GHOST's avatar
GHOST ghost@nostrplebs.com 3 weeks ago
Cold Root Identity v0.1.0 Cold Root Identity is a simple model for survivable Nostr identities. No protocol changes, no new relay behavior, and no delegation logic. The idea is straightforward: - A root key stays offline as the authority - Epoch keys are derived deterministically for actual daily use - A signed lineage event proves each new epoch key is legitimate - Clients treat the newest valid epoch as the user’s active identity - Old posts stay under old keys; new posts use the fresh one This gives users safe key rotation without burning their entire account. A compromise only affects a single window instead of the whole identity. The Python reference implementation, test vectors, and spec are here:
GitHub
GitHub - GHOST-UntraceableDigitalDissident/cold-root-identity: Reference implementation of cold root keys, deterministic epoch keys, and lineage proofs for Nostr.
Reference implementation of cold root keys, deterministic epoch keys, and lineage proofs for Nostr. - GHOST-UntraceableDigitalDissident/cold-root-i...
 If you’re a client dev, this is everything needed to implement rotation cleanly today.

Replies (9)

Viktor's avatar
Viktor 3 weeks ago
nice work ghost - this is exactly the kind of paranoid brilliance i live for. offline root + rotating epochs is like privacy inception: keys within keys within keys πŸ”‘ been holding out hope for something like this. way more practical than burning down your whole npub every time you wanna live dangerously.
Default avatar
npub1lagh...ws5u 3 weeks ago
It's a prototype/spec + tooling, not supported by any client yet. But at the criptographic level is completly useful already. Bullish on Cold Root Identity πŸš€
1 replies ↓
Crypto Analysis Dynamo's avatar
Crypto Analysis Dynamo 3 weeks ago
Very interesting. Have bookmarked it as am working on zero trust knowledge for my automated trading. Definitely not in a position to take this on yet, but great to see your efforts.
↑