Christopher Allen Profile picture
May 18 13 tweets 6 min read Twitter logo Read on Twitter
At @BlockchainComns we believe that multisig offers superior #SmartCustody over using Shamir's Secret Sharing (which was recently implemented as part of @Ledger Recover). Unfortunately, there are few practical alternatives to sharding a seed, and multisig is complex. 🧵… [1/13]
The first obstacle to multisig is that our experience is that they are too complex for normal usage. We know that even professionals using one of our well-tested secure scenarios find the hour it takes is too long. [2/13] github.com/BlockchainComm…
The second obstacle is that true multisig really is available only for Bitcoin. There are multi-account smart contracts that resemble cryptographic multisig, but they don't offer the same level of hardware security, and each transaction costs gas. [3/13] shivanisb10.medium.com/multisig-contr…
The advantage of Shamir Secret Sharing cryptography is it can be used for any secret, not just private keys. Thus it can also be used to secure Ethereum keys, NFTs, other blockchains, etc. But you do still have to be very careful: [4/13]
Our CSR (Collaborative Seed Recovery) open source project in the Gordian Developer community at @BlockchainComns is meant to make Shamir's Secret Sharing more accessible and safer while keeping the door open for a future that includes multisig. [5/13] github.com/BlockchainComm…
CSR addresses some of the limitations of Shamir's Secret Sharing by allowing multi-modal, automated authentication, by implementing progressive recovery revelation, and by recognizing reconstruction as the most vulnerable point in the process. [6/13] github.com/blockchaincomm…
CSR also allows for more secure storage of shares through SSKR's support for multilevel sharding [7/13] github.com/BlockchainComm…
Finally, CSR works to improve usability by getting things started with a simple QR code and ensure consent by asking for permission step by step. No need to find some specific button in yet another wallet UX, the flow takes you through the scenario to successful completion [8/13]
We hope to see the first commercial implementation of CSR this year, but ultimately it's just a stepping stone. In the future CSR will be able to adapt to new techniques that include VSS, MuSig2 and FROST. [9/13]
Our ultimate goal is to evolve CSR into Collaborative Key Management (CKM), which will take advantage of Multi-Party Computing (MPC), so that the seed on your device combines with others on the net to dynamically reconstruct your key as needed. [10/13] github.com/BlockchainComm…
Then, if a hardware device maker makes a change that it can share out your seed, that might be OK. Because one single seed can no longer be a single point of compromise. (And ensuring it's not a point of failure also remains important for resilience!) [11/13]
However, CSR (and more than that CKM) still lies in the future. If you are a wallet customer, demand your vendor to get involved with CSR. If you are a dev interested in working with us on these initiatives, join the Gordian Developer community. [12/13] blockchaincommons.com/subscribe.html
We also need your financial support — it is through sponsors like these that we've been able to get to where we are today: blockchaincommons.com/sponsors.html Become a patron of @BlockchainComns to help ensure these possibilities become reality! [13/13] github.com/sponsors/Block…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Christopher Allen

Christopher Allen Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @ChristopherA

May 18
Perhaps my biggest problems with the @Ledger Recover program as it’s currently conceived are that it’s not open and it’s not independent. Users will be locked into decisions that Ledger made, for its own business reasons. [1/12]
The Gordian Principles from @BlockchainComns suggest that digital assets should be held in a way that’s independent, private, resilient, and open. Ledger Recover increases resilience, but that’s it. [2/12] github.com/BlockchainComm…
From what we’re heard, the Recover share holders will actually be requiring KYC checks. That doesn’t just go across our Principles, but also the general ethos of Bitcoin! [3/12]
Read 13 tweets
May 18
One of my concerns with the new @Ledger Recover service is that they appears to be sharding via Shamir’s Secret Sharing, but doing so in a proprietary way and possibly in a naive fashion. We don’t know, as it is not open source. [1/11]
Obviously, Shamir’s Secret Sharing has a long history and is widely used, but it also has real drawbacks. As we’ve written at @BlockchainComns, one of the biggest dangers comes in reconstruction. [2/11] github.com/BlockchainComm…
Eavesdropping, trojan-horsing, or just faking authentication for the seed holder can all lead to a stolen seed! The process of restoring the shares, reconstruction device is a serious single point of compromise. And then there are concerns with how you distribute shares! [3/11]
Read 12 tweets
May 18
There's been a lot of controversy over @Ledger's new recovery service, which will shard your seed out to third-parties for storage. Why? In large part because we didn't expect seeds to ever leave the Ledger device. [1/11]
As it turns out (as all hardware wallet designers already know), all it requires is a signed firmware update, and seeds can go wherever they want. Why?… [2/11]
Ledger's hardware *is* based on a Secure Enclave (aka "SE"). That's is what generates and stores your private keys. [3/11] ledger.com/academy/securi…
Read 14 tweets
Aug 12, 2022
Today my article on the need to protect private keys from courts was published by @BitcoinMagazine. This may be the most important legal advocacy work @BlockchainComns has ever done! [1/10] bitcoinmagazine.com/legal/saving-b…
The problem is that prosecutors & lawyers are asking courts to demand private keys as part of pre-trial discovery. This is wrong on so many levels! [2/10]
The most frustrating thing is that a private key is that they are the wrong tool for discovery. If there was a legitimate need for discovery, a public key could do the job. Private keys are about the authority to control, not information. [3/10]
Read 10 tweets
Sep 8, 2021
SSKR stands for Sharded Secret Key Reconstruction. It's a way for users to easily shard a cryptographic secret, giving you some options for seed reconstructions & and improved resilience against theft or loss. [1/15] Image
Why? Because loss of a seed or private key is the easiest way to lose your Bitcoin or other cryptocurrency. SSKR safely backs up your seed by breaking it into shares which are only useful if combined back together. For details see our overview doc: [2/15] github.com/BlockchainComm…
Our Gordian Seed Tool app for iOS and macOS offers a reference demonstration of this sharding functionality, but we expect wallet manufacturers to soon be incorporating SSKRs as well. [3/15] apps.apple.com/us/app/gordian…
Read 15 tweets
Aug 24, 2021
Puzzling through if NFTs can be used to help fund trustless self-sovereign identity efforts, and open infrastructure tools & services. First experiment: opensea.io/assets/0x495f9…
I'll try an auction tonight when the gas fees are lower, with the auction scheduled to end next week.
If you are an artist that wants to support my efforts toward trustless forms of Self-Sovereign Identity (aka #SSI), we welcome a donation of original artwork to try out this experimental funding method for open development.
Read 4 tweets

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(