Oddbean new post about | logout
 Dear Devs, is there a way to create a business nsec where - let's say a team of four - can access without sharing keys in emails or DMs? Like maybe if there was a creation of a business nsec, each user will receive their own encrypted message when they open on their device? 

Maybe an external web page where one person submits a request and adds the npubs they will allow to receive a unique nsec for this business nsec? 

Like a second nsec for the master/main sec? 

Does this make sense? Lol  
 This is where that nostr private key hardware comes in handy. But one fully built. Turn on and use. Not buy it go to github download this code flash this here put -'":: there hahahaha FULLY BUILT NOSTR HARDWARE 
nostr:nevent1qqsf8gygc77mcjd5fhcgk77qkve87u0rmdgdg53uake7jsmn3yrf6espr4mhxue69uhkummnw3ezucnfw33k76twv4ezuum0vd5kzmp0qgsfhsknfhw6s0v59g0a6d48fple4tk8grdjf6newvkepcur6xwjjjqrqsqqqqqpj2d90k 
 #asknostr 
 Basically need a master private seed with revokable child keys. Someone please make this happen. I will donate sats.
nostr:nevent1qqsf8gygc77mcjd5fhcgk77qkve87u0rmdgdg53uake7jsmn3yrf6espr4mhxue69uhkummnw3ezucnfw33k76twv4ezuum0vd5kzmp0qgsfhsknfhw6s0v59g0a6d48fple4tk8grdjf6newvkepcur6xwjjjqrqsqqqqqpj2d90k 
 How about a company that holds NSECS. So the NSEC is originated and held by the company and since it was never exposed to anyone, it is then a commodity. Basically reverse engineering a centralized key holder for a decentralized protocol. I would then have a company to call to change my forgotten password, etc, grant other people access.

It would be completely centralized of course and subject to legal stuff, but a lot of marketing maybe doesn't care about censorship.  it would be one way that an NSEC becomes a digital estate with some value.

the company would have insurance to make sure they don't expose NSECs to anyone upon pain of paying a large sum. 
 Maybe a remote signer is what you’re looking for?

The idea being that your business nsec would be only be on one phone or computer, then you would authorize it to sign events coming from other apps and devices.

The spec is nip-46: https://nips.nostr.com/46

Remote signers that come to mind would be:

(Android) Amber by @greenart7c3 : https://github.com/greenart7c3/Amber/releases

(Web) Nsec.app by @brugeman : https://nsec.app

(Server) nsecbunker by @PABLOF7z : https://nsecbunker.com 
 Thanks! Great info.  
 Remote signer, but also maybe check thread below. Will be adding that to nostr-login and nsec.app

nostr:nevent1qqstv6cl32tfwgtttz9v2sysfra85l9l35plc4zq25mvuf4a3u0h72qpremhxue69uhkummnw3ez6ur4vgh8wetvd3hhyer9wghxuet59upzqv6kmesm89j8jvww3vs5pv46hqm7pqgvpm63twlf9hszfqzqhz7aqvzqqqqqqy84amuq 
 I would like remote signers to have a QR code to sign air gapped logins to desktop applications. 
 they often do.  
 nak bunker works  
 What if you had a card you could use to sign events.  
 nsecbunker allows something like this. also frostr uses some fancy frost threshold signatures. I haven't tried any of this, so not totally sure if it meets your requirements. 
 Ty for the information. I will look into it.  
 nostr:nevent1qqs0gd7z6cy7fl3jy28vk3xse8k9r8u68xw3zge7llwuyfy56nxs5tqprpmhxue69uhkummnw3ezuendwsh8w6t69e3xj730qgsw9n8heusyq0el9f99tveg7r0rhcu9tznatuekxt764m78ymqu36crqsqqqqqptjqm63