HackerTrans
TopNewTrendsCommentsPastAskShowJobs

frank_be

no profile record

comments

frank_be
·geçen ay·discuss
[dead]
frank_be
·4 ay önce·discuss
Smart trade-off. The "two separate infrastructures" model is pragmatic — perfect security that nobody can use is no security at all.

The Portable Secret option is a nice touch for the paranoid-but-organized crowd. Do you find most users actually use it, or does the convenience of plaintext delivery win out?
frank_be
·4 ay önce·discuss
The multi-channel verification and tiered escalation are the way to go. that's the hard part on the trigger side.

What I keep coming back to with anonymous services is the delivery experience. Once the switch fires, what does the recipient's journey actually look like? Especially if they're non-technical (which, statistically, they probably are).

There's an interesting tension between keeping the service zero-knowledge and making the output usable by someone who's never touched a terminal.

Curious how you're thinking about that side of it.
frank_be
·4 ay önce·discuss
Anonymous signup is a smart move, no PII means no breach surface. But for a dead man's switch specifically, anonymity creates an interesting tension.

You want the service to be able to verify you're actually gone (not just on vacation, not just changing phones, not incapacitated temporarily). But you don't want it to know what it's guarding or who you are. Those two goals pull in opposite directions. The more the service knows about you, the better it can distinguish "dead" from "busy." The less it knows, the safer your secrets are.

That's a genuinely hard protocol problem. Multi-party verification, tiered escalation, trusted contacts as oracles, ... there are approaches, but nobody's cracked it cleanly yet. The 12-word anonymous account is a solid starting primitive, though.
frank_be
·4 ay önce·discuss
That $120B number is real, but the problem is more subtle than most people think. A USB drive solves "where are my keys", and then creates three new problems: physical destruction (fire, flood, theft), the assumption that your beneficiary knows what to do with it, and the maintenance overhead of keeping it current as you rotate accounts and add wallets.

The hardest design question in this space isn't encryption. It's the human handoff. How do you build something secure enough that a stranger can't crack it, but simple enough that a grieving spouse who's never touched a terminal can actually use it? Most solutions I've seen either punt on that question or assume the recipient is technical. "I secured my keys" vs "my family can actually recover them" is where the real product problem lives imho.
frank_be
·4 ay önce·discuss
The trust argument for self-hosting is real: I wouldn't hand my master seed phrase to a random SaaS either.

But there's a deep irony in self-hosted dead man's switches: they need to work when you can no longer maintain them. Docker images rot. SSL certs expire. The VPS stops getting paid. Your DNS registrar reclaims the domain. In the 15-year scenario (which is the actual scenario this thing is built for) self-hosted infrastructure has a shelf life that works against its own purpose.

Who watches the watchman? You need infrastructure that outlives you, which almost by definition means trusting something external. The question isn't whether to trust. More how to structure that trust so you're not just handing a third party your keys.