Can this be packaged as a distributable EXE? (and other thoughts)

[xenithorb]

I've been waiting to use something like this for a while, but the problems are as follows:

I'm a technical person surrounded by non-techie loved ones. Anyone I would will my seed to would basically have a next-to-zero chance of restoring it with current tools that utilize SSS. Additionally, the existing tools are not standardized and thus you can not simply tell someone to use the SSS algorithm to recombine the secrets, it doesn't work because they don't all follow the same exact format or algorithm. (I blame the fact that this was never standardized). The program must encompass most if not all of the following traits:

1. Must be easy for laymen to install: In this world that means easy on windows. 1a. An alternative may be a small bootable ISO, but teaching someone to boot a USB can be non-trivial.
2. Must be stable and operate predictably: instructions that I put in a will or document in a safe box should remain working years down the road, and should require minimal upkeep and maintenance to ensure that the safely stored secrets continue to work.
3. It's likely that laypeople are using this to restore something of value from a deceased person that they presumably are close enough to in order to have the necessary secrets, the program should make it very obvious and clear (because they may be grieving and stressed) to not to use this on an internet-connected device. The program should present the user with a very clear warning of this, and the possibility that if they do this on a compromised computer they could lose everything. The program should make it clear that it would be in the best interest of themselves that they should seek technical help from a close friend of family member (a truly trusted party) if they don't understand what any of that means and why it's important.

My experience with node thus far is that what is built with it often involve a deep network of dependencies that may drastically change, fall out of availability, and generally bit-rot over time. What strategy is being used to protect against that?

[cryptohazard]

Do you find a docker alternative better? I am wondering if people are more and more going to share their work using docker.

[xenithorb]

I don't think so really...

I'm talking more about passing the "wife test" or the "grandma test" - in general, thinking about how to pass along secrets to computer laymen in such a way that doesn't necessitate much know how and technical prowess

[cryptohazard]

The usual trade-off is web-based I fear. Or some phone app to make it worst.

[xenithorb]

That's why I asked for something like a self-contained .exe:

1. It will likely work on most windows versions
2. One can put it on a thumbdrive and instruct the other party to use it on a secure computer 2a. If that's not suitable, the bootable iso option could be a verified image (by the project) that contains a minimal command line to execute the script
3. Dependencies are static and don't rely on anything else externally

[oed]

Hi, thanks for your comments. I can also see a need for something that is more aimed at laypersons in case of death. However the intention when I was not to protect against death , but for loss of my hw device. In that case I could just ask my friends and family for their shards.

That being said, pull requests are of course very welcome :)

[lobsterpub]

Possible to use something like this to create standalone exe?

https://github.com/zeit/pkg

[oed]

@vm81 Cool, that looks promising. Will check it out when I have more time.

[oed]

@vm81 added som simple binaries using pkg :)

[lobsterpub]

@oed Awesome, will you be uploading them to github?

[lobsterpub]

@oed working good on Windows 10, thanks!