melvincarvalho on Nostr: Might not happen. Let's see. Much depends on the PRNG used in the nonces, on various ...
Might not happen. Let's see. Much depends on the PRNG used in the nonces, on various clients. Bias will only show up much later. sha256 may have bias in it too. Then it may take a sophisticated attack such as a lattice attack to get the key. Nevertheless it's better than leaving the private key on the server where 3rd parties can gain access. And mastodon (and I think bluesky) do this.
Published at
2025-02-15 22:40:39Event JSON
{
"id": "d7a5e2b1795f20f0f3b9096da7970b8f1b646d2f37639ebbac3cd845fe99f148",
"pubkey": "de7ecd1e2976a6adb2ffa5f4db81a7d812c8bb6698aa00dcf1e76adb55efd645",
"created_at": 1739659239,
"kind": 1,
"tags": [
[
"e",
"263d9cd30edc7963cf4e82e1ff7a5ca1142f484a32433f25862fc3e7747c9fb9",
"wss://ditto.pub/relay",
"root",
"8757d9c788ddfa02b91056961aa1bced110fa7bd1716af2540c7d013aad337e5"
],
[
"e",
"263d9cd30edc7963cf4e82e1ff7a5ca1142f484a32433f25862fc3e7747c9fb9",
"wss://ditto.pub/relay",
"reply",
"8757d9c788ddfa02b91056961aa1bced110fa7bd1716af2540c7d013aad337e5"
],
[
"p",
"8757d9c788ddfa02b91056961aa1bced110fa7bd1716af2540c7d013aad337e5",
"wss://ditto.pub/relay"
]
],
"content": "Might not happen. Let's see. Much depends on the PRNG used in the nonces, on various clients. Bias will only show up much later. sha256 may have bias in it too. Then it may take a sophisticated attack such as a lattice attack to get the key. Nevertheless it's better than leaving the private key on the server where 3rd parties can gain access. And mastodon (and I think bluesky) do this.",
"sig": "7e8eff8c023dbdc95cc4e96837f30f965f99178555a326f78780547692b753662e499f8f78945606799fb81b61d76413e36103c3030f4e6162818c7446c1ee24"
}
