solid, it’s from the zcash foundation https://zfnd.org/ , and the crates make a good impression in my opinion.
Oh yea - depending on your client there’s usually a way to edit your profile > edit Lightning address and you can input something
Depending how familiar you are with Lightning, happy to help with setting that up if you need 🤙
Oddbean new post about login | logout