tyiu on Nostr: That’s not my understanding of how NIP-46 remote signing works. Revocation is ...
That’s not my understanding of how NIP-46 remote signing works. Revocation is supported. All that needs to happen is for the user to tell the bunker to revoke access to the client-pubkey.
Bunkers can and do keep an audit log. It’s not mentioned in the spec but there’s no reason why it can’t.
The bunker can also refuse to respond to requests from the client depending on the user’s permission settings.
Passing nsecs around and passing connection strings around are not equivalent. Connection strings are single use as the secret is single use.
I think remote-signers do effectively solve security concerns around misuse of user-keypairs as long as the user trusts the remote-signer. My criticism of them is the required server round trips leading to increased latency, and increased difficulty in onboarding and UX. nsec.app and Amber seem to work decently under the circumstances, though.
I will look into adding NIP-46 integration into my signer, but I’ll have to be creative because iOS makes it difficult due to sandboxing, limiting seamless cross-app communication.
Bunkers can and do keep an audit log. It’s not mentioned in the spec but there’s no reason why it can’t.
The bunker can also refuse to respond to requests from the client depending on the user’s permission settings.
Passing nsecs around and passing connection strings around are not equivalent. Connection strings are single use as the secret is single use.
I think remote-signers do effectively solve security concerns around misuse of user-keypairs as long as the user trusts the remote-signer. My criticism of them is the required server round trips leading to increased latency, and increased difficulty in onboarding and UX. nsec.app and Amber seem to work decently under the circumstances, though.
I will look into adding NIP-46 integration into my signer, but I’ll have to be creative because iOS makes it difficult due to sandboxing, limiting seamless cross-app communication.