Replying to @hackylawyER, @Sheldrake, @JoeAndrieu and @kimdhamilton

So true!

Fri Mar 01 18:03:43 +0000 2019

RT @caelumlabs: 90 people from around the globe ready for a 3-days design workshop focused on challenges and models to make self-sovereign…

Fri Mar 01 19:15:31 +0000 2019

RT @CleanApp: The #RWOT8 workshop in Barcelona is off to a great start. An incredible team effort. @ChristopherA & crew … a big thumbs up…

Fri Mar 01 19:16:50 +0000 2019

RT @Sheldrake: Closing session of day 1 of #RWOT8.

Fri Mar 01 19:18:34 +0000 2019

RT @codenamedmitri: Tempted to post without context (workshop session at #RWoT8, poster by @hackylawyER)

Fri Mar 01 19:18:47 +0000 2019

RT @caelumlabs: We are closing the first day of #RWOT8 with all the groups made, people already working on their papers and sharing their a…

Fri Mar 01 20:57:46 +0000 2019

RT @IDIMAndrew: Choosing what topics to contribute to over the next days #RWOT8

Fri Mar 01 21:00:42 +0000 2019

RT @Blockstream: We’re excited to announce c-lightning 0.7! This release includes Routeboost, performance improvements, & plugin support fo…

Sat Mar 02 08:18:43 +0000 2019

RT @DelRayMan: Why HTC’s cryptocurrency cell phone might be more than just a gimmick. A great read by @nisummers

Sat Mar 02 08:22:17 +0000 2019

RT @BillTulloh: Exhausting, but exciting, first day at Rebooting the Web of Trust in Barcelona. #RWOT8

Sat Mar 02 08:23:19 +0000 2019

RT @Excellion: Always amazed at the speed of progress on #clightning from @rusty_twit, @Snyke, and team! There’s so much stuff in 0.7: plug…

Sat Mar 02 08:24:08 +0000 2019

RT @TheStalwart: My feeling on monetary policy is that people talk about it like adjusting a dial on a new stove, and nicely being able to…

Sat Mar 02 08:25:38 +0000 2019

RT @Sheldrake: This is an inevitable consequence of the dystopia that everyone at #RWOT8 this weekend is working hard to avoid.


Sat Mar 02 09:42:47 +0000 2019

RT @CleanApp: Excellent morning #RWOT8 discussion on the need for greater inclusivity and diversity as a prerequsite/corequisite for effect…

Sat Mar 02 09:47:19 +0000 2019

RT @stonecover: Discovering and documenting concepts at #RWOT8 as they emerge …

Sat Mar 02 10:02:17 +0000 2019

RT @rhiaro: I am two people. One who is so psyched for paperless seamless blockchain banking. The other is hiding in a cave surrounded by a…

Sat Mar 02 10:52:25 +0000 2019

RT @drummondreed: At #RWOT8, @WolfMcnally live demos the slickest split key offline backup of a #digital #wallet. I have ever seen. Great…

Sat Mar 02 13:36:07 +0000 2019

RT @drummondreed: At #RWOT8, Rieks Joosten of TNO gave a talk on its new #SSI and cited some very powerful evidence: their research showed…

Sat Mar 02 13:36:47 +0000 2019

RT @drummondreed: #RWOT8 is the first #RebootingWebOfTrust with a live production demo of #socialkeyrecovery from the HTC Exodus team. Soci…

Sat Mar 02 13:39:19 +0000 2019

Replying to @drummondreed, @WomeninID, @hackylawyER and @katrynadow


Sat Mar 02 14:27:39 +0000 2019

Replying to @WomeninID and @blondtron


Sat Mar 02 14:29:18 +0000 2019

RT @CleanApp: The #RWOT8’s focus on writing, coding, and deliverables is just excellent!!! Two of the most productive days this year, for…

Sat Mar 02 19:36:07 +0000 2019

RT @IDIMAndrew: The #RWOT8 teams are heads-down writing. Then there are those playing with the smart whiteboards.

Sat Mar 02 23:56:48 +0000 2019

RT @caelumlabs: #RWoT8 is coming to an end!

3 days full of ideas, models, architectures and technology to make possible new models of ide…

Sun Mar 03 16:37:58 +0000 2019

RT @Sheldrake: @FrankPasquale They come across like they don’t understand the very world they seek to affect.

In better news, the ethical,…

Sun Mar 03 16:39:18 +0000 2019

RT @hackylawyER: Alas @IdentityWoman makes an appearance at #RWOT8

Sun Mar 03 16:39:29 +0000 2019

RT @IDIMAndrew: Talking about #rwot8 community evolution

Sun Mar 03 16:39:45 +0000 2019

RT @drummondreed: At closing of #RWOT8, @ChristopherA shares his hope and dream that in the next few years, we can say we can we have actua…

Mon Mar 04 00:15:28 +0000 2019

RT @drummondreed: @wmclaxton Hey, thanks, but I’m just one of many working on DIDs now, and that’s before it even becomes a full #W3C Worki…

Mon Mar 04 01:17:11 +0000 2019

RT @drummondreed: At the closing session of #RWOT8 in #Barcelona we heard report outs on no less than 25 papers on all aspects of #SS…

Mon Mar 04 01:17:37 +0000 2019

RT @ajunge_m: Final report on #RWoT8. We made 2 papers about openid-connect and decentralized identifiers. In the future you will able to l…

Mon Mar 04 01:18:21 +0000 2019

“What we need is not to disagree less, but to disagree better. And that starts when you turn away the rhetorical dope peddlers — the powerful people on your own side who are profiting from the culture of contempt. …”

Mon Mar 04 07:13:39 +0000 2019

“…As satisfying as it can feel to hear that your foes are irredeemable, stupid and deviant, remember:…Unless a leader is actually teaching you something you didn’t know or expanding your worldview and moral outlook, you are being used.” 👍

Mon Mar 04 07:15:16 +0000 2019

RT @CarstenStoecker: Thank you all for #RWOT8 in #Barcelona

Privacy is necessary for an open society in the electronic age. Privacy in an…

Mon Mar 04 07:15:43 +0000 2019

RT @windley: Nice, simple explanation of an important concept. “Self-Sovereign Identity: Shifting the Locus of Control” - @trbouma https:…

Mon Mar 04 07:44:41 +0000 2019

Replying to @arnav_vohra and @CoinsafeApp

At #RebootingWebOfTrust we had some preliminary review of best practices for basic Shamir, ranging from justification for the choice of finite field to various UX approaches. Now I process of documenting those plus working on auditable reference implementation in C.

Mon Mar 04 18:58:19 +0000 2019

RT @CaitlinLong_: WHAT DO WYOMING’S BLOCKCHAIN LAWS REALLY MEAN? Here’s my analysis of how all the puzzle pieces fit together. Everyone in…

Tue Mar 05 05:50:30 +0000 2019

RT @hackylawyER: Survived my first #RWOT8. A demanding but ultimately rewarding experience. Special thanks to @kimdhamilton @ChristopherA @…

Tue Mar 05 05:50:49 +0000 2019

RT @nlw: If you’re interested in identity models - particular in light of the emergence of things like social credit systems around the wor…

Tue Mar 05 05:53:16 +0000 2019

RT @katrynadow: @hackylawyER @kimdhamilton @ChristopherA @JoeAndrieu @manusporny Such a pleasure to meet & super looking forward to collabo…

Tue Mar 05 05:53:37 +0000 2019

The Kindle version of my book with @Appelcline “Meeples Together: How & Why Cooperative Games Work” @MeeplesTogether is now available since all of our @kickstarter supporters have received their digital copies. This is the best place for your reviews!

Tue Mar 05 06:47:13 +0000 2019

Be the first to write a review of our book on Amazon!

Tue Mar 05 06:50:31 +0000 2019

Replying to @JoeAndrieu, @ferranrego, @manusporny, @IDIMAndrew, @blondtron, @alexpuig, @AXCavero and @ferranrego

You set a high bar for future local hosts of #RebootingWebOfTrust — thank you so much for your hospitality & “can do” attitude!

Tue Mar 05 08:02:28 +0000 2019

Replying to @arnav_vohra and @CoinsafeApp

Email is best, unless it is a response to a topic paper or draft in #rwot8 GitHub repo. Then just create an issue in repo and mention @ChristopherA & url of file you are responding to. You could even be added as a listed contributor to our final collaborative doc!

Tue Mar 05 08:07:39 +0000 2019

The only place I know of that you can get a bundle of all 3 different digital versions of our book (PDF, ePub & Mobi) as well as the print version when it comes out is through @IPRTweets:

Wed Mar 06 03:10:05 +0000 2019

In our book @MeeplesTogether we mostly document the rise in the last two decades of a new form of game design: the cooperative game. However, in our research we went back to earlier forms of cooperation — team sports. It didn’t make it into the book, so we offer it in our blog.

Wed Mar 06 23:35:08 +0000 2019

RT @BitcoinDevNet: Check out the world’s first virtual #LightningNetwork conference and hackathon with @rusty_twit @pierre_rochard @Lightni…

Wed Mar 06 23:39:20 +0000 2019

“Adi Shamir, the S in the renowned RSA encryption system, didn’t take his usual place on the Cryptographers’ Panel at this year’s RSA Conference in San Francisco – because he couldn’t get a visa from the US government. And he’s not alone.”

Wed Mar 06 23:51:42 +0000 2019

“I ended up spending a lot of time on the topic of growing an open standard and community while building a commercial product. Navigating these seemingly conflicting goals are a common pattern in the SSI space.”—@kimdhamilton

Fri Mar 08 02:39:41 +0000 2019

“If we were being laughed at while young, it doesn’t mean you have to return the favor later on. The vicious cycle can easily be broken.”

Fri Mar 08 18:28:18 +0000 2019

“…team members felt less happy, I felt more burned out, and less was getting done. That was all until a more experienced lead pulled me aside and said ‘hey, stop trying to lead by example.’ It took me a while to figure out what that means.”—@jamesacowling

Fri Mar 08 20:03:51 +0000 2019

Replying to @intjr

A possible answer is timezones. Some research shows the most likely time to have a good conversation take off is to instigate it morning. But whose morning? You can post a tweet at midnight PT and have Britain & the EU start the conversation at 8 GMT, then RT yourself at 8am ET.

Fri Mar 08 21:20:23 +0000 2019

“The swift movement to foster expanded use of Aadhaar is in stark contrast to the lack of progress on advancing a data protection bill that would safeguard the rights of Indians whose data is implicated in this system.”

Fri Mar 08 21:38:19 +0000 2019

RT @Cointelegraph: Examining MuSig, Blockstream’s experimental Bitcoin multisignature standard

Fri Mar 08 22:30:19 +0000 2019

Replying to @bitemyapp

I’ll concede Chris & take Christopher. But then there the other 2,931 Christopher Allen’s (in the US alone) to tourney against :-)

Sat Mar 09 20:45:28 +0000 2019

Replying to @amigus

I’ve been saying this from the beginning. #RebootingWebOfTrust has done a lot of harm mitigation by trying to keep people from putting PII and biometrics on blockchain. But it is an ongoing battle. If you think we are not doing a good job, come to one and help.

Sat Mar 09 20:49:37 +0000 2019

Replying to @kimdhamilton, @criptodiana and @blondtron

LC4 is a strong authenticated encryption scheme that can be done entirely offline with 36 cards: Blockchain Commons is working on an iPhone app to teach it.

Sat Mar 09 20:58:10 +0000 2019

Replying to @amigus, @ID2020, @Hyperledger and @SovrinID

At #ID2020 I was quoted on speaking of “two-edged sword” of blockchain & not to put PII or biometrics on blockchain. I’m not a designer of Indy/Sovrin—I have advised them of my concerns. My own design uses BTC only for censorship-resistance & timestamping.

Sat Mar 09 21:23:30 +0000 2019

Replying to @amigus, @ID2020, @Hyperledger and @SovrinID

I’m sorry if something we have done has kept you from participating. Send me private mail of situation, as I’m not aware of it. But I want to reinforce that are others involved in both leadership & community that have similar skepticism.

Sat Mar 09 21:28:37 +0000 2019

An interesting new open source license led by @kemitchell intended to replace the old MIT & BSD licenses. Adds patent coverage, fixes readability, and addresses some long term problems of contract vs. license, attribution & multiple contributors over time:

Sun Mar 10 15:48:19 +0000 2019

RT @Billbrowder: For anyone who thought Soviet Russia is a relic of the past, please read this story about how the Putin regime is now chas…

Sun Mar 10 15:58:31 +0000 2019

“Policies are organizational scar tissue. They are codified overreactions to situations that are unlikely to happen again. They are collective punishment for the misdeeds of an individual…Don’t create a policy because one person did something wrong once.”

Sun Mar 10 16:13:07 +0000 2019

Replying to @kimdhamilton and @kemitchell

I guess an open question is when an issuer of a license (or code) does not support them, is that in a sense depreciation? I don’t believe that either MIT or BSD stand behind others using their license. I think the issuer can revocate, but the community also can deprecate.

Sun Mar 10 17:31:49 +0000 2019

Replying to @dmpsim, @kemitchell and @kimdhamilton

I like the language of a “call for depreciation” of BSD/MIT better, as I personally feel that it is more a community choice. I know that many people in the bitcoin & blockchain communities may like it as they like permissive licenses but they are also concerned about patents.

Sun Mar 10 19:21:43 +0000 2019

RT @ChristopherA: @dmpsim @kemitchell @kimdhamilton I like the language of a “call for depreciation” of BSD/MIT better, as I personally fee…

Sun Mar 10 19:21:49 +0000 2019

This document from ‘84 is much more complete than the Xanadu documents that I’ve saved in my patent-buster files. It really shows how sophisticated this pre-Internet “all the world’s information” project was. There are still some features from this tech not available today.

Sun Mar 10 20:12:08 +0000 2019

Replying to @epopt

I’ve been trying to find some docs circa ‘88 on the Xanadu club system, that also describes berts & stamps.

Sun Mar 10 20:21:53 +0000 2019

Replying to @epopt

Another thing I vaguely remember from that time was some kind of reverse diff—rather than as git which starts with an initial commit and then a list of changes to current, it was the current commit with a list of changes to the old. This allowed easy pruning. Was that in Xanadu?

Sun Mar 10 20:33:32 +0000 2019

Replying to @epopt

Best I’ve been able to find on Club System is []( though it seems rather ACL’ish today, and how it works with berts and stamps I remember as being powerful. At some point near end of Xanadu I had figured out how to do it all using RSA cryptography. Lost!

Sun Mar 10 20:53:14 +0000 2019

Replying to @zooko and @socrates1024

Sun Mar 10 22:02:12 +0000 2019

RT @philchen913: During the last #RWoT8 a lot of great minds and ideas came together. You can read the summary of their output about #Selfs…

Mon Mar 11 07:11:02 +0000 2019

Replying to @avocoidentity, @philchen913, @kimdhamilton, @IdentityWoman, @heathervescent, @trbouma and @sherminvo

Yes, there are real challenges in that we may have some unforeseen consequences of our work, or worse enable what we are trying to prevent. This requires us to keep our mission in focus, think more broadly, with humility, and to be willing to change directions if needed.

Mon Mar 11 14:43:44 +0000 2019

RT @veikkoeeva: @bodil Licensing data is even murkier. There’s, more at etc. It’s not clear…

Mon Mar 11 14:45:45 +0000 2019

“It means the government, without consulting the public, a requirement by Congress, or consent from any individual, is using facial recognition to create a digital ID of millions of Americans.”

Mon Mar 11 15:05:09 +0000 2019

Replying to @avocoidentity, @philchen913, @kimdhamilton, @IdentityWoman, @heathervescent, @trbouma and @sherminvo

You might also be interested in the Digital Citizen draft, which explores applying some first principles to a culture of cooperation in a digital world.

Mon Mar 11 15:44:39 +0000 2019

Replying to @avocoidentity, @philchen913, @kimdhamilton, @IdentityWoman, @heathervescent, @trbouma and @sherminvo

I’m certainly involved in those fields as are others in #RebootingWebOfTrust. Most have come to it from the more recent blockchain side, whereas my efforts began long before that. See my old blog posts at

Mon Mar 11 16:07:51 +0000 2019

Replying to @avocoidentity, @philchen913, @kimdhamilton, @IdentityWoman, @heathervescent, @trbouma and @sherminvo

More recently I co-authored a book on cooperative board game design @MeeplesTogether, an offshoot from my more general interests in the patterns of cooperation. Still hope to do that as a book (or books) as well.

Mon Mar 11 16:10:25 +0000 2019

Replying to @avocoidentity, @philchen913, @kimdhamilton, @IdentityWoman, @heathervescent, @trbouma and @sherminvo

A year later I tried raising money to do micropayments

Mon Mar 11 16:33:15 +0000 2019

RT @Sheldrake: Personal information as property is not difficult to grasp other than when recognising the abhorrence of such an outcome.


Mon Mar 11 16:40:09 +0000 2019

👍 Back to @adam3us’s HashCash anti-spam goals: “There is a transaction class we can identify as ‘Good Behaviour Bonds’…Alice commits funds to a penalty in advance of a connection to Bob.” &

Mon Mar 11 17:06:27 +0000 2019

The UN Universal Declaration of Human Rights in principles 18-20 strongly assert freedom of speech, thought, assembly & association. It is important that we find ways to stop these petty tyrants from trying to abridge these rights.

Mon Mar 11 17:16:41 +0000 2019

Replying to @CryptoPietje, @nopara73 and @TheOnion

Mon Mar 11 17:18:10 +0000 2019

RT @ericuman: 1/ A couple of months ago, I discovered my health insurer was monitoring my sleep and using it to deny me benefits.

So I to…

Mon Mar 11 20:42:37 +0000 2019

Replying to @kemitchell

In your list I’d like to see some limited duration licenses that declare to open source or open patent after a fixed set of time, and licenses that if contributors paid then it goes to open source. There is also a z-dimension (maybe use color) for the patent side of the equation.

Tue Mar 12 00:00:09 +0000 2019

Replying to @kemitchell

The CC Founder’s copyright is now defunct, but an archive is here:

Tue Mar 12 00:04:08 +0000 2019

RT @breakingbitcoin: 1/ We are proud to announce the first series of speakers accepted for the Breaking Bitcoin conference, 8th and 9th of…

Tue Mar 12 15:36:05 +0000 2019

RT @kimdhamilton: I found an excellent jekyll theme for a content/post-centric github pages site. It appeals to a minimalist developer aest…

Tue Mar 12 15:38:09 +0000 2019

Replying to @kimdhamilton

Are you testing against GitHub’s remote_theme support? I’ve been trying to identify themes that work without local Jekyll, starting with primer theme: see also my test framework

Tue Mar 12 17:15:19 +0000 2019

RT @hackylawyER: No, no, no. Data’s already been “propertized” and that went horribly wrong. We need a different framework this time. https…

Wed Mar 13 15:27:12 +0000 2019

RT @0x446f49: New article is up :-D Stealing encryption keys for bitlocker, for both TPM1.2 and TPM2.0 devices. Source code included ^_^ ht…

Wed Mar 13 15:45:33 +0000 2019

RT @katrynadow: Agree with sentiment & recommended action but #property rights may not be best legal extension & may inhibit other legal ri…

Wed Mar 13 15:57:59 +0000 2019

RT @ImageSnippets: interesting article discussing numerous aspects of adding blockchain to media and metadata registries – @ChristopherA…

Wed Mar 13 19:20:02 +0000 2019

The text version of Dwarf Fortess is one of those seminal games that really has to be played. It crosses genres, being rogue-like but w/ dwarf personality simulator & a procedurally generated world. Inspired Minecraft & many others. Seeking patrons:

Wed Mar 13 19:56:16 +0000 2019

A bit conservative to my mind, but a good overview of topic: “The most ambitious, and fraught, use of blockchain in photography is the pairing of a digital ledger with a smart contract to create a photo licensing agency without, well, agents—at least in the traditional sense.”

Wed Mar 13 23:09:32 +0000 2019

RT @MeeplesTogether: If you missed the Kickstarter, eBook editions of Meeples Together is now available. (Street date for print books is Ma…

Thu Mar 14 03:26:27 +0000 2019

RT @iang_fc: Decentralisation, 2001 edition.

Todd Boyle, Clay Shirky, Cory Doctorow and others discussing how the P2P revolution proceeded…

Thu Mar 14 04:13:08 +0000 2019

Replying to @MarkFriedenbach and @ccneill

No. Claims that are non-deterministically verifiable are very important. That current climate change is of human origin is one. That 90%+ of legitimate experts claim it is real (up from 1 person 50 years ago) is not atypical of scientific inquiry. Not all can be proven.

Thu Mar 14 17:45:39 +0000 2019

RT @gabrielazanfir: Here’s a truth bomb, as plain language as I could make it:
10 reasons why the GDPR is the opposite of a ‘notice and co…

Fri Mar 15 06:34:44 +0000 2019

RT @gladstein: Delighted to share that @coincenter has published my essay on the human rights case for Bitcoin.

The critics don’t conside…

Fri Mar 15 06:40:24 +0000 2019

Replying to @avocoidentity, @CSOonline, @trbouma, @WomeninID, @IdentityWoman, @IBM and @msiddev

I could only see one question without joining website. What are the three questions?

Fri Mar 15 16:09:42 +0000 2019

A common problem with standards: “For these standard-essential patents (SEPs), Qualcomm voluntarily committed to licensing these patents under fair, reasonable, and non-discriminatory (FRAND) terms…Qualcomm chose simply to ignore those legal commitments”

Fri Mar 15 16:26:47 +0000 2019

👍“We must protect these standards which form the foundation for competition in the connected economy, and that means holding Qualcomm to their FRAND commitments across the board in a way that leaves no room for the gamesmanship it is famous for in this context.”

Fri Mar 15 16:29:37 +0000 2019

RT @lawmaster: UPDATE: This is pretty incredible. You can change your billing address to California (since it’s illegal there) and then a n…

Fri Mar 15 16:36:14 +0000 2019

Replying to @VitalikButerin

I saw an old version of this once, with slightly better indication of magnitude of delta-v required. I instantly turned it into a prototype game board. Unfortunately never quite found the right fun game mechanic to use it with.

Sat Mar 16 02:42:06 +0000 2019

RT @manusporny: Finally! An approachable podcast for the rest of us about Object Capabilities, an exciting type of security architecture th…

Sat Mar 16 03:11:04 +0000 2019

RT @achow101: The Hardware Wallet Interface ( version 1.0 has been released. Standalone binaries for Windows, Linux…

Sat Mar 16 03:13:26 +0000 2019

RT @achow101: For those who don’t know, HWI is a command line tool and library which provides a generic interface for working with multiple…

Sat Mar 16 03:13:30 +0000 2019

I’m quite uncomfortable with cashless society ideas. It may be convenient for some but I think it has huge privacy & human rights risks and puts the poor in harm’s way. This report on cashless in UK says 17% of population would be harmed:

Sat Mar 16 17:21:53 +0000 2019

Replying to @tim_bansemer

Maybe it “can” be, but can you share a single example of a government pushing toward cashless that supports privacy? They don’t want it and justify their decisions on that it makes investigating crime easier.

Sat Mar 16 17:49:31 +0000 2019

Replying to @tim_bansemer

Sat Mar 16 17:54:12 +0000 2019

Replying to @tim_bansemer

My most recent experience with this was I was in ground floor of Twitter building, where there is a “Marketplace” with quality food. They do not accept cash. But I’m sure the real reason is that they are in middle of Tenderloin and this discourages the homeless from coming in.

Sat Mar 16 18:32:30 +0000 2019

Replying to @tim_bansemer

Another concern of mine is the first places I first noticed this policy are both areas with homeless problems. Telegraph Ave in Berkeley & Tenderloin in SF. It feels like a “cheat” to avoid the problem, a legal form of silent discrimination, and a way to avoid the larger problem.

Sat Mar 16 18:43:05 +0000 2019

“In the natural world, where we are embodied beings, we are by default anonymous when to go about the world outside the social circles where we are known by name…This is a grace of civilization.”—@dsearls

Sun Mar 17 06:07:54 +0000 2019

RT @JenniferSertl: Four years ago today- we wrote this treasure trove for the future of work
appreciation @annbad…

Tue Mar 19 15:50:58 +0000 2019

“We should not be too optimistic yet that there will ever be a single identity solution on a broader scale, especially when it comes to self-sovereignty. Human identities and their individual contexts are simply too complex to be depicted in one system”—@MartinKuppinger

Tue Mar 19 16:21:26 +0000 2019


Tue Mar 19 16:21:47 +0000 2019

Fairly amazing side-channel attack revealing PIN numbers via finger movements in an ambient local WiFi signal. Solution—random layout of numeric keypad. Time for me to learn #dvorak? /ht @billatnapier @trbouma

Wed Mar 20 01:02:46 +0000 2019

RT @trbouma: #SeedStories #BIP39 brought to you by the passphrase:

“split between text inspire thumb fatigue two social away earth mistak…

Wed Mar 20 01:08:56 +0000 2019

RT @rmhrisk: I sense a disturbance in the force.

Wed Mar 20 01:34:49 +0000 2019

Replying to @rmhrisk


Wed Mar 20 01:35:16 +0000 2019

Replying to @rmhrisk

My biggest laugh of the day.

Wed Mar 20 01:36:10 +0000 2019

RT @danctheduck: When you ‘meritocratically’ reward a small number of key metrics, you inevitably build a fragile monoculture. Despite impr…

Wed Mar 20 01:37:48 +0000 2019

RT @netflix: @LukasThoms We’ve never had a show like Love, Death & Robots before so we’re trying something completely new: presenting four…

Wed Mar 20 03:16:35 +0000 2019

I’m impressed with these ideas. The events I run are much smaller but I love the off-color lanyard means off-camera idea. What other conference/event best practices have you seen, especially easy ones!

Wed Mar 20 04:53:47 +0000 2019

RT @AlexPreukschat: People won’t use self-sovereign identity (SSI) because it’s decentralized …. They’ll use it because it is a better wa…

Wed Mar 20 05:14:48 +0000 2019

RT @lwsnbaker: Ethereum EIP seeks 20% developers’ reward akin to Zcash.

In the age of “fair launches” that forgot to pay developers + Molo…

Wed Mar 20 05:15:58 +0000 2019

RT @MeeplesTogether: Our newest case study looks at one of the newest co-op games, Betrayal Legacy, released in November. How do you cooper…

Wed Mar 20 18:56:03 +0000 2019

Replying to @pwuille

There is also all those that cashed out on a fork and thus revealed their public keys on those but then didn’t rotate them on bitcoin.

Thu Mar 21 00:52:38 +0000 2019

RT @katrynadow: We currently don’t have the right language or laws to describe & ascribe rights with respect to #PersonalData

As we becom…

Thu Mar 21 16:16:48 +0000 2019

👍“If the rights of freedom and liberty of mind and movement in the physical world, outlined in the Universal Declaration of Human Rights, are to be realised in the world in which we are increasingly living, I suggest a right to access and control to our data is essential.”

Thu Mar 21 16:28:06 +0000 2019

RT @trbouma: “What Quadrant Do You Want to Be In?” by Tim Bouma

Thu Mar 21 18:01:15 +0000 2019

I like this musical result in AI-minor (A-minor using AI) from today’s Google Bach inspired Doodle. Definitely feel’s more Bach-like than other things I tried in the default C-Major.

Fri Mar 22 19:29:22 +0000 2019

RT @peterktodd: In my @WhatBitcoinDid interview I mentioned how Bitcoin should have had a 0.1% or 1% monetary inflation tax to pay for secu…

Fri Mar 22 21:06:21 +0000 2019

RT @ChristopherA: Wisdom of Satoshi from Mark Twain? “(Tom) had discovered a great law of human action, without knowing it—namely, that in…

Sun Mar 24 21:12:48 +0000 2019

RT @ACLU_OR: This is why we oppose SB 703, a trojan horse privacy invasion from a tech startup. #OrLeg

Mon Mar 25 16:50:09 +0000 2019

RT @mrinal: 9/ ..why I’m excited about the more robust Web of Trust model enabled by Decentralized Identifiers & Verifiable Credentials in…

Mon Mar 25 16:50:34 +0000 2019

We are reprising our successful #SmartCustody workshop at the end of April in SF. How are you storing your recovery keys? What happens if another California fire or earthquake hits next year? We share industry best practices & how to adapt them for your own risk profile.

Tue Mar 26 01:05:01 +0000 2019

We have also released our first white paper “#SmartCustody: Simple Self-Custody Cold Storage Scenario — Best Practices for Protecting Your Personal Digital Assets Using Cold Storage” full of checklists & procedures which has been extensively peer reviewed:

Tue Mar 26 01:09:33 +0000 2019

RT @ChristopherA: We have also released our first white paper “#SmartCustody: Simple Self-Custody Cold Storage Scenario — Best Practices fo…

Tue Mar 26 01:09:45 +0000 2019

Replying to @eric_lombrozo, @Melt_Dem, @Febrocas and @nic__carter

Not irrational but I love composing using odd rhythms (here is one of mine in 7 as well as odd-ball polyrhythms with a prime (7/8 over 8/8 is one I’m working on now, it repeats after 56 measures).

Tue Mar 26 01:20:30 +0000 2019

RT @SmartCustody: Our first #SmartCustody White Paper is up on GitHub and is open source licensed CC-BY-SA: “Simple Self-Custody Cold Stora…

Tue Mar 26 02:56:44 +0000 2019

Replying to @btc_dakara

I am seeking foreign language translations of these #SmartCustody white papers.

Tue Mar 26 05:52:46 +0000 2019

Replying to @btc_dakara

Maybe @kallewoof

Tue Mar 26 06:17:40 +0000 2019

Replying to @NachoAlamillo and @btc_dakara


Tue Mar 26 07:45:30 +0000 2019

Replying to @kallewoof and @btc_dakara

Once done, maybe you can help proof :-)

Tue Mar 26 15:44:54 +0000 2019

RT @wdavidturner: Wow. This is brilliant content.

A sample letter for heirs. Footnotes with great color. So much detail in directions…

Tue Mar 26 15:46:14 +0000 2019

Replying to @nopara73

We’ve been evaluating multisig wallets & procedures for a future #SmartCustody scenario white paper, but there are no n00b-friendly solutions. Closest is Electrum with 3 Ledgers. This is changing rapidly, though mostly for Bitcoin with PSBT coming for a few wallets.

Tue Mar 26 15:51:45 +0000 2019

RT @ChristopherA: @nopara73 We’ve been evaluating multisig wallets & procedures for a future #SmartCustody scenario white paper, but there…

Tue Mar 26 15:52:19 +0000 2019

Replying to @AlenaSatoshi and @nopara73

We’d be glad to do a review of Keymaster for #SmartCustody purposes, and the Blockchain Commons team is also available to do professional security reviews of wallet software under a contract. Contact me.

Tue Mar 26 17:37:03 +0000 2019

In our upcoming #SmartCustody workshop 4/29 in SF we cover in the morning how the “#SmartCustody: Simple Self-Custody Cold Storage Scenario” & case studies for the 25+ Adversaries. In the afternoon we teach how to create a risk model, and how to use it.

Tue Mar 26 17:42:20 +0000 2019

Replying to @matt_odell, @pedromvpg, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

We experimented with Electrum & Tails OS for a future #SmartCustody scenarios. However the current version of Tails does not support the current version of Electrum and can’t connect to servers.

Tue Mar 26 18:02:23 +0000 2019

Replying to @matt_odell, @pedromvpg, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

Our current best practices for simple self-custody are:

Tue Mar 26 18:03:47 +0000 2019

Replying to [@__jeremy, @matt_odell, @pedromvpg, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns](

That is a different scenario. One of the advantages of Tails in a cold storage scenario is that it by default it isn’t persistent & lives in only memory. You restore your keys from your recovery words (in my case titanium) each time you use it—Tails scrubs memory on shutdown.

Tue Mar 26 18:08:52 +0000 2019

Replying to @matt_odell, @pedromvpg, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

Yes, but presuming the Adversaries that Tails protects you against, you are compromising the purpose of Tails in the first place. A lot of what we teach in the digital asset risk modeling in our #SmartCustody workshop is how to assess these changes. I hope Tails will fix soon.

Tue Mar 26 18:15:42 +0000 2019

Replying to @matt_odell, @pedromvpg, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

There are no perfect answers. I like solutions that use Tails, but it is overkill for many risk models. We tried in this first scenario to focus on more average users, largely first world, that are not currently protecting their keys properly. See poll at

Tue Mar 26 19:31:57 +0000 2019

Replying to @matt_odell, @pedromvpg, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

My definition for cold storage is that keys never reside on a network device. A higher level is air-gapped cold storage, where keys never touch network devices. Between them are many variations. Blockchain Commons is working on standards on the latter with multiple companies.

Tue Mar 26 19:46:15 +0000 2019

Replying to @matt_odell, @theinstagibbs, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

I think this chart is a good start, but there are more levels. Between phones & hardware wallets are TEE phones like @htcexodus & new Samsung. To far left is air-gapped cold storage. Likely more. Then there are other dimensions like @GreenAddress’s time locked 2 of 2 sigs.

Tue Mar 26 19:53:50 +0000 2019

Replying to @matt_odell, @theinstagibbs, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol, @BlockchainComns, @htcexodus and @GreenAddress

I also concur with you that there is no true common definition or standard for what exactly cold storage is. I’m sure we can both agree that the term is regularly misused.

Tue Mar 26 20:03:53 +0000 2019

RT @TuurDemeester: We’re proud to have sponsored this initiative:

Wed Mar 27 00:39:22 +0000 2019

Replying to @Emperor_YZ, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

If you have >5% of your net worth in a self-sovereign bearer instrument, and you are only willing to spend 2 minutes protecting it, you’ll get what you deserve.

Wed Mar 27 02:01:06 +0000 2019

RT @harryhalpin: At the very moment the free and decentralized internet needs support, a repressive censorship machine lobbied for by dying…

Wed Mar 27 03:04:06 +0000 2019

Replying to @vindaRd

Blockchain Commons is still in the organizational stage, puzzling out how to create sustainable support for blockchain infrastructure. And our marketing team sucks (aka me). But our plans do include some way for companies to fund externships to support security cross-training.

Wed Mar 27 05:15:49 +0000 2019

“Will the shift to digital money expand our economic freedom–our ability to transact with whomever we choose with our chosen means? Or will it do the opposite, becoming a catalyst of control?”

Wed Mar 27 05:27:39 +0000 2019

RT @MeeplesTogether: @avocoidentity @ChristopherA @philchen913 @kimdhamilton @IdentityWoman @heathervescent @trbouma @sherminvo The book on…

Wed Mar 27 20:36:51 +0000 2019

Replying to @RobertSpigler, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

We discuss Ledger vs Trezor in footnote [^3] “We were forced to make a decision between two major hardware wallets: the Ledger and the Trezor. Both are good, mature solutions with well-reviewed code and solid ecosystems. We ultimately selected the Ledger because it stores…”

Wed Mar 27 23:13:25 +0000 2019

Replying to @RobertSpigler, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

“…its private keys on a cryptographic chip. Since we advocate keeping a hardware wallet in a less-secure home safe, this was a requirement, as it offsets the adversary of Casual Physical Theft. There are disadvantages to the Ledger as well: …”

Wed Mar 27 23:13:41 +0000 2019

Replying to @RobertSpigler, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

“its cryptographic chip is proprietary, thus unlike the Trezor all of its code isn’t open source. Thus, our understanding of its security is ultimately somewhat limited. If another hardware wallet were to appear with an open cryptographic private-key store and…”

Wed Mar 27 23:14:03 +0000 2019

Replying to @RobertSpigler, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

“open-source code, we would recommend that instead. In the current market, however, we believe that the Ledger device is the best for this scenario. You may substitute a Trezor for this scenario as the tradeoffs are somewhat subjective.”

Wed Mar 27 23:14:21 +0000 2019

RT @ChristopherA: @RobertSpigler @TuurDemeester @Trezor @Ledger @GlacierProtocol @BlockchainComns We discuss Ledger vs Trezor in footnote […

Wed Mar 27 23:14:51 +0000 2019

RT @rdonoghue: Distinguishing a Project Manager from a Scrum Master via a game of Pandemic.

The PM knows how to win the game and will tell…

Wed Mar 27 23:26:20 +0000 2019

RT @rdonoghue: The catch is that the PM’s table is more likely to win their first match, but the SM’s table is more likely to want to play…

Wed Mar 27 23:26:38 +0000 2019

RT @TuurDemeester: Looking for more sophisticated Bitcoin Cold Storage than a simple @Trezor / @Ledger, but less involved than @GlacierProt…

Wed Mar 27 23:50:21 +0000 2019

Replying to @joeloregalatto, @RobertSpigler, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol, @BlockchainComns and @COLDCARDwallet

We seriously considered standardizing on @COLDCARDwallet, but we found some usability & immaturity issues with initial version of product (no security problems we know of). Maybe version 2.

Thu Mar 28 00:46:31 +0000 2019

Replying to @joeloregalatto, @RobertSpigler, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol, @BlockchainComns and @COLDCARDwallet

I anticipate there will be new wallet hardware & software in next year such that we will need to add alternative scenarios that support them. I’m particularly interested in true airgap & multsig support. But even on release it will take time to feel they are pragmatic & mature.

Thu Mar 28 00:54:41 +0000 2019

Replying to @nvk, @joeloregalatto, @RobertSpigler, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol, @BlockchainComns, @COLDCARDwallet and @nvk

We did demonstrate the ColdCard at our last #SmartCustody workshop in a section on wallet futures. We will likely again at next workshop on Apr 29, 2019 Keep us up to date with new versions of your products to review & demo. We also offer code review.

Thu Mar 28 01:03:42 +0000 2019

Replying to @nvk, @joeloregalatto, @RobertSpigler, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol, @BlockchainComns and @COLDCARDwallet

Yes, we purchased two, and we did upgrade the firmware after talking to support. Only one old battery powered USB worked with it, all others shut off as not enough charge used. We also did not get your SD card with our order and no others we tried purchased locally ever worked.

Thu Mar 28 01:21:49 +0000 2019

RT @philchen913: “Totalitarian technology” or #TotalTech is a term that describes devices and algorithms by which individuals forfeit their…

Thu Mar 28 05:56:18 +0000 2019

Replying to @technocrypto and @RyanSAdams

At Blockchain Commons we mix the critical “boring” stuff like #SmartCustody standards, less boring stuff like better cryptography for Social Key Recovery, and fun and challenging stuff like SecQ-based bulletproofs. We can sometimes get free labor for the latter, but rest is hard.

Thu Mar 28 06:02:59 +0000 2019

Replying to @AdamPaulMoore and @RyanSAdams

We are seeking people willing to commit in advance 5 to 50 days a year to Blockchain Commons project. Some is volunteer but some we get paid for.

Thu Mar 28 06:04:30 +0000 2019

RT @danheld: 1/ “Simple Self-Custody Workshop” is going down April 29 in SF run by one of the top cryptographers in the world: Christopher…

Thu Mar 28 16:40:31 +0000 2019

Replying to @JimJones1913 and @danheld

We are carefully making, after peer review, all the contents of the workshop open source under CC-BY-SA, starting with

Thu Mar 28 17:27:17 +0000 2019

Replying to @santisiri, @scott_lew_is and @pedrouid

The Decentralized Identifiers (DIDs) efforts incubated at #RebootingWebOfTrust & now at #W3C strongly discourages personal data on blockchains & several projects use a variety of cryptographic tools, including ZK, to support privacy. Also investigating Proof of Unique Personhood.

Thu Mar 28 18:21:51 +0000 2019

Replying to @santisiri, @scott_lew_is and @pedrouid

We had a meeting of the W3C Credentials Community Group on the topic of Proof of Unique Persknhood last August with a presentation from @brynosaurus. I hope we can take it up further at September’s #RebootingWebOfTrust.

Thu Mar 28 18:26:59 +0000 2019

“For the same reasons that ‘open source’ came up with a new name, I think the movement that will arise from today’s developers will also need a new name.” I agree—at minimum I believe that software for critical infrastructure needs alternative models from traditional open source.

Thu Mar 28 18:41:26 +0000 2019

Replying to @CryptoPietje


Thu Mar 28 21:37:49 +0000 2019

Replying to @kixunil, @F0nta1n3, @matt_odell, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

A problem with Glacier Protocol is that I even know some contributors to it that haven’t implemented it due to process fatigue. Others have read it and it sets such a high standard they still have keys on paper. Perfection is the enemy of the good!

Thu Mar 28 21:58:54 +0000 2019

RT @Melt_Dem: staking is BIG business. the foundations of this emerging billion dollar industry are being built by dozens, if not hundred…

Thu Mar 28 22:01:04 +0000 2019

I play a wonderful musical instrument known as a hand pan or sometimes pantam or hang. It often takes a man-week of crafting & 2.5 million hammer hits to build. Here is a video that celebrates both the craft in making these & the music they can offer:

Thu Mar 28 22:25:06 +0000 2019

RT @kixunil: @ChristopherA @F0nta1n3 @matt_odell @TuurDemeester @Trezor @Ledger @GlacierProtocol @BlockchainComns Exactly this! That’s why…

Thu Mar 28 22:26:43 +0000 2019

Replying to @jonf3n

I’ve been playing as an amateur for 10 years, and it still can give me chills. One of my favorite performers and teachers:

Thu Mar 28 23:13:18 +0000 2019

Replying to @F0nta1n3, @kixunil, @matt_odell, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

Blockchain Commons is working on a proof-of concept reference implementation of an air-gapped iOS bitcoin wallet. It uses an iPod Touch or old sim-less iPhone that is administratively-locked network disabled to create keys & sign transactions, and only communicates via QR codes.

Thu Mar 28 23:44:16 +0000 2019

Replying to @F0nta1n3, @kixunil, @matt_odell, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

Goal of iOS airgap wallet is to demonstrate & define standards for what a dedicated camera/display wallet can do. Currently donor funded for another month & a half. Seeking partners who need these standards either on hardware development side or network side of QR code standards.

Thu Mar 28 23:47:40 +0000 2019

RT @ChristopherA: @F0nta1n3 @kixunil @matt_odell @TuurDemeester @Trezor @Ledger @GlacierProtocol @BlockchainComns Blockchain Commons is wor…

Thu Mar 28 23:48:12 +0000 2019

RT @ChristopherA: @F0nta1n3 @kixunil @matt_odell @TuurDemeester @Trezor @Ledger @GlacierProtocol @BlockchainComns Goal of iOS airgap wallet…

Thu Mar 28 23:48:15 +0000 2019

Replying to @CryptoPietje, @F0nta1n3, @kixunil, @matt_odell, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

Open source Android is OK, but I don’t trust Google’s version right now. In fact the Ellipal bitcoin wallet I believe it is using a fork of Android, but the software & hardware are not open. We have been able to reverse engineer the QR protocol it uses.

Fri Mar 29 00:07:20 +0000 2019

Replying to @GWierzowiecki and @jonf3n

Now is a good time. There are a number of talented new handpan crafters that do excellent work. But be careful, there are some inferior hand pans out there, in particular from Asia.

Fri Mar 29 01:01:11 +0000 2019

Replying to @CryptoPietje, @F0nta1n3, @kixunil, @matt_odell, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

If anyone wants our reverse engineering on the QR codes Ellipal uses for bitcoin airgap, let me know. Not very elegant (our spec will be better) but it works.

Fri Mar 29 06:15:51 +0000 2019

RT @dgwbirch: I just published my keynote address to KnowID “This time it’s war” on Medium

Fri Mar 29 15:51:01 +0000 2019

Replying to @avocoidentity and @InfosecEdu

This paper only covers the basics. They don’t talk about problems in randomness, avoiding side channel attacks & cryptographic defensive programming. Then there is the UX side.

Fri Mar 29 15:57:56 +0000 2019

Replying to @violetblue

Coinbase is not equal to bitcoin. There are other exchanges.

Fri Mar 29 16:04:21 +0000 2019

It is unacceptable that a long time educator is being financially censored due to some minority objecting to her content. The human rights of freedom of speech & association requires us to allow people to be able to accept funding from their supporters.

Fri Mar 29 16:10:03 +0000 2019

Replying to @avocoidentity and @InfosecEdu

I agree a more comprehensive paper should be written.

Fri Mar 29 16:32:35 +0000 2019

Replying to @F0nta1n3, @Chylez, @matt_odell, @kixunil, @TuurDemeester, @Trezor, @Ledger, @GlacierProtocol and @BlockchainComns

I have a tutorial on how to do Bitcoin from the Command Line. It includes how to do all of this, create an unsigned transaction and sign it, in Chapter 4: I also teach multisig and custom scripts in later chapters.

Sat Mar 30 04:05:26 +0000 2019

RT @raphkoster: It’s here! If you are interested in co-op design — analog OR digital — you need this book.

Sat Mar 30 04:06:32 +0000 2019

RT @LubaSays: The common (taught) perception is that “majority rules” = democracy. In reality, it is just diffused dictatorship. (For pract…

Sat Mar 30 14:31:56 +0000 2019

RT @PratsArthur: On Monday was realised the first version of the #SmartCustody: Simple Self-Custody Cold Storage Scenario by @ChristopherA…

Sat Mar 30 15:13:30 +0000 2019

RT @MeeplesTogether: As a follow-up to last week’s case study of Betrayal Legacy, here’s a look at how the first four sessions actually p…

Sat Mar 30 18:26:48 +0000 2019

Excellent work by @hdevalence on a programmable constraint system for Schnoor proofs, as well as a higher-level DSL that resembles mathematical notation. Most of it is beyond my skill level, but for cryptographers on the current edge I recognize its utility.

Sat Mar 30 19:13:39 +0000 2019

Replying to @Be1garat

I’m willing to offer #SmartCustody Workshops overseas if there is a local sponsor willing to commit to some minimum number of seats.

Sun Mar 31 16:03:00 +0000 2019

RT @tdierks: I’ve been working on Google’s cryptography policy (for engineers). It fits in a tweet: Don’t invent your own algorithms, don’t…

Sun Mar 31 16:08:13 +0000 2019

Replying to @tdierks, @YangVentures and @JacenRKohler

I have published what I believe to be the current best practices to store a Bitcoin recovery key IF you are not actively trading and live in the first world & thus are less concerned about issues like government attack, coercion or privacy violations.

Mon Apr 01 00:16:14 +0000 2019

Replying to @tdierks, @YangVentures, @JacenRKohler, @CashApp and @Square

I’m not allowed to repeat it in polite company. 😉

Mon Apr 01 02:36:08 +0000 2019