To scan for cash obtained to Bobs silent cost deal with, he wants to make use of his b_scan non-public key for the reason that shared secret is calculated by the sender utilizing a*B_scan.
This query will not be about whether or not host wallets / companion apps for {hardware} wallets will make the most of scanning servers or some other solution to implement scanning however slightly how they’ll take care of the non-public key b_scan being required to be “on-line”.
- {hardware} wallets typically don’t assist exporting non-public keys (and mustn’t imo.)
- BIP-352 says that wallets MAY use BIP32 derivation paths however this would possibly not be potential for {hardware} wallets that do not export non-public keys.
How might potential implementations appear like? The host pockets / scanning server might simply compute all A (sender’s public key a1 + a2 + ... + an for n inputs) after which {hardware} wallets might have an API to calculate the shared secret given the A?
Recovering the pockets steadiness from a sure block peak (the block peak that the {hardware} pockets rolled out silent cost obtain for instance) can be numerous work, and for all subsequent receives the {hardware} pockets additionally must be linked.
Does anybody have an concept how {hardware} wallets might probably take care of this with out destroying UX / including complexity to the {hardware} pockets firmware?
