Oof, adding and removing signers within the FROST protocol without needing to change the public key sounds SUPER shaky. If that's possible, it's VERY new and untested, and I absolutely wouldn't trust that until it's been well reviewed and established - which does not currently seem to be the case.
I'm still looking for nana suitable multisig, it doesn't seem to exist yet, Sparrow seems a litte to technical, would need a big clean UI. Any other suggestions? There's going to be trade offs and I think we have got to help people build.
I think for most people, the best way to go is something like Unchained, which has a super easy set up. The UI is about as simple as it gets. If you go with 2 of 3 multisig, you have two hardware wallets, two backups, and you're trusting your third wallet to the third party. I think it's a worthy trade off. To actually be in a situation where you're fully dependent on the third party, you have to lose one of your wallets AND its backup at the same time, which should be unlikely unless you store them right next to each other. And if you're still worried about Unchained deciding to hold your funds hostage - consider the fact that doing so would be corporate suicide with no incentive, because they can't actually withdraw your funds.
So you can think of it as diversifying your security model. You're essentially using the full resources of a corporate security institution to secure a backup, and you're not actually giving them any control over your bitcoin. I think that's a great model because they're likely going to do a way better job securing your backup than you will.
It's a similar security model to keeping your third wallet in a bank deposit box, except your Unchained backup will be available to you anywhere in the world, and they make the multisig setup process significantly easier than doing it yourself with something like Sparrow.
Yeah I think you are right. The issue with Unchained is it's a company, and a US one no less. So that makes it inherently doxic.
I'd rather trust an online gang doing a similar thing.
Yeah collaborative custodians today can see all of your UTXOs, transactions, balances.
And in theory they could even censor you (at gov request) or hold you to ransom in the event that you need their assistance to sign.
It's not air gapped. 🚩
You are generating keys on a internet connected device. 🚩
These 2 points are the same thing, and I can't tell from the what the frostsnap team has put out if this is the case. Based on the pic I assume the PCB boards are where the keys are kept? therefore it is "air gapped".
What will happen if you lose one of those devices? RIP your coins. 🚩
It talks on this page about being able to backup your signers. It also mentions that you can replace a signer if 1 is compromised, I assume that works if one is lost as well.
Why waste your sats on this when you can just write the keys down on a piece of paper? 🚩
Here is my I'm bullish on frostsnap:
You can replace a signer in a "multisig" wallet without generation new public keys. This is huge.
The frostsnap page above says you don't need to keep metadata backups like you do with a current multisig where you have to backup the descriptor. This isn't as big of a deal because IMO you can just store the descriptor in a password manager, but it isn't nothing.
frostsnap is def new and time will tell how it all works but so far it looks like a great start.
The code is. What about the hardware? I think in the first version they were using Rasberry Pis (you can see their old posts), but the most recent picture seems like a proprietary device.
Based on the pic I assume the PCB boards are where the keys are kept? therefore it is "air gapped".
I see them connected to the phone via USB. Not "air gapped" in my book. But you are free to trust them.
You can replace a signer in a "multisig" wallet without generation new public keys. This is huge.
Seems like a huge red flag to me. Can't this be abused? Maybe i'm wrong. Personally i don't need any of this nor i would recommend anyone to use. But it's an interesting project i will give them that.
The code is. What about the hardware? I think in the first version they were using Rasberry Pis (you can see their old posts), but the most recent picture seems like a proprietary device.
From the GitHub README (aka in plain site)
"device/ - The firmware which runs on ESP-32 microprocessors, handling message IO, user interaction, and display."
I see them connected to the phone via USB. Not "air gapped" in my book. But you are free to trust them.
Using devices does not mean they're connected to the internet. FROST requires communication between signers, plugging devices together simplifies this communication.
Seems like a huge red flag to me. Can't this be abused? Maybe i'm wrong. Personally i don't need any of this nor i would recommend anyone to use. But it's an interesting project i will give them that.
Study FROST some more. Stephan Livera does a great episode on it.
Picture says digital centipede. Just because you might be scared of loosing coins on some setup in development does not justify being so grumpy. Innovation is important.
"Frostsnap devices are not yet available for purchase"
, seems like it's proprietary hardware. 🚩The code is. What about the hardware? I think in the first version they were using Rasberry Pis (you can see their old posts), but the most recent picture seems like a proprietary device.
I see them connected to the phone via USB. Not "air gapped" in my book. But you are free to trust them.
Seems like a huge red flag to me. Can't this be abused? Maybe i'm wrong. Personally i don't need any of this nor i would recommend anyone to use. But it's an interesting project i will give them that.
t-of-n
threshold multisig. If you create a 3-of-5 you can lose up to two devices.