Gordian Meeting August 2024 - HackMD

<style> .reveal { font-size: 24px; } . reveal h1 h2 { font-family: "League Gothic", Impact, sans-serif; color: #eee8d5; font-family: "League Gothic", Impact, sans-serif; line-height: 0.9em; letter-spacing: 0.02em; text-transform: uppercase; text-shadow: none; } .reveal ul { font-size: 5 em ; line-height: 1.2 em ; } .reveal pre code { font-size: 0.7em ; margin: 0px 60px 0px 60px; .reveal p { line-height: 1 em ; } .reveal blockquote { font-size: 1 em ; line-height: 1.2 em ; } </style> <img src="https://www.Blockchaincommons.com/images/bcc-card.jpg" width=1024> <font size="5">Blockchain Commons #Gordian Meeting 2024-08-07</font> --- ## <img src="https://i.imgur.com/QyDl5nK.png" width="192" height="192"></br> What is Blockchain Commons? <font size=6> * We are a community supporting the self-sovereign control of digital assets. * We bring together stakeholders to collaboratively develop interoperable infrastructure. * We design decentralized solutions where everyone wins. * We are a neutral "not-for-profit" that enables people to control their own digital destiny. </font> --- Thank you to our Sponsors! <img src="https://hackmd.io/_uploads/ryThJwswC.png" style="border: 1px white solid;"> Become a sponsor! Mail us at team@blockchaincommons.com --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=192 height="192"><br/>Sponsorships * It's been a tough year! We've lost a number of sponsors! * They remain interested in supporting our technology. * But they're having problems with funding. * Become a sponsor, mail us at team@blockchaincommons.com * We can also support your company on specific projects * Open source & related to our specifications * Talk to us! * Thanks to: * HRF for a Recent FROST Grant! * Foundation Devices for recent GSTP Research Funding! --- <font size="5"> <img src="https://i.imgur.com/QyDl5nK.png" width="128" height="128"></br> Thanks also to individual sponsors! ![Screenshot 2024-04-03 at 9.21.31 AM](https://hackmd.io/_uploads/S1o5zZiJR.png) * You help us to go to people like HRF & say we have developer support! * Even $20/month makes a difference! --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=192 height="192"><br/>Subscribe to Our Announcements * https://www.blockchaincommons.com/subscribe/ * Announcements for Gordian Developers, FROST * Announcements-only Mailing List * Signal Discussion Channel * For Google Calendar invite to regular Gordian meetings: * Request from Christopher * ChristopherA@LifeWithAlacrity.com --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=192 height="192"><br/>Last Meeting <font size=6> - Seedtool in Rust - Why SSH? - SSH Envelope-CLI Updates - Gordian Sealed Transaction Protocol (GSTP) </font> --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=192 height="192"><br/>Today's Topics <font size=6> - Seed Resilience - Seeds in Blockchain Commons Tools - BIP-85 - Ledger Seed Tool - What's Next? </font> --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=192 height="192"><br/>Seed Resilience <font size=6> - Seeds are the heart of Digital Asset Security - The “Layer 0” of Cryptographic Security - Just 12 or 24 Bytes, But Crucial - How do We Keep them Safe? (Security) - How do We Avoid Losing them? (Resilience) - We'll Explore that Today! </font> --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=128 height=128><br/>Blockchain Commons Specs & Tools <font size=6> - What's working so far? - UR/Envelope for Seed Storage - SSKR Sharding for Seed Resilience - Request/Response for Seed Transfer & Key Derivation - Reference Apps - Seedtool-CLI-Rust - Create & manage seeds on the command line - Integrate with Envelope-CLI & Other Apps - iOS Seedtool - Best Practices app on your iPhone - For helping developers implement & test standards! </font> --- <img src="https://hackmd.io/_uploads/rJg5Ckg5C.jpg" height=500> --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=128 height=128><br/>Seed as Gordian Envelope <font size=10> ``` ur:envelope/lftpsogdhkwzdtfthptokigtvwnnjsqzcxknsktdoyadcsspgmgreefy ``` </font> <font size=6> Minimal Bytewords convert to dCBOR: </font> <font size=10> ``` 82d8c95059f2293a5bce7d4de59e71b4207ac5d2a10118c8 82 # array(2) D8 C9 # tag(201) 50 # bytes(16) 59F2293A5BCE7D4DE59E71B4207AC5D2 # "Y\xF2):[\xCE}M\xE5\x9Eq\xB4 z\xC5\xD2" A1 # map(1) 01 # unsigned(1) 18 C8 # unsigned(200) ``` </font> --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=128 height=128><br/>Seedtool iOS & macOS Features <font size=5> - Create Seeds - Identify Seeds - Name, LifeHash, Object Identity Block - Backup Seeds - BIP-39, ByteWords, Hex - Envelope - Metadata, Name, Date, Note, Output Descriptors - QRs - Shard Seeds - SSKR, SSKR-Envelope (CSR/Gordian Depository) - Derive Keys - Bitcoin, Ethereum, Tezos - Sign Bitcoin PSBT requests </font> --- <img src="https://hackmd.io/_uploads/rJh67Gl5R.jpg" height=500> --- #### Yinmn Blue in SeedTool for iOS/macOS ![SeedTool-iOS Yinmn Blue Seed (1080p)](https://hackmd.io/_uploads/HJGMozecA.jpg) --- #### Yinmn Blue for offline PDF ![SeedTool-iOS Yinmn Blue Seed Offline Page](https://hackmd.io/_uploads/B1-3aMxcC.jpg) --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=128 height=128><br/>Seedtool-CLI Features <font size=5> - Create Seeds - Backup Seeds - BIP-39, ByteWords, Hex - Envelope - Metadata, Name, Date, Note - Multipart URs - Shard Seeds - SSKR, SSKR-Envelope (CSR/Gordian Depository) - Translate Seeds - Integrate with Envelope-CLI - Signing - Eliding - Encryption </font> --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=128 height=128><br/>Using Seedtool-CLI <font size=10> ``` $ seedtool 89290acafd0aafb21bd53904de47ed80 $ seedtool -i hex 89290acafd0aafb21bd53904de47ed80 -o bip39 matrix embark razor wheel priority suit hungry poet age vendor window abandon $ seedtool -i hex 89290acafd0aafb21bd53904de47ed80 -o sskr -g 2-of-3 ur:envelope/lftansfwlrhdcetbsorflpmelgyaguurjzbdiyguetbzcyyacmldcwjennhnaysklgmsctgsrnhgcwtyrpeshnrfwkrnlepagdhszosghylgsocptepfwlaaaytkweiofnhddatansfphdcxkbtybwuyoelooeihvabtrohyrkdrkohnaymeiozmwschdnwtctsndtpyhgwlastkoyamtpsotantkphddarfbkaeadaerydepeprsblgpeswtnytndjlvwwkvehnaxdatecepaknnbytvwtomwttndjymywkhlwnbgkn ur:envelope/lftansfwlrhdcetbsorflpmelgyaguurjzbdiyguetbzcyyacmldcwjennhnaysklgmsctgsrnhgcwtyrpeshnrfwkrnlepagdhszosghylgsocptepfwlaaaytkweiofnhddatansfphdcxkbtybwuyoelooeihvabtrohyrkdrkohnaymeiozmwschdnwtctsndtpyhgwlastkoyamtpsotantkphddarfbkaeadadpkynftjeoewmluoncfqdgerhghpkfdvadprtfwfnrpltrpahrdhnfwkgjyolcwmuasfybawe ur:envelope/lftansfwlrhdcetbsorflpmelgyaguurjzbdiyguetbzcyyacmldcwjennhnaysklgmsctgsrnhgcwtyrpeshnrfwkrnlepagdhszosghylgsocptepfwlaaaytkweiofnhddatansfphdcxkbtybwuyoelooeihvabtrohyrkdrkohnaymeiozmwschdnwtctsndtpyhgwlastkoyamtpsotantkphddarfbkaeadaomumynncwcffpvdaefljncptpnsfdoskthewkwdhhrsndlkcyhpldcnnnhysbrfftcncmhlzc $ seedtool -i hex 89290acafd0aafb21bd53904de47ed80 -o envelope | envelope format Bytes(16) [ 'isA': 'Seed' ] ``` </font> --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=192 height="192"><br/>What's Next? - Our main topic for the day! - What's upcoming & just becoming available? - How do we support it? - How do we improve SECURITY & RESILIENCE for seeds? --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=192 height="192"><br/>BIP-85 <font size=6> - BIP-85 Uses a Single Seed for Multiple Wallets - Children Seed Derived from Parent Seed - with a Simple Index - _One Seed to rule them all, One Key to find them, One Path to bring them all, And in cryptography bind them._ </font> --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=192 height="192"><br/>Ledger Seed Tool Application <font size=6> - A New Tool for Seed Resilience! - Shamir's Secret Sharing on Ledger - with Blockchain Commons' SSKR - And Lots More Assistants! - https://www.ledger.com/blog/seed-tool-app - 7 million hardware wallets can now use SSKR! </font> --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=192 height="192"><br/>Key Exfiltration <font size=6> - We need to stay up to date with modern threats - We've known about key exfiltration since 2018! - It's about how keys could be compromized - Through untrustworthy signatures - Specifically, non-random nonces - But randomness is important to seeds too! - GSTP and FROST can help with both. </font> --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=192 height="192"><br/>What's Next? <font size=6> - There are lots of other ways to protect seeds - BIP-85 for hot wallets is an example - There are lots of adversaries to be concerned about - Key Exfiltration is getting attention today - What else? - What features do we want for - iOS Seedtool & Seedtool-CLI? - Ledger Seed Tool? </font> --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=192 height="192"><br/>Possible Additions <font size=6> - Child Seed Derivation - BIP-85 - More Key Derivations - ZCash, Monero? - Backup Mechanisms - GSTP and Gordian Depository Deployment - NFCs on NREF or smart JavaCards - Key Generation and Multi-Party Computation - Trusted Dealer & Distributed; MUSIG2 & FROST - What Else? </font> --- ## <img src="https://i.imgur.com/QyDl5nK.png" width=192 height="192"><br/>Get Involved! <font size=6> - Use Our Existing Specs - UR for interoperable connections & animated QRs - SSKR bytewords for simple sharding - Envelope for Smart Storage - Get In On the Next Thing: Collaborative Seed Recovery - Shard your seeds & metadata with SSKR-Envelope - Support GSTP, Host a Gordian Depository </font> --- <img src="https://i.imgur.com/QyDl5nK.png" width="128" height="128"></br> www.BlockchainCommons.com <img src="https://avatars.githubusercontent.com/ChristopherA?s=195"> Christopher Allen (@ChristopherA)