Hey Zman, I saw the announcement about the commando plugin, and it was actually one of the reasons I wanted to write up what I had in mind, because while commando also uses a lightning connection to send commands to a lightning node, it was missing what in my opinion is the most important part: having all of Bolt 8 handled by the HSM and validating commands using a trusted display.
That is what really brings additional security without compromising UX, and enabling secure remote control from a mobile phone. Cheers, Bastien Le mer. 6 sept. 2023 à 00:59, ZmnSCPxj <zmnsc...@protonmail.com> a écrit : > > Good morning t-bast, > > CLN already has something similar in standard CLN distrib: https://docs.corelightning.org/docs/commando > > However it is tied specifically to the CLN command set. > Nevertheless, it is largely the same idea, just CLN-specific. > > Regards, > ZmnSCPxj > > > Sent with Proton Mail secure email. > > ------- Original Message ------- > On Tuesday, September 5th, 2023 at 5:26 PM, Bastien TEINTURIER < bast...@acinq.fr> wrote: > > > > Good morning list, > > > > I have just opened a PR to the bLIPs repository [1] to document an idea > > that I started investigating a long time ago and had already discussed > > with a few people, but never found the time to write it up before. > > > > This is a very simple architecture to securely send administrative > > commands to your lightning node (such as opening a channel or paying > > an invoice) from an untrusted machine (laptop, mobile phone or even > > smart watch, let's be crazy), by using an HSM acting as a whitelisted > > lightning peer (by implementing Bolt 8 entirely inside the HSM). The > > interesting part is that it requires almost nothing new on the lightning > > node itself, since we simply use a standard lightning connection as our > > communication channel and custom lightning messages to send commands. > > > > This should be doable for example in a custom application running on a > > Ledger Nano S [2], which is what I had started investigating. > > > > The bLIP still needs some work on the actual commands (and potentially > > their encoding), but the interesting part is mostly the HSM app (the > > rest is probably bikeshedding). > > > > If someone wants to actually work on implementing this, I think it > > would be very useful! I'd gladly volunteer to specify this better and > > review the implementation. Maybe that kind of work could be done under > > an open-source grant for example. > > > > Cheers, > > Bastien > > > > [1] https://github.com/lightning/blips/pull/28 > > [2] https://developers.ledger.com/docs/embedded-app/framework/
_______________________________________________ Lightning-dev mailing list Lightning-dev@lists.linuxfoundation.org https://lists.linuxfoundation.org/mailman/listinfo/lightning-dev
