Nostr Broadcast (or a better name TBD)

[lollerfirst]

This NUT aims to address this privacy concern when wallets check for token melt status, while also possibly facilitating future implementations of the famously proposed PoL scheme by calle. This is because the mint is effectively building a Proof of Liabilities attestation (or report) composed by all the nostr notes containing all of the secrets/blinded signatures.

[davidcaseria]

Should we keep the terminology the same, i.e., burn -> melt?

[lollerfirst]

I thought BURN would be appropriate to describe the burning of tokens in both the swap and melt operations, while MINT is used to describe all events that create Blind Signatures (which is all of them as even melt can generate change outputs).

[davidcaseria]

We should note how the pubkey field is a compressed public key and how Nostr public keys are x-only.

Also, this is unrelated to this NUT, but I assumed the pubkey field was for the LN node ID, but maybe that's not the case.

[lollerfirst]

We should note how the pubkey field is a compressed public key and how Nostr public keys are x-only

True.

Also, this is unrelated to this NUT, but I assumed the pubkey field was for the LN node ID, but maybe that's not the case.

It would make sense if it could be specified as an env setting. In Nutshell it's derived from the seed. I am not sure of this but i believe you are required to have a seed because a bunch of other things depend on it.

[davidcaseria]

Kind 30078, as defined in NIP-78, needs a d tag for the context. However, I also think this is an issue because this event will be replaced every 5 seconds. I don't think that's the intention, right?

[lollerfirst]

Totally forgot about the d tag

[lollerfirst]

No that's not the intention. I thought this event would be just like a text note but invisible to normal clients. I didn't think posting successive ones would replace the older ones. If that's the case, we need another event kind.

[davidcaseria]

It probably makes sense to write a NIP for a specific event kind.

[davidcaseria]

In CDK, I believe we call this status "reserved." This is not directly related to this NUT, but it would be good to have standardized terminology across implementations as much as possible.

[lollerfirst]

I have taken this passage from NUT-07's gospel and readapted it.

[thesimplekid]

In CDK we use RESERVED and PENDING for different cases. A PENDING proofs is one that is currently involved in a transaction at the mint, on a melt when the ln payment is in the process of being paid this is generally quick and the proof is not pending for long but if a payment is stuck for examples it can remain in this pending state until the payment goes through or fails.

RESERVED is used by the wallet to indicate when a proof as been included in a created token this is to protect it from being accidentally double spent and included in another transaction before whoever received the created token claims the proof. The mint is unaware of this RESERVED state and only has 3 state UNSPENT, PENDING and SPENT`` while the wallet has the 4th RESERVED` state.

I think its worth making this distinction for wallets and would change this to be reserved

[lollerfirst]

Fixed

[thesimplekid]

I don't think we should just use the kind: 0 for this, instead i would recommend we use a replaceable event with the mints NUT-06 info in it. This would also serve as a way for a mint to announce themselves on nostr.

[thesimplekid]

As David mentioned above it should be a different kind then a kind: 1 as this isn't a general text note and is specific. Could even be a different kind for MINT and BURN the e tag of the previous event should also be included.

[lollerfirst]

I assume you are referring to the "Posting Notes" section, here.
What event kind would you suggest?

the e tag of the previous event should also be included.

Good idea.

[thesimplekid]

What event kind would you suggest?

There aren't any that would fit this so an unreserved kind and then propose it as a NIP?

[lollerfirst]

I am thinking we should probably add another event case for letting the Mint (or Mint operator, manually) publish the signed outstanding balance for that particular epoch, to be consistent with the PoL scheme (see the example picture i've included)

[davidcaseria]

With the current event structure, a client must query for all the mint events since sending the token, decode the contents, and check when it is claimed. This may be an overwhelming number of events for the client to process for a large mint or token that has not been claimed for a while. Can the event be structured to be partially filtered on the relay
while not leaking privacy?

[lollerfirst]

@davidcaseria

While not leaking privacy

If they are filtered on the relay, and there is cooperation between the relay and the Mint (or they are operated by the same entity) then you are back to square one. The idea here is the wallet should not communicate x or Y to anybody else other than the receiver of the token.

What we COULD do is have the client request a relay the Bloom filter for a particular mint and epoch, where all the burnt secrets have been inserted. The relay calculates (or has it cached) the Bloom filter, as they have all the necessary information. Then they send it to the client.

Then looking for spent secrets in the Bloom filter is much easier for the client if there have been many BURN events since the timestamp of sending.

[lollerfirst]

TO BE CLEAR:
The Mint BATCHES the MINT and BURN events to be broadcast.
I thought it was obvious from the wording of "regularly" updates but apparently it's not.
We don't want to publish events on every client request the Mint processes.