[Bitcoin-development] Draft BIP for seamless website authentication using Bitcoin address
elarch at gmail.com
Tue Apr 22 08:57:18 UTC 2014
The development of BitID has had some progress, and we have now a working
wallet prototype based on Android Bitcoin Wallet (bitoinj).
The user flow is quite nice and if you are curious here is a short video
By default, each new first auth request will create and save a new address
(SQRL like). It could be based on BIP32, but this works also without.
This requires to add metadata to addresses, as described here :
It open also the fields for decentralized 2FA as well as "pay as guest"
checkout in conjonction with BIP70 payment request.
On Tue, Apr 22, 2014 at 8:34 AM, Jan Møller <jan.moller at gmail.com> wrote:
> The reason why client side certificates have never gained traction because
> it is a pain to safely store/backup secrets.
> In bitcoinland we are forced to solve the problem of safely storing
> secrets, and over the years we have come up with software and hardware
> solutions to make this safer and easier to manage for ordinary people.
> Solving this is paramount to the success of Bitcoin, and nobody has solved
> it before on a grand scale.
> I see no reason for forcing end users to use two different mechanisms for
> safely managing secrets.
> I agree that using a bitcoin address for authentication purposes might be
> confusing and potentially linking your funds with your identity. So I am
> all for using something else than bitcoin addresses and bitcoin private
> With bip32 we have finally agreed on a mechanism for generating a
> hierarchy of bitcoin private keys from a master seed. A similar approach
> can be used for generating a parallel hierarchy for authentication
> - Jan
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the bitcoin-dev