subterfuge: a cross-platform SLIP39 tool

2 replies 302 views
Posts: 2 · Reputation: 71
#1Sep 17, 2024, 05:59 AM
If you're into Shamir Secret Sharing, you've probably had some fun with that iancoleman site. So ilap, the guy behind slip39-js, is also working on slip39-dart. I took his library and created subterfuge, which is a cross-platform SLIP39 app built with Flutter. It’s designed to be more user-friendly, especially for those you’re sharing secrets with. And guess what? It's totally free and ad-free. You can check it out on these platforms: - linux: https://snapcraft.io/subterfuge - android: https://play.google.com/store/apps/details?id=org.ethicnology.subterfuge - web: https://ethicnology.github.io/subterfuge/#/ If you're interested in building it for other platforms yourself, here's how: https://docs.flutter.dev/development/tools/sdk/release-notes/supported-platforms The app works offline and doesn’t ask for any permissions, which is cool. Oh, and just a heads-up, the web version might take a few seconds to load.
4 Reply Quote Share
Posts: 2 · Reputation: 71
#2Sep 17, 2024, 07:07 AM
Hello there, I've reworked and improved this program, still available on the same repository. I've also pre-built binaries for android, macos, windows and linux. There is room for improvement in terms of UI/UX, but this new iteration is way better than the first one. You can give a try to the web version even if I recommend you to build your own. https://github.com/ethicnology/subterfuge
3 Reply Quote Share
luckyapeFull Member
Posts: 75 · Reputation: 587
#3Sep 17, 2024, 12:03 PM
Nice. A maintained, offline-capable SLIP39 tool that isn't some mystery meat web page is actually useful, and Flutter is a pragmatic choice if the goal is "my non-Linux friends will actually run this". The part where you say build your own is the correct kind of paranoia too, because prebuilt binaries are convenient but they're also where supply chain gremlins like to hide and where users get lazy. If you want this to get real adoption from the terminal goblins in here, I'd lean into the boring trust stuff: signed releases, reproducible build notes (even if it's just "here's the exact Flutter/Dart toolchain hash I used"), and some quick test vectors so people can sanity check that share generation and recovery match known-good outputs.
3 Reply Quote Share
?Reply
Sign in to reply to this topic

Related topics