Kieran
/
snort
5
14
Fork 14
Code Issues 55 Pull Requests 1 Packages Projects Releases 24 Wiki Activity

Pin encrypt secrets #633

New Issue
Closed
opened 2023-09-17 10:53:09 +00:00 by Kieran · 2 comments
Kieran commented 2023-09-17 10:53:09 +00:00
Owner
Copy Link

Use PBKDF2 to encrypt nsec / wallet details in session

  • Private key encryption
  • Wallet encryption
Use PBKDF2 to encrypt nsec / wallet details in session - [x] Private key encryption - [ ] Wallet encryption
Kieran added the
enhancement
 label 2023-09-17 10:53:09 +00:00
Giszmo commented 2023-10-06 17:25:03 +00:00
Contributor
Copy Link

Wait, what? "Pin" sounds like something that's trivial to brute-force and if you mean "passphrase", ... I'm curious to know what you are working on here but I'm too paranoid to consider exposing nsecs to nostr clients a good idea anyway, so I'd prefer the removal of nsec handling over some pin/passphrase protection that any browser extension can work around by reading the nsec once the user provided the pin.

Wait, what? "Pin" sounds like something that's trivial to brute-force and if you mean "passphrase", ... I'm curious to know what you are working on here but I'm too paranoid to consider exposing nsecs to nostr clients a good idea anyway, so I'd prefer the removal of nsec handling over some pin/passphrase protection that any browser extension can work around by reading the nsec once the user provided the pin.
Kieran commented 2023-10-06 20:52:14 +00:00
Author
Owner
Copy Link

Yes a pin, 4 or more digits, then using Scrypt to generate to a key and encrypting with xchacha20+hmac-sha256

It offers some protection, which is better than nothing

Yes a pin, 4 or more digits, then using Scrypt to generate to a key and encrypting with xchacha20+hmac-sha256 It offers some protection, which is better than nothing
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
main
snort-prod
develop
trading
nip26
v0.2.1
v0.2.0
v0.1.24
v0.1.23
v0.1.22
v0.1.21
v0.1.20
v0.1.19
v0.1.18
v0.1.17
v0.1.17-test
v0.1.16
v0.1.15
v0.1.14
v0.1.13
v0.1.12
v0.1.11
v0.1.10
v0.1.9
v0.1.8
v0.1.7
v0.1.6
v0.1.5
v0.1.4
v0.1.3
v0.1.2
v0.1.1
v0.1.0
Labels
Clear labels   
1000k

1M Sats on Offer

  
100k

100k Sats on Offer

  
10k

10k Sats on Offer

  
200k

200k Sats on Offer

  
20k

20k Sats on Offer

  
500k

400k Sats on Offer

  
50k

50k Sats On Offer

  
5k

5k sats on Offers

  
75k

75k Sats on Offer

  
backend

Issue needs work on snort-api

  
blocked:design

Waiting for UI/UX designs

  
bug

Something isn't working

  
dependencies

Pull requests that update a dependency file

  
documentation

Improvements or additions to documentation

  
duplicate

This issue or pull request already exists

  
enhancement

New feature or request

  
good first issue

Good for newcomers

  
help wanted

Extra attention is needed

  
invalid

This doesn't seem right

  
P1

   
P2

   
P3

   
question

Further information is requested

  
scope:intl

   
scope:nip

   
scope:query_tracing

   
scope:ux

   
wontfix

This will not be worked on

No Label
1000k
100k
10k
200k
20k
500k
50k
5k
75k
backend
blocked:design
bug
dependencies
documentation
duplicate
enhancement
good first issue
help wanted
invalid
P1
P2
P3
question
scope:intl
scope:nip
scope:query_tracing
scope:ux
wontfix
Milestone
Clear milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
No Assignees
2 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: Kieran/snort#633
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?