security deep dive

nostr identity (nip-07)

the extension implements the "signer - requester" model:

the extension is a secure "signer" (like a hardware wallet)
the website is a "requester"
the nsec is like a key in a vault that only the extension can access to sign things on your behalf, after your approval

how tls notary works

imagine you want to prove you accessed a bank vault, without revealing what was inside. you bring a trusted notary with you. the notary watches you open the vault and then signs a document stating, "i confirm bob accessed vault #123 on this date." they don't see or record the contents.

the tls notary proof is a cryptographic version of that notarized document for your browser session with x.com.

lightning wallet security

user deposits are held in the platform's custodial hot wallet. while we employ security best practices including:

periodic sweeps to cold storage
automated monitoring
rebalancing strategies

there is always a risk with hot wallets, which is why we recommend self-custody for large amounts.

nostr identity (nip-07)​

how tls notary works​

lightning wallet security​

nostr identity (nip-07)

how tls notary works

lightning wallet security