guys, instead of making 3 new domains/websites because you dont like the current one at
www.nxtcrypto.org, why not make suggestions to the site? Everything was formed with the idea that we wanted the community to decide what they wanted, and we would make it so
Nice work on getting us all started on this. Keep in mind that for some assets such as BTC you could just imply a certain number of decimal points for more resolution. Its times like this I wish I had gone the CS route in stead of the easier IT route in university - Im no coder. Oh well, wish I could help out more.
But yes, the trust thing will be difficult. Possibly some aspect of account control will assist here, whenever it comes out, since it looks like we will see account control instead of regular multisig.
One of the critical parts of the gateway is the trusted server and that's your area isn't it?
How much would it cost to run a hardened gateway server?
Also, is there a way to set it up so that the keys used for the deposit wallet are only accessible to the gateway program itself? Here I go with the crazy stuff, but I cant help it, I spend all day researching about zeroknowledge this, magical algorithm that. It just gets to the point if I assume that anything can be done, usually somebody says, I read about something like that here
So, let us ignore how we initialize this server as that is most tricky.
I am imagining that there is a way to get a runtime signature of the gateway software code. This will be independently scanned and validated before any wallet access by a separate process. Maybe its as simple as a signed .jar file. We need a secure way to access the wallet for all the different cryptos. We want to make sure only the approved gateway code is able to do this.
I need somebody who knows about multisig, crypto in general, magic, to help figure out how the runtime can be secured. Even if somebody gets access to the server, I want the most damage they could do to be to blow up the server. this is a pain, but with all the pending transactions store in AM in the NXT blockchain, after a delay, everything should be back to normal
I am pretty sure somebody supertrusted needs to set things up, eg. making sure the code is compiled from the approved source and creating all the different keys and putting the backup in a physically secure place to be accessed only in emergency.
Not sure at all the right process, just throwing out something as a starting point for someone who knows how to properly setup a secure server and a bit of crypto magic
a hardened secure server isnt too difficult - any fool can buy the equipment and install it into a secure hosting facility. hardening it from access is a little trickier but can be done. abstracting the runtime for the server is the part that is nearly impossible - would require basically 2 people living together to accomplish that - for this business Id say that is most likely undoable.
will have to think about this more.
