Skip to content

Create encrypted_descriptor.md#6

Open
PeterMcBTC wants to merge 1 commit intoproto-at-block:mainfrom
PeterMcBTC:Encrypted-descriptors-using-2-of-3-public-keys
Open

Create encrypted_descriptor.md#6
PeterMcBTC wants to merge 1 commit intoproto-at-block:mainfrom
PeterMcBTC:Encrypted-descriptors-using-2-of-3-public-keys

Conversation

@PeterMcBTC
Copy link

@PeterMcBTC PeterMcBTC commented Jul 16, 2025

Encrypts the descriptor using a symmetric key derived from any two zpubs (e.g. user + block), so that only two of the three participants (user, block, recovery) can decrypt it.
Implemented in Java using AES-GCM.

This allows the server to store or transmit the descriptor without being able to view addresses or wallet balances, significantly improving user privacy

Useful for server-side encryption of descriptors without exposing wallet structure or transaction history.

@PeterMcBTC
Create encrypted_descriptor.md
36e11ae 
Encrypts the descriptor using a symmetric key derived from two zpubs (e.g. user + block), so that only two of the three participants (user, block, recovery) can decrypt it.
Implemented in Java using AES-GCM.
Useful for encrypting descriptors server-side without exposing wallet structure.
@PeterMcBTC
Copy link
Author

PeterMcBTC commented Sep 11, 2025

I noticed Liana recently proposed a draft BIP (Bitcoin BIPs PR #1951) on encrypting descriptors via symmetric keys derived from zpubs, similar to my PR (#6). It would be amazing if Bitkey could align with this approach to ensure wallet balances remain truly private.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@PeterMcBTC