55, amber can be denied network access so I find that secure. 46 would be cool if there was a hardware device like a ring I could just tap with another finger to approve, but I haven't seen that yet.
Login to reply
Replies (2)
In the NIP-46 protocol, the signer that stores the nsec does not expose the nsec. It only receives signing requests, completes the signing, and then sends the result out.
View quoted note →
Yes, but how is it the signing done? Via network comms right? So if the signer requires network access to work, then the dev pushes malicious code to publish the nsec, there's nothing you can do about it. Whereas nip 55 I can box up the signer with 0 network access so even if malicious code is pushed, it can't be transmitted.