My Nostr keys are in a Hot wallet? \ stacker news ~nostr

pull down to refresh

289 sats \ 13 comments \ @Bitcoiner1 19 Sep nostr

I'm not an expert on the key management topic, that's why I'm looking for advice.

My Nostr keys were generated by a browser extension on my PC. My PC is connected to the internet, so it is a hot wallet

Is there a better way to generate the keys or to hold keys offline and be able to post notes on clients as Primal?

Thanks

view all related items

10 sats \ 0 replies \ @ek 19 Sep

you might want to look into remote signing or even frostr by @bitcoinplebdev and @cmd

100 sats \ 3 replies \ @Doktor 19 Sep

Remote signer like Amber for Android you are asking for.

The option bunker is also very interesting, even if not very reliable for me.

You might check out this as well to create keys either in browser or on local machine offline

0 sats \ 2 replies \ @DannyM 19 Sep

Amber is fantastic, seriously @Bitcoiner1 if you don't use Amber you're missing out

0 sats \ 1 reply \ @Bitcoiner1 OP 19 Sep

As far as I know, using Amber is still a hot wallet, your keys are on the phone...or am I missing something else?

0 sats \ 0 replies \ @DannyM 19 Sep

it can be in a separate dedicated phone that's only for amber

0 sats \ 0 replies \ @Doktor 19 Sep

This just came back to my mind.

Nostr signing device

https://shop.lnbits.com/product/nostr-signing-device

0 sats \ 2 replies \ @m0wer 19 Sep

Ideally, one would generate a master private key in a cold wallet and then use that one to sign subkeys that could ne used from a browser extension and with a limited validity period. If compromised, just sign a revokal and a new subkey with the master one.

Does something like this exist? In PGP there's something like that.

0 sats \ 1 reply \ @Bitcoiner1 OP 19 Sep

So, it works as the BIP 85? From one pair of keys, you can generate child keys...

0 sats \ 0 replies \ @m0wer 19 Sep

Something like that yes. But with the difference of intentionally linking the master and the children.

0 sats \ 3 replies \ @fourrules 19 Sep

I wish I could generate Nostr keys with my Coldcard Q.

0 sats \ 2 replies \ @m0wer 19 Sep

Signing would be a pain though.

0 sats \ 1 reply \ @fourrules 19 Sep

Surely you can generate keys from keys, so I can have a private key that controls multiple private keys.

Then I'd have an air-gapped store of all if my identities online, from which I can derived them again if I lose any particular private key, if I know the derivation path for constructing these private keys?

0 sats \ 0 replies \ @m0wer 19 Sep

That's the part I'm missing. It's not only about deriving the keys but about a NIP that enables the issuing and revokal flow for a seamless experience of other users.

Is this possible already?