There are good points here, but some only in proper context. Where John's product is node-on-phone, it suffers from many of the same (or worse) problems by nature.
Unless you're using a custom ROM your phone, it's just a Google or Apple thin-client. Putting a node on a phone at all is a larp if you also claim to be concerned with censorship, security, control, social attacks, and performance.
Such concerns can only be mitigated on mobile if the mobile has limited scope access to the node. A thin-client made for a thin-client is the only sane architectural approach in my view.
Cost is another yet factor no one wants to mention with these unsustainable mobile nodes. As users look for alternatives to WoS in a high-fee environment, they are only now beginning to understand this.
It's ultimately the failure of node-on-phone architecture has pushed people to WoS, whether its delivered via PWA or Native is irrelevant.
Why are so many wallet teams doing this then? Frankly, it's a corner-cutting way for companies to sell LSP services and skirt perception of being a custodian.
In most cases these mobile nodes are still distributed in a completely trusted way, and can be rugged by the developer just as easily and with an even better shield of deniability.
On the other hand, bootstrapping your own WoS for yourself, apps, friends, family, etc, with architectures like we're modeling with ShockWallet, is the future. A holistic approach to mitigating as the above factors and unlocking usecases like cross-device wallets and so on is how we break out of this stagnation in wallet development.
Good point! I'm more thinking of "browser exploits", those keep me up at night. Close buddy that cofounded one of the world's largest exchanges got hit with one and if it wasn't for Little Snitch would've been pwned. Anyway probably just availability heuristic fallacy...
Pretty accurate in one meme 😂😂😂😂😂😂😂😂
https://i.postimg.cc/90LjDtVm/LDK-wallets-fight.jpg
Except no one uses bitkit
true
I tried to test it and use it. It was impossible.
Best meme
the daily life of (new) bitcoin user: "which wallet is the best?"
Missing the point that is not about using the best, but using the right one for each situation and use not just one, but many.
That's point.
literally lol
deleted by author
deleted by author
There are good points here, but some only in proper context. Where John's product is node-on-phone, it suffers from many of the same (or worse) problems by nature.
Unless you're using a custom ROM your phone, it's just a Google or Apple thin-client. Putting a node on a phone at all is a larp if you also claim to be concerned with censorship, security, control, social attacks, and performance.
Such concerns can only be mitigated on mobile if the mobile has limited scope access to the node. A thin-client made for a thin-client is the only sane architectural approach in my view.
Cost is another yet factor no one wants to mention with these unsustainable mobile nodes. As users look for alternatives to WoS in a high-fee environment, they are only now beginning to understand this.
It's ultimately the failure of node-on-phone architecture has pushed people to WoS, whether its delivered via PWA or Native is irrelevant.
Why are so many wallet teams doing this then? Frankly, it's a corner-cutting way for companies to sell LSP services and skirt perception of being a custodian.
In most cases these mobile nodes are still distributed in a completely trusted way, and can be rugged by the developer just as easily and with an even better shield of deniability.
On the other hand, bootstrapping your own WoS for yourself, apps, friends, family, etc, with architectures like we're modeling with ShockWallet, is the future. A holistic approach to mitigating as the above factors and unlocking usecases like cross-device wallets and so on is how we break out of this stagnation in wallet development.
these are all minor points. the benefit of a pwa far outweighs these negatives.
Hmm I'll have to chew on this. Even though I'm a PWA fan and Mutiny user, John has written a great summary of things to consider.
With you self hosting yours, that covers like 90% of the points above.
Plus we're working on the caching and update notifier functionality now which will help with the points he makes about auto updates.
Good point! I'm more thinking of "browser exploits", those keep me up at night. Close buddy that cofounded one of the world's largest exchanges got hit with one and if it wasn't for Little Snitch would've been pwned. Anyway probably just availability heuristic fallacy...
Yep.
Also, seems like getting around app stores may be NECESSARY in order to obtain self sovereignty.
So we may NEED PWAs.
And security is just a series of tradeoffs anyways.
Can’t phishing be avoided with something like passkeys?
Yes, they’ll get username and password, but won’t be able to challenge for 2FA.
Also, perhaps using PWAs on something like GrapheneOS can mitigate a few more.
Twitter2Nitter
Clearnet: nitter.net | nitter.it | nitter.cz | nitter.at | nitter.unixfox.eu | nitter.poast.org | nitter.privacydev.net | nitter.d420.de | nitter.sethforprivacy.com | nitter.nicfab.eu | bird.habedieeh.re | nitter.salastil.com | nt.ggtyler.dev
Tor: nitter7bryz3..q553qd.onion | 26oq3gioiwcm..b4wwid.onion | vfaomgh4jxph..dauqad.onion | nitraeju2mip..evvuqd.onion | codeine3hsqn..brdqqd.onion
I2P: axd6uavsstsr..zf4q.b32.i2p | u6ikd6zndl3c..n2qa.b32.i2p | gseczlzmiv23..aoua.b32.i2p | tm4rwkeysv3z..4weq.b32.i2p | vernzdedoxuf..agva.b32.i2p
Lokinet: nitter.priv.loki/
Nitter is a free and open source alternative Twitter front-end focused on privacy and performance. Click here for more information.