Hi There! I'm Jan, the developer, founder and personal chef of this project.
The last time that I made an update was a good one, I wanted to do a post about every update I made, but I don't think it was a good idea to do a post about EVERY SINGLE BIGGEST CHANGE IN ALL HIVEDEBIT HISTORY, which was changing a string from "I have account" to "I have AN account".
So I just stopped to do some updates and started focusing on how to keep doing a good job with this, my personal developer @jthomasewsky have been traveling a lot and we not paying this man to just travel, what he thinks we are? his personal fund for trips and pancakes? what an asshole.
But I talked with him and now he made some interesting updates, he already had them but he said that in a car around Colombia it's impossible to do an update.
I finally waited for him at his house and forced him to do an update, that's why you are reading this post.
Did we miss Naira?
I always take a look on Distriator and new stores registered on Distriator like @happycustomer and @starkerz made me realize that we have interesting currencies ngl, we have:
- Colombian Peso (4000 per HBD)
- Mexican Peso (20 per HBD)
- United States Dollar (1 per HBD)
- Argentinian Peso (1400 per HBD)
- Quetzal (7.5 per HBD)
But the great question that u and me can do is, do we have more people using those currencies more than others, and the answer is no, that's why here I apologize to @happycustomer for not having Naira on HiveDebit, if you don't know as I didn't, Naira is the currency of Nigeria, country that uses distriator as Bitcoiners Lightning.
BUT NOW... WE HAVE NAIRA!
I have implemented new currencies into HiveDebit.
- If you are in Nigeria you can do invoices in Naira and start charging people.
- If you are in Brazil you can use Real to start charging people for Caipirinha.
- And if you are in Europe, I'm sorry for you, but at least you can use Euro to charge people, lmk if you get banned, I have places in Colombia where you can stay.
A New Image for HiveDebit
"I started a joke which started the whole world crying, but I didn't see that the joke was on me"
If you are here since the beginning, lmk who was first in Malvinas I have been dealing with a guy that says that British people were there first, so if you were here at the beginning lmk, but if you have only been here since the beginning of the project, then you know that the logo of HiveDebit have 2 versions, one of it is the normal one of Hive that says HiveDebit.
Top Left Logo
And the other one it's a joke of MasterCard, saying masterhive, but sometimes is better to do not have troubles with people, neither with mastercard, cause they know where I live, so I prefer to change the logo and have one logo for HiveDebit, a simple and cute one.
Simple and minimalist logo, this will help on cards design to have them more cool than ever.
Also we have it in black if you want.
Let's Talk About Security
As you know, one of the inspirations to create HiveDebit was the Bolt/Lightning Cards, cool NFC cards to do Lightning payments, but do you really know how they work? Are they decentralized?
The answer is no, the way they work it's really simple, Bolt is a standard for NFC payments, the way it works is that your card is linked to a Server with the information of your account, if you scan with NFC Tools your Lightning Card you'll find a link that can change depending on who issue the card, in my case I have Tiankii and LaCrypta, and the link it's just a link from their server/api, when you tap to pay wallets like Blink just take the link and ask for the money, so there's no transactions happening from Peer to Peer, it's only the server that holds your money and send it to the wallet.
This means that if the server broke, you can not use the card, and if the card is the backup of your money you are completely fucked.
After explaining to you how this thing works, it's time to talk about the truth, the truth is that Lightning Cards are sucking the tires of my Concorde, what you thought I was about to say?
How it Works on HiveDebit?
Simple, you give me your active key and I withdraw the funds, so please if you want to support me just create a HiveDebit card, well actually, when we started the project the main focus was, how I can design a way where me as the developer can not get the money from the cards, and I got many solutions, but we have 2 different problems here.
Usability VS Security
One of the options for HiveDebit was pre-approved transactions or authorities, what's the problem with this?
Basically if you haven't seen is that grandmas are using HiveDebit, do u think a grandma knows how to do pre-approved txs? maybe my grandpa knows how to manage UTXOS and do Coinjoin, but I don't think yours can, so this needed to be simple to use.
Other Option was the custodial way, we just store the keys and you have a link in the card, as it works with Lightning, so if your card get steal you just tell me and I'll block it, but I would have the active keys of a lot of people, how you can know that I'm not going to take 8K from your account and get a Cherokee?
So the last option was relay on you, you hold the active key, so if you live in Nigeria, I can not steal your active key, cause is physically stored on your NFC Card encrypted, so if I wanted it, first of all I should be in Nigeria, and I think that's a bit too far from here, if you are a US, Canada or UK Citizen living in your country you can be relaxed, I don't have VISA to go for your HiveDebit card.
So Mr. Jan, this means that if you are near to me you can steal my card? The answer is yes and no.
PIN is Required
Let's say that I steal only the encrypted content of your card, you'll be completely fucked? Nop, remember that your card have a PIN, normally is 4 Digits, but in this update you'll need to remember 2 Numbers more, if I don't have the PIN I cannot do transactions with your card.
But Jan, are you stupid or what? I would try to break the card to get the Active Key, and me too, but here's the trick, this is decentralized technology, it means that if I wanted to help you or steal you, I have the same probabilities, ZERO.
This relay on you, if you are using a NFC 215-216 Card and you are using a 6 Pin Digit those are your probabilities:
If Mr. Jan have only the encrypted content but not the UID+PIN he would need a lot of years to get the active key.
If Mr. Jan have the encrypted content and the UID it would take 40 Minutes with a Super PC and GPU (worth 1.6K) doing brute force to decrypt it, if the hacker is only using a good PC (worth 2K) it can take him 4 hours, if he is using a Laptop it can take 10 hours, and a normal CPU or Medium-High it can take 28 Hours.
If Mr. Jan have only the encrypted content and the PIN it would take him a lot of time to get it, more than a few months, maybe years.
So, are you telling me that if the Hacker get my encrypted content and my UID I'm completely fucked? Not at all Mr, we have some solutions for you.
If you keep using NFC 215-216 you are going to be using this probabilities, but if you have a secondary account for your HiveDebit card you are more safe, we also are going to offer in our website something to change your Active Key so you are more safe.
If you change to NFC 424 DNA, you are more safe, it's really hard to get the information with a Flipper Zero, there are some ways, but the only guy that I know it has a Flipper is me and @vaultec, so just run if you see him or me, nah just kidding you'll be more safe and a Hacker with a Flipper Zero will have really low probabilities to get all the information from the card, basically cause when you scan the card you only get an ID, but not the encrypted content thanks to his design.
JavaCards, I'm working in a model with JavaCards, the ones with the Chip, so maybe you'll be able to use them AND SIGN THE TRANSACTIONS INSIDE THE CARD! Safer than ever.
But Jan are you stupid, why you didn't told us about the NTAG 424 and forced us to use 215-216, basically cause I'm from LATAM, and I know how hard it is to get some products, like the NTAG 424, in my Local Market I'm only able to get NTAG 214-215-216, not NTAG 424, and I'm sure you are in the same situation or people is going to charge you more for the NTAG 424, and the idea is that this can be used by everyone and cheap, no need for the most expensive card.
But Jan you keep complaining about your bullshit of system, this is a cancer for hive, so first of all, this is decentralized as fuck, if your keys get stolen It wasn't me, as I said, the security relay on you, or you think that when someone steal your private key of Bitcoin you are going to call Satoshi and daddy Satoshi is going to give it back to you, nop sir, you get completely fucked, the same here, you're managing your own keys, self custody as fuck, but this is a project funded by the DHF, which means that I should follow what people wants.
If you want a more secure way, like centralized servers let me know and I'll change it to centralized, but don't come to me when Bitcoiners start laughing about the Hive Centralized cards, you are in the position to laugh them thanks to me.
If you have a better solution lmk also, but don't talk about Private Key Generation, that relays on a offline PC and is not safe at all, don't talk about Pre-Approvals or Authorities, grandmas don't know how to do that.
After saying all these things, the conclusion is that I made my best in terms of decentralized security, but anyway I improved it a little bit more for you cause I know u love me and i love u.
Gateway To Growth – Secure Financial Utility (GTG-SFU)
If you want to be really secure, and if we want to provide people HiveDebit cards we need to think.
And I have improved the next things:
Now you need to Update your Card to 6 PIN Digit and Confirm it.
Now you can create a HiveDebit card with NTAG 424 DNA and get invisible to Flippers.
Open Source System (Not yet available to look), which means that you can see how we encrypt the card and people can know how to hack it, but this ensure that we have made a good job, cause we know someone is going to take the code and try to steal the cards, and if it's open source as we doing it, we know risk are minimized.
And I haven't finished the GTG-SFU update, but these things are really important for your security and my pancakes.
But Mr you are an asshole, lmk how my card get encrypted.
Yes sir, it's really basic but cool.
How the key is derived
The user picks a 6-digit PIN.
We read the tag’s UID from NFC.
We run a memory-hard KDF:
Argon2id(PIN + UID, salt, memory≈256 MiB, time=3, output=32 B).
The result is the AES key.
Why Argon2id? Because it makes each guess expensive in memory bandwidth, slowing down GPU/ASIC brute-force attempts.
How encryption works (issuance)
Generate fresh random salt and nonce.
Derive key with Argon2id as above.
Encrypt the wallet payload with AES-GCM using nonce.
Store {ver, uid, salt, nonce, ct} on the NTAG as NDEF.
AES-GCM gives confidentiality and integrity (if a bit is flipped, decryption fails).
How spending works (POS)
POS reads the NDEF record and checks ver ≥ 2.
POS asks for the PIN.
POS re-derives the key with Argon2id(PIN + UID, salt) and decrypts ct.
POS verifies sha256(ak) == ak_hash and checks tmax ≥ amount.
POS signs a transfer on Hive with the decrypted active key and immediately wipes the key from memory.
But Jan when you pay the POS gets the active key, this is really unsafe, what do you prefer? One POS infected because it looked for hot latinas in the area, or the FULL SYSTEM compromised and hacked, so if every single card do tap the system will steal the active key.
And also, don't worries, I already thought about it, and I have a solution so your key is not compromised with the POS, in this version no, because sadly as the real concorde, we need to stop flying it cause it's cool, it's great, but it wasn't perfect, just keep reading you'll find the next version of HiveDebit.
If you are using a POS or you create invoices, just make sure you don't look for hot latinas in your area, or use incognito mode to use HiveDebit if you are skeptical, but remember, this is decentralized, don't try to say, you should decrypt it in the server, cause I would have access to the key, and again, if you have a best way to do it, LMK and I'll do it, and if someone says "What if you get a 2FA code?" I'll go to his house and slap him with a pancake.
Engines OFF
Concorde was a good version, good improvement, good UI/UX, but as I said one time, this is not the final version, the final version is going to have more stuff than what you have right now, which is the simple stuff but vital, do transactions, tap to pay, simple and safe.
But I want to give you all the great stuff, big stuff and concorde was not able to keep carrying all the updates that we doing.
That's why start saying goodbye to Concorde, Concorde Code will be released soon on Github if you want to do a Fork and run it again.
Concorde was one of the best versions for me as developer, I had the pleasure to see what a normal user does and what he likes and how he likes it, that's why next version will be perfectly made for you, after saying this, please say Goodbye to Concorde, and be prepared to say Hi to the new version of HiveDebit.
A New 5.2 Engine - HIVEDEBIT GRAND CHEROKEE
If you are new to this world or not related to the Grand Cherokee, no I'm not talking about the Cherokees in USA, I'm talking about the Jeep Grand Cherokee, a car capable to go through mountains, move them and break them with a Powerful engine.
Why Grand Cherokee?
The Grand Cherokee is a car that is expensive, it does the same as the Jeep Cherokee, the normal stuff, just drive, but the Grand Cherokee have luxury stuff for you like the New version of HiveDebit have luxury stuff for you, so now I'm going to feel as Steve Jobs showing you what I have for you.
Hive Hardware Wallet
Just Imagine being able to store your keys on a card, you have always save them in Whatsapp or telegram, I know you do it.
That's why HiveDebit Grand Cherokee offer you the First way to store your Private Keys on a Card, the JavaCard.
A Card that in his interior is able to run code, a Bitcoin Project called Satochip offer the same thing, be able to store your private keys, and we are offering you the same, but not to store Bitcoin Private keys... to store your Hive Private Keys.
Carry with them, hide the card, a lot of possibilities with the card, better, safer and cheaper than a Ledger.
Mmmm but Mr. Jan I'm not interested on that.
Mmmm andate a la mierda yo aca trabajando por vos y vos no me quieres.
So, I said that I love you guys.
If you are not interested in this thing that I have for you then you should see the next one.
HBD And Bitcoin in the Same Card
Have you had an argument with a Bitcoiner about the Lightning cards and that you can not pay to Lightning, well that's going to end, sadly we can not swap automatically from HBD or Hive to Bitcoin Lightning, we are going to do it really easy for you but we are not going to make it automatically for you, but you are going to be able to pay to NFC Bitcoin Lightning Invoices WITH YOUR HIVEDEBIT CARD!
But Jan, I don't like bitcoin, I hate bitcoin, do u have something else for me?
Apple is not going to Win Me
As you know I said Apple is not possible to use HiveDebit technology due to restrictions, but no worries, I have some plans so you dear Apple user can use HiveDebit with Apple, I'll solve it for you.
Pss, come here, I have a secret for you, have you seen how to send things through Airdrop?
Do you imagine being able to send Hive like that? Yes? I know it's cool, but I'm not imaging about that, I'm doing it, just wait for it.
When I need to Update my Card?
Right Now Mr what you waiting for? If you go and do tap to pay the system is going to say nop, you need to update the card.
But Mr Jan I don't want to create again my card, idk where my active key is, no worries Mister, you just need to go to HiveDebit.com and then tap where it says Update Card, tap and update, put the new PIN and start using, more easy than this you can not find.
Well this is the end of the update, I have done a lot of stuff, but I feel like no, let me know what you think about all these things, do you have better solutions? let me know.
I hope you have liked the effort that I have put on HiveDebit, but you know what is going to be more exciting for you Mister DHF Voter, THE FUCKING EFFICIENCY OF THIS PROJECT.
High Efficiency for DHF
At this point we should have spent $42,583 USD, but we have only spent $16,303 USD, More cheap than you thought eh?
Okay Jan, but money doesn't matter for me, it matter the results.
In 25.7 Weeks I have done the work of 36 Weeks and the Progress it's really high and I'm above the Timeline, so I should have few months of paid rest, nah just kidding I keep being a public employee of the DHF, so I keep working on HiveDebit and being efficient with Time and Money.
- Cumulative Hours Burn: 2040
- Cumulative Progress: 1440
Remember, that in some weeks of the project I was supposed to have a team of 3 people, but the only 3 people working on this is Jan, me and Jan.
How do I do it? Simple, IDK don't ask me, just eat pancakes.
But Jan how do we know that you have really spent that money, well go to the account of @hivedebitfund and check the wallet, money is there mister and the progress you can use it.
Grand Cherokee version is near, take a look so it doesn't hit you.
Eat Pancakes, Drive Cherokees and say hi to @blocktrades from me if you find him.
This was a funny update to read. The next version sounds awesome, the ability to pay Lightning invoices with the card would be amazing.
Congratulations @hivedebit! You have completed the following achievement on the Hive blockchain And have been rewarded with New badge(s)
Your next target is to reach 4750 upvotes.
You can view your badges on your board and compare yourself to others in the Ranking
If you no longer want to receive notifications, reply to this comment with the word
STOPWho’s the hot guy in the photo?