fiatjaf on Nostr: Definitely. If you want absolute secrecy you have to run your own (or trust Intel SGX ...
Definitely. If you want absolute secrecy you have to run your own (or trust Intel SGX but that's too complicated).
You can also precompile secrets inside the binary you deploy, the owner of the hardware still has access but it makes their lives harder. Or you can load the secrets from somewhere else on startup and keep them in memory, again they can still access but it's harder.
Published at
2025-03-15 17:59:00Event JSON
{
"id": "0000e2a9a6aaa88422382192dfd27144a1c294234f23f93beba31045f03e359c",
"pubkey": "3bf0c63fcb93463407af97a5e5ee64fa883d107ef9e558472c4eb9aaaefa459d",
"created_at": 1742061540,
"kind": 1,
"tags": [
[
"p",
"be7358c4fe50148cccafc02ea205d80145e253889aa3958daafa8637047c840e"
],
[
"e",
"cf60c2b3764c2ae4f756f64b85afeae725df97045a2fa71198310718f3769f89",
"wss://aegis.utxo.one/",
"root"
],
[
"e",
"3901e9d4481bbe4eee00990f936b9b3a2709702e22a8de129dafce71b26421e2",
"wss://wot.utxo.one/",
"reply",
"be7358c4fe50148cccafc02ea205d80145e253889aa3958daafa8637047c840e"
],
[
"nonce",
"9223372036854779991",
"16"
]
],
"content": "Definitely. If you want absolute secrecy you have to run your own (or trust Intel SGX but that's too complicated).\n\nYou can also precompile secrets inside the binary you deploy, the owner of the hardware still has access but it makes their lives harder. Or you can load the secrets from somewhere else on startup and keep them in memory, again they can still access but it's harder.",
"sig": "ee5879c5e69cdf9da1275107fbdbbef8e72ba0e7ecfdaaec1181473a50c327e77fa72876add17920a23f4968d3fa9f0ee2e7d90af29d715232b59e5b765f5979"
}