RT @BobMcElrath: All interesting Bitcoin protocols involve pre-signed transactions (e.g. adversarial close in lightning, SE backout transac…
Replying to @NachoAlamillo, @santicasas, @sam280 and @SSI_Ambassador
I have mixed feelings about the LESS Identity architectures exemplified by the EU digital identity wallets. They are at least better, but they are missing a lot. I in particular worry that they still can be misused by authoritarian movements (such as in Hungary).
Abandon Planet is one of the few team cooperative board game designs — I’m fascinated by dynamic teams, hidden teams, and other underutilized collaborative game design mechanisms. https://twitter.com/MeeplesTogether/status/1556715574914215939
RT @ChristopherA: Abandon Planet is one of the few team cooperative board game designs — I’m fascinated by dynamic teams, hidden teams, and…
Replying to @Sheldrake, @philiprosedale, @gfodor and @vinayvasanji
I’m also working with @WolfMcNally on hash-tree based non-correlatable & redactable structures that allow the holder (the subject or presenter) to do not disclose some values and yet still be verifiable. This will make it easier to have private webs of trust.
Replying to @Sheldrake, @philiprosedale, @gfodor, @vinayvasanji and @WolfMcNally
There are some hints about this in our recent Collaborative Seed Recovery work (see playlist at Collaborative Seed Recovery
https://www.youtube.com/playlist?list=PLCkrqxOY1Fbp-P1Yv-7gmu75i2QS2Z6vk ) but there will be more including a proof of architecture app in next few weeks.
RT @lgarron: Hi folks! I work for @github and I love that our current privacy policy says we will not track you — essential cookies only.…
The most frustrating thing is that a private key is that they are the wrong tool for discovery. If there was a legitimate need for discovery, a public key could do the job. Private keys are about the authority to control, not information. [3/10]
The problem is that prosecutors & lawyers are asking courts to demand private keys as part of pre-trial discovery. This is wrong on so many levels! [2/10]
Today my article on the need to protect private keys from courts was published by @BitcoinMagazine. This may be the most important legal advocacy work @BlockchainComns has ever done! [1/10] https://bitcoinmagazine.com/legal/saving-bitcoin-private-keys-from-courts
That’s why we need laws to protect private keys. Wyoming is putting forth legislation of this sort this year. [7/10] https://wyoleg.gov/Legislation/2021/SF0105
As a cryptographic security expert, I don’t know of good ways to temporarily transfer private keys like this, nor do my colleagues know either. Untrained court staff or lawyers put the keys into even more danger! [6/10]
By demanding private keys instead of information, courts are opening up crucial digital assets, which might include not just cryptocurrencies but also digital identities, to compromise, loss or forgery. [5/10]
(Sidebar: authority to control is a basis for another legal principle I helped steward into law: Principle Authority. See https://www.blockchaincommons.com/articles/Principal-Authority/)) [4/10]
I work with Wyoming and other legislatures as part of Blockchain Commons’ commitment to law and advocacy for digital rights. If this is important to you, please consider becoming a sponsor of our work! [10/10] https://github.com/sponsors/BlockchainCommons
This is a foundational question of digital rights. I encourage you to talk with your local representatives for your state or country, point them to Wyoming’s foundational work, and to ask them to protect your private keys as well! [9/10]
There’s more in my article published in @BitcoinMagazine today. [8/10] https://bitcoinmagazine.com/legal/saving-bitcoin-private-keys-from-courts
RT @CaitlinLong_: MUST READ!! Thanks @ChristopherA and h/t to @rothfuss. Calling all experts on private keys to testify or contact legislat…
It is unfortunate true that between this example & huge legal fees encountered by SLAPP (Strategic Lawsuits Against Public Participation) victims that developers need to learn to leverage and practice pseudonymity. Our guide: https://github.com/BlockchainCommons/Pseudonymity-Guide https://twitter.com/fodagut/status/1558056854160150528
Replying to @MarkFriedenbach
Offer a PR stating this is a risk :-)
Replying to @MoMR2022, @BitcoinMagazine and @BlockchainComns
Single seed, see free #SmartCustody book. For next gen multisig, some early work has started at https://github.com/blockchaincommons/smartcustody/
RT @RosenfeldM: 1/ @USTreasury’s sanctioning of @TornadoCash raises good discussions as to whether a software tool like a mixer is appropri…
RT @RosenfeldM: 13/ so learn from the past. The government is rightly concerned with spies, terrorists, etc. but tends to overreach in re…
Replying to @RosenfeldM
You might be interested in this related article about government overreach, such as key escrow & backdooors — compelling private keys: https://twitter.com/ChristopherA/status/1558146722542469121
RT @myn4mewast4ken: Good thread on legal implications with private keys vs public address.
Privacy is important to EVERYONE.
Example: b…
RT @trbouma: @Wikisteff I prefer this understanding of property in the recent consultation paper by the English Law Commission on Digital A…
RT @utxoclub: work in progress blind schnorr signature demo
Styling, labels and explanations need some work but it’s functional!
https://t.…
Replying to @trbouma and @Wikisteff
I get flack for choosing the term self-sovereign for our field. I really felt that whatever I choose needed to give it strength, so it could not be watered down easily. For me it is about being a peer in power, with freedom to negotiate with others and thus need need to petition.
Replying to @trbouma and @Wikisteff
So what resonates with me is the phrase “socially approved power relationship”. But I don’t feel that is the common reality today for anyone who is not wealthy — our new “peerage”. This is not acceptable to me.
RT @el33th4xor: Excellent thread on why courts should not be allowed to collect private keys during discovery, coupled with excellent wor…
RT @aaronareed: Without the Internet Archive, #50YearsOfTextGames could never have happened. The amount of vintage magazines, emulated soft…
RT @anguschampion: @danheld Also I thought this was interesting https://twitter.com/christophera/status/1190135639548686337?s=21&t=Y3MbmtkksxEPeyr-NKxUFg
Replying to @RyanSAdams and @gitcoin
We are doing a lot of different related advocacy projects. Latest https://twitter.com/ChristopherA/status/1558146722542469121 and…
Replying to @RyanSAdams and @gitcoin
…a pseudonymous developer privacy guide: https://twitter.com/ChristopherA/status/1558223083906904064
Replying to @RyanSAdams and @gitcoin
I choose the term self-sovereign for our movement and wrote the 10 principles, and have been working on new laws around the world. Lots progress in Wyoming: https://www.blockchaincommons.com/articles/Principal-Authority/
Replying to @penumbrazone
Is there one for secp256k1?
@fborgesius you might be interested in the next #RebootingTheWebOfTrust on decentralized identity and human rights privacy being held in The Hague September 26th-30th. https://rwot11.eventbrite.com
RT @lilianedwards: In non GDPR features ..”Rights of deceased persons are not uncommon (Saudi Arabia, Rwanda, China)” @EdinaRl
Now 157 Co…
Replying to @TaraNethercott
I was sad to hear that the election didn’t go your way. I believe you’d have been a great SoS.
RT @paulmillr: It’s impossible to run ETH node over TOR.
Even worse: no plans for it.
This drastically reduces anonymity & censorship res…
RT @paulmillr: @DawsonBotsford ETH often (not always) uses UDP, TOR doesn’t support UDP. However, main reason is lack of interest from prot…
Replying to @SCBuergel, @Gilrim, @paulmillr and @hoprnet
Don’t use exit nodes. #TorGap
RT @lorenzofb: NEW: Last week, hackers targeted 1,900 Signal users, specifically going after three of them.
I was one of those three, and…
RT @korpi87: Do you know a simple signature in Metamask can drain your wallet?
A very experienced user (top 10 by Degen Score) lost almost…
RT @EFF: “This is precisely the nightmare that we are all concerned about,” EFF’s @JonCallas tells @NYTimes’ @KashHill. “They’re going to s…
This article is a nuanced perspective by @EFF on the OFAC #TornadoCash ban, and it’s chilling effects on “code as speech” & 1st amendment. @EFF is also representing cryptographic researcher @matthew_d_green whose forked repo is also at risk by @github. http://www.eff.org/deeplinks/2022/08/code-speech-and-tornado-cash-mixer
RT @matthew_d_green: I made a Github organization to republish a fork of the Tornado Cash repositories that were banned following the Treas…
These #SiliconSalon virtual events are a series of facilitated discussion meant to forge the future of secure hardware design by aligning the interests of crypto-wallet developers and semiconductor designers & manufacturers. [2/11]
You can now sign up for Silicon Salon 2, a virtual event from @BlockchainComns. It’s scheduled for Wednesday, September 14th from 9am to noon PDT. [1/11] #SiliconSalon https://siliconsalon2.eventbrite.com/
This second #SiliconSalon will address these questions through presentations and then a facilitated discussion among the participants, including silicon designers, wallet hardware architects, cryptographic engineers and cryptographers. [5/11]
In this next #SiliconSalon, we’re focusing on the challenges of secure boot, firmware, updates, and supply chain. How can we make sure our semiconductor designs maintain security through various threats? [4/11] https://twitter.com/ChristopherA/status/1275143980389265408?s=20&t=8anbHuhFeq4hqtejM3JRwQ
You can find the results of our first #SiliconSalon at https://www.siliconsalon.info/salon1/, including videos of presentations, transcripts, and key quotes from our Q&A and discussion. [3/11] https://www.siliconsalon.info/salon1/
.@ksedgwic & devrandom will talk about Validating Lightning Signer (VLS), a project that builds software to enable the private-key material and sensitive signing operations for a Lightning node to be stored and executed in a separate secure environment. [8/11]
.@FOUNDATIONdvcs will discuss how their Passport leverages various chip security features to secure your Bitcoin. [7/11] https://foundationdevices.com/passport/
.@bunniestudios will talk about Precursor, their open source platform for developing secure mobile apps. [6/11] https://hackaday.com/2022/08/06/heres-how-the-precursor-protects-your-privacy/
Space is limited — sign up now to join us at Silicon Salon 2! If you’d like to become a Patron for more of these events, contact me. If you are GitHub monthly sponsor of @BlockchainCommons check your email free event code. [11/11] https://www.eventbrite.com/e/silicon-salon-2-tickets-403779845387
Cramium (a silicon designer) will be discuss Bootloading. What should the Controller Manufacturer bootloader do? Should it only open the communication ports or should it open the comm channels, perform self-test, and perform all crypto functions, or something in-between? [10/11]
.@Proxy will talk about how they leverage secure javacard chips, including steps they are taking to assure the security and integrity of their designs. [9/11]
Replying to @judell
I had good luck having non-tech people (we strive for 25% non-engineers at our collaborative @RWOTEvents workshops) use @HackMD for collaborative simultaneous .md editing. If they log into it using their GitHub credentials, they also can sync it with a repo. I’d be glad to demo.
Two weeks until our next virtual #SiliconSalon, this time on the sub-topic of cryptographic security for boot, the firmware & upgrade to it, and supply chain security of both hardware & software. If you are a cryptographic wallet designer, you should be there! https://twitter.com/ChristopherA/status/1563257982611103744