RT @timpastoor: If you create positions of power, you attract those with money able to corrupt said power. If you want to solve for governm…

Fri Oct 01 15:44:42 +0000 2021

RT @ChristopherA: Once again, to raise funds in support of our future open & trust-minimized Self-Sovereign Identity #SSI projects at @Bloc…

Fri Oct 01 16:46:36 +0000 2021

Replying to @DropYourNFT


Sat Oct 02 04:05:06 +0000 2021

RT @zallarak: I met @ChristopherA years ago at a Bitcoin dinner in SF. He spoke about board games and how to teach children. Only at the en…

Mon Oct 04 22:17:26 +0000 2021

Replying to @zallarak

Security of BGP routes is still one of my bigger infrastructure concerns. It is an interesting problem to me as it is essentially a P2P web-of-trust problem. However, I’ve made no progress on it. Bill Woodcock @woodyatpch & @TheBlueMatt likely both know more on current status.

Mon Oct 04 22:23:23 +0000 2021

Replying to @zallarak, @woodyatpch and @TheBlueMatt

For an overview on BGP https://www.cloudflare.com/learning/security/glossary/what-is-bgp/

Mon Oct 04 22:26:37 +0000 2021

Replying to @zallarak, @woodyatpch and @TheBlueMatt

For an overview of the security problem: https://www.packetlabs.net/bgp-security/

Mon Oct 04 22:28:01 +0000 2021

Replying to @zallarak, @woodyatpch and @TheBlueMatt

IMHO, a key challenge to solving the BGP problem is that the stakeholders are uncomfortable with moving forward on suggested solutions that are CA (certificate authority) based and thus centralized, but are too conservative to invest in more decentralized solutions. Stalemate.

Mon Oct 04 22:31:45 +0000 2021

Replying to @zallarak, @woodyatpch and @TheBlueMatt


Mon Oct 04 22:54:56 +0000 2021

RT @ChristopherA: @zallarak @woodyatpch @TheBlueMatt IMHO, a key challenge to solving the BGP problem is that the stakeholders are uncomfor…

Mon Oct 04 22:55:21 +0000 2021

RT @woodyatpch: @ChristopherA @zallarak @TheBlueMatt Yeah, that’s exactly right. RPKI, the notional fix, is a hammer looking for a centrall…

Mon Oct 04 23:02:48 +0000 2021

Replying to @ricburton

We have a number of swift native libraries at https://GitHub.com/BlockchainCommons, but our core cryptographic libraries are still largely wrappers of the venerable & well vetted secp256k1 code base in C

Tue Oct 05 01:23:47 +0000 2021

Excellent high-level view by @woodyatpch about the real source of yesterday’s Facebook BGP problems: monoculture, inertia, lack of innovation. I’d probably add that many of these are also caused by lack of funding for infrastructure and its commons. https://twitter.com/woodyatpch/status/1445359437380669447

Tue Oct 05 16:49:34 +0000 2021

RT @woodyatpch: @markrprior I very much agree that simple building-blocks, that fit together flexibly and modularly, are best. I am eternal…

Tue Oct 05 16:53:59 +0000 2021

But our sale of this NFT is more than that! At Blockchain Commons @BlockchainComns we are focused on identifying and solving underlying fundamental problems of blockchain infrastructure & security. [3/12]

Tue Oct 05 20:16:10 +0000 2021

I hope that you’ll bid on the piece to uphold our creation of an open self-sovereign identity (#SSI) infrastructure that is decentralized, trust-minimized, platform-neutral, blockchain-neutral, and vendor-independent. [2/12]

Tue Oct 05 20:16:10 +0000 2021

Blockchain Commons is currently auctioning its second NFT, Identimancer #1, created by 88B88:X8IB @voodoovoid17, to support our continued work on self-sovereign identity. [1/12] https://opensea.io/assets/0x495f947276749ce646f68ac8c248420045cb7b5e/23329406590917769582697114686361498707644446075778430145570703786260194918401/

Tue Oct 05 20:16:10 +0000 2021

Beyond that, most Ethereum transactions are conducted through a browser plugin that uses javascript. That can make your single key even more vulnerable. You could be compromised through your wallet or because you’re transacting from an internet-connected computer. [6/12]

Tue Oct 05 20:16:11 +0000 2021

Right now Ethereum assets are very vulnerable. To start with, Ethereum is focused on a model of one seed generating one hot private key. That key does everything, holding your NFTs, sending funds, and authorizing contract use. It’s a Single Point of Failure AND Compromise. [5/12]

Tue Oct 05 20:16:11 +0000 2021

Identimancer #1 and future sales from the #SSI NFT collection represent Blockchain Commons’ entry into the world of #Ethereum, where I hope to demonstrate some of our same principles of self-sovereign #SmartCustody & responsible key management that I pioneered for Bitcoin. [4/12]

Tue Oct 05 20:16:11 +0000 2021

We’d like to similarly encourage responsible key management on #Ethereum, though there are real challenges such as the very high cost of smart-contract based multisigs, which creates a requirement for alternative solutions. [9/12]

Tue Oct 05 20:16:12 +0000 2021

To date, Blockchain Commons has worked with the #Bitcoin wallet community to address similar problems on the elder side of blockchain cryptocurrency, with airgapped wallets, partitioned services, and our Gordian principles of independence, privacy, resilience & openness. [8/12]

Tue Oct 05 20:16:12 +0000 2021

Meanwhile, approval UXes are non-standard and non-intuitive. It’s way too easy to use something like a token drop as a cover to trick someone into providing enough authorization to steal their funds. https://www.bsc.news/post/airdrop-scams-continue-to-surface-on-layer-1-defi-networks [7/12]

Tue Oct 05 20:16:12 +0000 2021

Also consider becoming a monthly sponsor of Blockchain Commons, to support our continued work on specifications that help everyone. Or try out the new #TwitterTips! [12/12] ៚ https://github.com/sponsors/BlockchainCommons

Tue Oct 05 20:16:13 +0000 2021

If you’re an artist interested in contributing a self-sovereign themed NFT for a future auction, please also drop me a line! Thank you for your support of Blockchain Commons and our newest work on responsible key management for Ethereum! [11/12]

Tue Oct 05 20:16:13 +0000 2021

Bidding on the Identimancer #1 NFT will signal that you’d like to see Blockchain Commons supporting ways to improve the safety of Ethereum assets. Help us to bring our lessons learned to a second cryptocurrency! [10/12] https://opensea.io/assets/0x495f947276749ce646f68ac8c248420045cb7b5e/23329406590917769582697114686361498707644446075778430145570703786260194918401/

Tue Oct 05 20:16:13 +0000 2021

A nice breakdown of how the randomness required for good private keys is accomplished in Bitcoin Core. I consider this to be the minimum best practice for software generated keys, but presumes no side-channel or compromise of your hardware or software. Addressing those is harder. https://twitter.com/raw_avocado/status/1445024873382809604

Tue Oct 05 21:29:54 +0000 2021

RT @trentmc0: NFT art with a self-sovereign identity twists, by one of the pioneers of SSI. 🧙‍♂️

Wed Oct 06 06:22:15 +0000 2021

RT @ChristopherA: Blockchain Commons is currently auctioning its second NFT, Identimancer #1, created by 88B88:X8IB @voodoovoid17, to suppo…

Wed Oct 06 14:39:06 +0000 2021

RT @ChristopherA: Identimancer #1 and future sales from the #SSI NFT collection represent Blockchain Commons’ entry into the world of #Ethe…

Wed Oct 06 14:39:33 +0000 2021

RT @ChristopherA: Latest update to Gordian SeedTool for iOS & Mac from @BlockchainCmns offers our first support for Ethereum, expanding our…

Wed Oct 06 16:04:06 +0000 2021

Replying to @opensea


Wed Oct 06 17:23:41 +0000 2021

Replying to @levikornelsen

Solstice & equinox days are easy to plan for. However, the cross quarter days are off as much as a week from the traditional calendar. Thus the real Samhain is November 6-7, not October 31. https://www.archaeoastronomy.com/2021.html

Mon Oct 11 21:44:05 +0000 2021

If you are an NFT creator on http://Foundation.app you can support our #SSI & #SmartCustody efforts by voting for us in the Community Upvote 🌐 @withFND at https://foundation.app/@ChristopherA

Tue Oct 12 19:45:18 +0000 2021

The curated collection on @OpenSea of our last two NFTs that were auctioned off to support Self-Sovereign Identity #SSI is at: https://opensea.io/collection/ssi

Tue Oct 12 19:48:26 +0000 2021

RT @ChristopherA: Noah’s Law “Any conversation about decentralization eventually evolves into a conversation about reputation.” @noahthorp…

Wed Oct 13 14:26:42 +0000 2021

👍🏼“The browser has become the single biggest point of centralization on today’s Web.” https://www.evernym.com/blog/w3c-vision-of-decentralization/

Wed Oct 13 14:52:43 +0000 2021

I’m seeking more pithy & evocative short “poster” phrases associated with self-sovereignty & #SSI beyond the classic “not your keys, not your coins”. Examples: “my keys, my authority”, “don’t shackle yourself”, “our internet, not facebook’s”, “embrace digital resilience”. Ideas?

Wed Oct 13 15:06:03 +0000 2021

Replying to @La__Cuen

I’ve been trying hard to find a good one for over a year. Particularly a difficult issue if you earn & spend or otherwise actively use cryptocurrency without using exchanges. The zenledger etc. all use exchange API. Seriously considering funding to create a small service company.

Fri Oct 15 20:23:18 +0000 2021

RT @AlecMuffett: 1/ THE MOST IMPORTANT information security discussion of the day will be about the publication of #BugsInOurPockets, a pap…

Fri Oct 15 21:34:22 +0000 2021

Replying to @dustyweb

So when can I do native Schnorr typed variables so I can do cryptographic ocap?

Sat Oct 16 21:37:47 +0000 2021

Replying to @JWWeatherman_

I am uncomfortable with all of the current drive chain proposals, but I do believe a drive chain could be plausible, but is harder than their proponents believe. @BlockchainComns did a review of one proposal but they didn’t really want to hear our suggestions. Nothing since.

Sat Oct 16 21:56:31 +0000 2021

Replying to @dustyweb

The best libraries are the secp256k1 used by bitcoin, or the slightly more advanced fork secp256k1-zkp which has some more advanced features like range proofs. One thing I like about latest bitcoin schnorr is it is always 32 bytes, as are private & public keys.

Sun Oct 17 17:18:32 +0000 2021

RT @accessnow: This Thursday at 9am ET ✨ SAVE THE DATE!

Join @NorwayUN, @svaradarajan, @AgnesCallamard, @MaryLawlorhrds, @solomonbrett and…

Mon Oct 18 20:12:42 +0000 2021

RT @torproject: Privacy isn’t about hiding bad things. It’s about protecting what makes us humans: our day-to-day behavior, our personality…

Tue Oct 19 23:41:38 +0000 2021

Privacy is not just about security or avoiding monetary loss. We act differently when we’re being watched, so privacy is also about the “right to be yourself”. Related is a contextual “right to be understood”, as a private moment taken out of context can easily be misinterpreted. https://twitter.com/torproject/status/1450488158416687107

Wed Oct 20 23:45:37 +0000 2021

This is an interesting legal approach — I do believe that communities should be able to have have legal standing without having to be registered corporate “citizens”. I suspect in the end that communities not having legal “personhood” like natural persons & corps will kill it. https://twitter.com/doctorow/status/1450852890638118912

Thu Oct 21 18:45:04 +0000 2021

This is why @BlockchainComns asks for signed CLAs from all of our code contributors. I wish we didn’t have to, but to have ability to enforce our open source & patent licenses requires us to have legal standing. We have lost some volunteers because of our strict CLA requirement. https://twitter.com/doctorow/status/1450852885638500353

Thu Oct 21 18:51:25 +0000 2021

Truth. The best cryptographers & cryptographic engineers I’ve worked with start with serious doubts about their own work, and then have others assist with thorough review before changing that belief. Even then, doubts remain. Nothing is perfect. https://twitter.com/robot__dreams/status/1451578632128716803

Fri Oct 22 17:22:54 +0000 2021

RT @InvestWithDiego: UK Court Will Let Craig Wright Serve Claims Against 16 Bitcoin Developers https://www.coindesk.com/markets/2021/05/12/uk-court-will-let-craig-wright-serve-claims-against-16-bitcoin-developers/ https://t.co/mflVoUm…

Fri Oct 22 17:34:11 +0000 2021

“New contributors should join anonymously (it’s tricky).” It is tricky! At @BlockchainComns we have been working toward a guide for pseudonymous developers. An early work in progress but useful. Contributors welcome: https://github.com/BlockchainCommons/Pseudonymity-Guide https://twitter.com/jonasschnelli/status/1451268523616051201

Fri Oct 22 17:53:19 +0000 2021

Replying to @cmdoerfler and @gulovsen

For next version I’d like to add more examples on risk modeling / adversary analysis, in particular as regards to developers of crypto code vs human-rights activists. You can see our general approach to risk/adversary in free our #SmartCustody book. /cc @namcios https://twitter.com/ChristopherA/status/1451607614974935041

Fri Oct 22 19:44:09 +0000 2021

RT @songpinganq: This is Chinese qr code vaccine passport system. It includes your name photo age family members address employer, whether…

Fri Oct 22 19:46:56 +0000 2021

Replying to @cmdoerfler, @gulovsen and @namcios

When I personally advise those considering pseudonym, the first part is diving into their threat/adversary model. It is more expensive in time, care & resources to defend against a state actor for human-rights work vs defend against civil lawsuits, trolls & SWATers for crypto.

Fri Oct 22 19:51:23 +0000 2021

RT @ChristopherA: @cmdoerfler @gulovsen @namcios When I personally advise those considering pseudonym, the first part is diving into their…

Fri Oct 22 19:51:40 +0000 2021

Replying to @cmdoerfler, @namcios and @gulovsen

Hard to do well solely in Twitter. Here is a large tweetstorm on #SmartCustody Adversaries. A similar analysis of risk modeling & adversaries is what we are striving for: https://twitter.com/ChristopherA/status/1267560491657728000

Fri Oct 22 20:16:04 +0000 2021

Replying to @cmdoerfler, @namcios and @gulovsen

We definitely need to curate best practices a lot more. One of the biggest threats to pseudonymity is Process Fatigue. Here, perfection is clearly the enemy of the good. https://twitter.com/ChristopherA/status/1280954188063596544

Fri Oct 22 20:22:19 +0000 2021

RT @ChristopherA: @cmdoerfler @namcios @gulovsen We definitely need to curate best practices a lot more. One of the biggest threats to pseu…

Fri Oct 22 20:22:47 +0000 2021

RT @namcios: @cmdoerfler @ChristopherA @gulovsen Next version of Pseudonymity-Guide in the works - will include better walkthrough of topic…

Fri Oct 22 20:22:56 +0000 2021

RT @namcios: @cmdoerfler @ChristopherA @gulovsen Focus currently on human rights activists seeking to guard from medium not high profile ac…

Fri Oct 22 20:23:43 +0000 2021

Replying to @cmdoerfler, @namcios and @gulovsen

Our work was funded by volunteers, and some financial support from our GitHub Sponsors and Patrons like @hrf. Thus current early draft of our guide has an emphasis on activists, but wd plan to later be more specific for devs. This also includes things like how to do the work.

Fri Oct 22 20:28:52 +0000 2021

Replying to @cmdoerfler, @namcios, @gulovsen and @HRF

We are also working toward some long term projects to support developers at risk, including understanding requirements. For instance, here is the Amira User Engagement Model, for a hypothetical future activist dev: https://w3c-ccg.github.io/amira/

Fri Oct 22 20:38:13 +0000 2021

I have real reservations about wallets being built into browsers. At minimum there should be isolation between the functions of request vs signing transactions, which Wallet Connect supports. I also suggest segregation of keys for auth, which is not the current practice in ETH. https://twitter.com/ricburton/status/1451357816535486501

Sat Oct 23 02:34:05 +0000 2021

Though biometric tech will have a role in the future of digital identity, it also has huge risks. 👎🏻 #aadhar #worldcoin, 👍 Apple’s TouchID. I was disappointed that #RWOT draft on best practices led by @johnrcallahan never shipped—it was a good start: https://github.com/WebOfTrustInfo/rwot6-santabarbara/blob/master/draft-documents/Biometrics.md https://twitter.com/jamie247/status/1452260428659167232

Sun Oct 24 16:44:56 +0000 2021

If someone from the original paper, or has participated in #RWOT wants to take over lead on this draft paper to update & finish it, let us know.

Sun Oct 24 18:40:23 +0000 2021

Replying to @ineiti and @SarahJamieLewis

Agreed, but with qualifications. First some terms: I don’t consider what you are calling global PoP, instead it is PoP in a context (which in addition to anti-sybil needs a safe proof of inclusion zkp). …

Sun Oct 24 18:44:13 +0000 2021

Replying to @ineiti and @SarahJamieLewis

But even if you have that, there are still other risks, particularly around the proof of inclusion. For instance there is the “Clark Kent” risk: you loose your job unless prove you are not a member of a group (in Clark’s case, a group that includes Superman). There are more.

Sun Oct 24 18:48:17 +0000 2021

Replying to @ineiti and @SarahJamieLewis

I’m not saying that working toward some type of “proof of unique personhood in a group context” isn’t incredibly valuable, but I’m suggesting be humble and realize it will not be easy and you are unlikely to mitigate or even spot all the risks. Most PoP teams don’t seem to yet.

Sun Oct 24 18:51:39 +0000 2021

Replying to @ineiti and @SarahJamieLewis

I am, in particular, very concerned about some current global proof of personhood projects, in particular those that require or allow correlation (linkage) to real world identities. When largely 1st-world cis white males are are willing to risk privacy to show status, be scared.

Sun Oct 24 18:56:56 +0000 2021

Replying to @ineiti and @SarahJamieLewis

I commend you to read @SarahJamieLewis’s collection on Queer Privacy. It is pay-what-you want, but I hope you offer something. Her editorial role in this community to be safer is important. https://leanpub.com/queerprivacy

Sun Oct 24 19:01:58 +0000 2021

See also: https://twitter.com/ChristopherA/status/1452345201360400384

Sun Oct 24 19:03:58 +0000 2021

The Lightning Wallet @MuunWallet has failed my #SmartCustody test, and I am unable to recover test funds. Many fragile points: confusing & non-standard recovery process, no mnemonics, logs you out of old device before new device success, too many fragile parts, and more.👎 …

Mon Oct 25 20:34:44 +0000 2021

There is also some security theatre here for a kind of wallet that usually has smaller amounts of funds, which combined with their attempts to make some parts easier, the combo fails. …

Mon Oct 25 20:34:45 +0000 2021

So easy to mess up. The critical part of the recovery is a password and backup hex, also requiring backup. However, they do not support keychain or other secure places to store, nor do they do a health check on either to do so. Then when you try multiple times, log you out. …

Mon Oct 25 20:34:45 +0000 2021

Recover requires a working email. I saved the recovery keys but didn’t properly save the password or hex also required. If your old wallet is working, when you try to authorize a new wallet, they log you out of your first wallet before confirming new wallet is recovered. …

Mon Oct 25 20:34:45 +0000 2021

They clearly were trying to fix some pain points in the Lightning recovery, but ended adding more. You have to remember a recovery password, or you have write down non-standard hex not mnemonics. They will mail you or save PDF with keys but they are encrypted & thus fragile. …

Mon Oct 25 20:34:45 +0000 2021

I suggest a good place for further discussion is in the Airgap Wallet Community https://github.com/BlockchainCommons/Airgapped-Wallet-Community/discussions/

Mon Oct 25 20:34:46 +0000 2021

I urge all the Lightning Wallet companies to work harder on standardization of recovery processes. Each will have have unique tradeoffs due to different architectures, but much is the same. I also suggest leveraging appropriate platform tech (for instance iCloud) or use QRs. …

Mon Oct 25 20:34:46 +0000 2021

To be clear, recovery of a Lightning wallet is much harder than Bitcoin, but every step in the @Muun recovery process is new & non-standard. I had no problems restoring @bluewalletio or @Breez_Tech which aren’t perfect but not nearly as fragile. …

Mon Oct 25 20:34:46 +0000 2021

Just tested migration of @PhoenixWallet & @get_zion Lightning Wallets. Both were easy & functional, though I have questions for long-term vendor independence. So far only @MuunWallet has failed.

Mon Oct 25 21:22:20 +0000 2021

When I was Principal Architect at @Blockstream, I was a big advocate for Chaumian-style federated solutions over the Liquid federation. Given that I did some work with David Chaum in early ‘90s, I am biased. I’m glad to see the concept move forward to implementing by @EricSerion! https://twitter.com/Blockstream/status/1453099343301517316

Wed Oct 27 18:21:49 +0000 2021

Replying to @getsqt and @Blockstream

Yes, it is kind of L2. A Chaumian bank’s weakness is that the bank was centralized. Instead with bitcoin it is possible to create a federation that is the “centralized” part of the bank. Not totally trustless as Liquid is not totally trustleess, but has some good properties.

Wed Oct 27 19:39:09 +0000 2021

Note that in the past Adobe’s tech largely relied on centralized certificates. If they fully support you to choose a root of trust such that anyone can issue claims and verify, which is possible with (but not required by) Verifiable Credentials & DIDs, I’ll be less skeptical. https://twitter.com/beaniemaxi/status/1453174086578970627

Wed Oct 27 22:45:18 +0000 2021

Replying to @beaniemaxi


Wed Oct 27 22:45:41 +0000 2021

Replying to @NathanHeadPhoto


Wed Oct 27 22:46:49 +0000 2021

Replying to @JWWeatherman_, @getsqt and @Blockstream

Certainly the bank federation as a whole can do a proof-of-reserves, and they, in turn, know how many Chaumian tokens they have issued and are redeemable. But I don’t know of a way for an individual with Chaumian tokens to be offer a proof-of-reserves other than by spending them.

Thu Oct 28 08:31:09 +0000 2021

This new 1.0.0 release is fully integrated with Bitcoin Core 22.0, the newest bitcoin release, and works with this week’s release of macOS Monterey 12.0.1 and is tested all the way back to macOS Catalina 10.15.7. [3/11]

Thu Oct 28 09:24:17 +0000 2021

The goal of Gordian Server is to make Bitcoin easy and accessible. It does that by automatically installing a full Bitcoin Core server on your Mac, and providing you with an accessible UI for using it. [2/11] https://github.com/BlockchainCommons/GordianServer-macOS

Thu Oct 28 09:24:17 +0000 2021

Many people are assembling Rasberry Pi class devices as full nodes. Yet there exists a huge number of old Macs out there that can still serve. We’ve recently released the Gordian Server for Mac in its first feature-complete free version as v1.0.0. [1/11] https://github.com/BlockchainCommons/GordianServer-macOS/releases/tag/v1.0.0

Thu Oct 28 09:24:17 +0000 2021

You can always compile our reference code on your own using xCode, but if you prefer, you can also grab a DMG that should work on any up-to-date macOS Catalina compatible or newer Mac hardware. [7/11] https://github.com/BlockchainCommons/GordianServer-macOS/releases/tag/v1.0.0

Thu Oct 28 09:24:18 +0000 2021

Finally, we’ve worked hard on improving the stability and monitoring the status of your bitcoin full node, through reboots, restarts, and other changes. [6/11]

Thu Oct 28 09:24:18 +0000 2021

Want to choose your own location for your blocks or data directory on another disk? Want to set up or harden your environment for secure development? Use other Mac Apps locally or take our Learning Bitcoin course? These unique optional setups are now possible as well. [5/11]

Thu Oct 28 09:24:18 +0000 2021

In addition, Gordian Server integrates the latest Tor v3 support, allowing for correlation-resistant privacy. No one in your cafe needs to know you have bitcoin. Moreover, we’ve improved Gordian Server’s cross-compatibility options, standard RPC ports, and much more. [4/11]

Thu Oct 28 09:24:18 +0000 2021

In particular, I like my old 13” mid-2012 Macbook Air—it has USB-3 & firewire, 4-8 GB RAM & up to 1TB SSD if you want a tx-indexed full node. Not only can it run Catalina, I can run Debian and TailsOS for even more secure environments. It is my great travel burner laptop. [9/11]

Thu Oct 28 09:24:19 +0000 2021

Got a computer that doesn’t officially support Catalina? We’ve had good luck with the Catalina Patcher on old cheap (<$100) Mac Minis & iMacs going back to 2008! But use at your own risk. [8/11] http://dosdude1.com/catalina/

Thu Oct 28 09:24:19 +0000 2021

If you find this sort of utility useful and would like to see more, please become a supporter of Blockchain Commons. We’re creating reference applications for use by anyone, and working with other blockchain companies to encourage compatibility.៚ [11/11] https://github.com/sponsors/BlockchainCommons

Thu Oct 28 09:24:20 +0000 2021

For me, it is nice to have a full node available on my personal laptop with Bitcoin Core keeping an eye on my watch-only accounts, and I can use keys from Gordian Wallet or @FullyNoded iOS apps wherever I am in the world, as long as my laptop is on the internet. [10/11]

Thu Oct 28 09:24:20 +0000 2021

Bitcoin Standup was one of Blockchain Commons’ earliest projects — it was a set of Bitcoin scripts that could be used to easily set up a secure Debian server VPS running Bitcoin. [2/10]

Thu Oct 28 19:04:09 +0000 2021

Yesterday we released Gordian Server, our Bitcoin & Tor installer for the Macintosh. In addition to this release, we continue to support Debian Linux systems and virtual machines with an update to our Bitcoin Standup Scripts. [1/10] https://github.com/BlockchainCommons/Bitcoin-Standup-Scripts https://twitter.com/ChristopherA/status/1453653837978365958

Thu Oct 28 19:04:09 +0000 2021

The second is integration with Cypherpunkpay, which allows you to optionally install an engine for accepting Bitcoin payments through your Tor service and/or website. [6/10] https://cypherpunkpay.org/

Thu Oct 28 19:04:10 +0000 2021

The first is integration with Bitcoin Core 22.0, which required updating to their new methodology for release signing. Now you’ll know you’re using the most up-to-date Bitcoin Core, with access to i2p, taproot, and more. [5/10] https://bitcoincore.org/en/releases/22.0/

Thu Oct 28 19:04:10 +0000 2021

We’ve just released a new 0.8.0 version of the our Bitcoin Standup scripts with two great new features. [4/10] https://github.com/BlockchainCommons/Bitcoin-Standup-Scripts/releases/tag/v0.8.0

Thu Oct 28 19:04:10 +0000 2021

Bitcoin Standup is popular with students and interns taking our “Learning Bitcoin From the Command Line Course” as they could set up an inexpensive VPS server and do their coursework anywhere in the world [3/10] https://github.com/BlockchainCommons/Learning-Bitcoin-from-the-Command-Line

Thu Oct 28 19:04:10 +0000 2021

As always, you can run these install programs as a VPS Stackscript from Linode or directly from the command-line for a Linux system. We’re also working on a major new release for Gordian Server, our integrated Mac installation software, also with more plugins. [9/10]

Thu Oct 28 19:04:11 +0000 2021

We expect there to be more optional integrations like this in the future, giving you the ability to install a variety of Bitcoin and Lightning applications. We are currently testing c-lightning, esplora, and electrum server. [8/10]

Thu Oct 28 19:04:11 +0000 2021

The Cypherpunkpay work was supported by a grant from the @HRF, who was looking for ways to better support activists. This is a small first step. [7/10] https://hrf.org/

Thu Oct 28 19:04:11 +0000 2021

If you’d like to support this type of work, intended to make Bitcoin more accessible to everyone, please consider becoming a patron of Blockchain Commons. ៚ [10/10] https://github.com/sponsors/BlockchainCommons

Thu Oct 28 19:04:12 +0000 2021

Replying to @La__Cuen

It has been frustrating to try get support from Coinbase for activities like #SmartCustody, #RebootingWebOfTrust & @BlockchainComns. No success yet.

Fri Oct 29 17:42:20 +0000 2021

Moving more of our critical infrastructure over to Rust and supporting real security reviews and where possible formal verification is important. Tor is one of those pieces. Architecture is important too—for instance Tor hot keys worries me, I would prefer OS or hardware support. https://twitter.com/nickm_tor/status/1454131220208627726

Fri Oct 29 17:48:35 +0000 2021

RT @dannyryan: @josephdelong Make it a social norm for all DAOs (and other network tokens) building on Ethereum to allocate 1.5% of their t…

Fri Oct 29 18:19:19 +0000 2021

RT @windley: It’s telling that Facebook didn’t decide to build the metaverse as a true metasystem with standards, protocols, and open acces…

Fri Oct 29 18:28:45 +0000 2021

Another season has gone by, so Blockchain Commons has released another quarterly report. Happily it was another busy quarter, with lots of new contributions to the blockchain community. [1/11] https://www.blockchaincommons.com/quarterlies/Q3-2021-Report/

Fri Oct 29 19:55:11 +0000 2021

That wasn’t our only release. Not only did our Bitcoin Standup scripts get updated to Bitcoin Core 22.0, but we also published our Feature-Complete version of Gordian Server. [5/11] https://github.com/BlockchainCommons/GordianServer-macOS/releases/tag/v1.0.0

Fri Oct 29 19:55:12 +0000 2021

Another big task was our iteration through a few new versions of Gordian SeedTool, our reference app for resilient and interoperable cryptographic seed storage. [4/11] https://github.com/BlockchainCommons/GordianSeedTool-iOS/blob/master/Docs/MANUAL.md

Fri Oct 29 19:55:12 +0000 2021

We haven’t stopped working on new libraries, including a port of a more efficient QR generator for Swift. [3/11] https://github.com/blockchaincommons/QRCodeGenerator

Fri Oct 29 19:55:12 +0000 2021

The big news is that we got our first external security review completed, and thus we now consider our Shamir and SSKR libraries production ready, thanks to help from Radically Open Security @ROSecurity. [2/11] https://github.com/BlockchainCommons/bc-sskr/blob/master/SECURITY-REVIEW.md

Fri Oct 29 19:55:12 +0000 2021

…and Spanish! [7/11] https://github.com/BlockchainCommons/Learning-Bitcoin-from-the-Command-Line/tree/spanish-translation/es

Fri Oct 29 19:55:13 +0000 2021

We also saw major updates for our Learning Bitcoin from the Command Line course, in the form of translations to both Portuguese …[6/11] https://github.com/BlockchainCommons/Learning-Bitcoin-from-the-Command-Line/tree/portuguese-translation/pt

Fri Oct 29 19:55:13 +0000 2021

If you like what we’re doing, and especially if you’re interoperating with our specifications, please become a supporter of Blockchain Commons by tipping us here on Twitter, or monthly through GitHub! [11/11] https://github.com/sponsors/BlockchainCommons

Fri Oct 29 19:55:14 +0000 2021

There was lots more this season, including DID support, testimony on Wyoming eResidency, expansion into the Ethereum space, and the successful conclusion of our second intern program. It’s all in our report! [10/11] https://www.blockchaincommons.com/quarterlies/Q3-2021-Report/

Fri Oct 29 19:55:14 +0000 2021

Some of our documentary work is more future looking, such as our new paper on Principal Authority (new under #Wyoming law), and how it links up with self-sovereign identity. [9/11] https://www.blockchaincommons.com/articles/Principal-Authority/

Fri Oct 29 19:55:14 +0000 2021

We’ve new articles too, including some SSKR docs for power users, discussing when to use various Shamir sharding scenarios, and why sharding seeds can be dangerous! [8/11] https://github.com/BlockchainCommons/crypto-commons/blob/master/Docs/sskr-overview.md#for-power-users

Fri Oct 29 19:55:14 +0000 2021

Replying to @RealSexyCyborg

At @BlockchainComns we have a virtual internship program with over a dozen. Most are we’re not 1st world but many now have good jobs in the community. We also have Spanish & Portuguese version now of our Learning Bitcoin. We are working on guides for pseudonymous development. …

Fri Oct 29 20:03:49 +0000 2021

Replying to @RealSexyCyborg and @BlockchainComns

…we are a small, benefit corp, supporting secure open infrastructure, but trying hard to think globally. What else should we be doing?

Fri Oct 29 20:05:35 +0000 2021

RT @TimSweeneyEpic: If the government forces founders to sell out to pay taxes on theoretical gains as companies grow, they’re handing cont…

Fri Oct 29 20:14:53 +0000 2021

Replying to @ai

We’ve been working hard on an open infrastructure for wallets to be able to do this. We have a really excellent multisig design for Bitcoin with no single points of attack, failure, collusion and even has some time-failure modes. However, it has much more difficult in Ethereum.

Fri Oct 29 20:26:18 +0000 2021

Replying to @ai


Fri Oct 29 20:28:03 +0000 2021

Replying to @ai


Fri Oct 29 20:28:42 +0000 2021

Replying to @ai

In particular see “Designing Multisig for Independence & Resilience” Advanced Multisig section: https://github.com/BlockchainCommons/SmartCustody/blob/master/Docs/Multisig.md#examples-advanced-multisig

Fri Oct 29 20:31:46 +0000 2021

RT @darrello: “A DIF & ToIP joint Statement of Support for Decentralized Identifiers (DIDs) v1.0 as a W3C Standard” by Decentralized Identi…

Sat Oct 30 16:47:53 +0000 2021

The first startup I founded went bankrupt. A fellow founder encouraged me to move on by saying “Now you are a real entrepreneur. Get started.” It is true — I became a better entrepreneur because of it. Other fields (in this case law exams) have similar tough failures that teach. https://twitter.com/EHA_appeals/status/1454305365198180352

Sat Oct 30 19:23:49 +0000 2021

RT @trbouma: I always wondered if the date chosen to publish the #Bitcoin White Paper (Oct 31) was actually a coincidence with #Reformation…

Sun Oct 31 23:32:07 +0000 2021

Replying to @MartyBent, @ODELL, @MTanguma and @parkeralewis

Hope your team becomes sponsors of @BlockchainComns — we are focused on building open infrastructure, including tools, reference code, architecture & docs.

Mon Nov 01 01:47:28 +0000 2021