The development of BitID has had some progress, and we have now a working wallet prototype based on Android Bitcoin Wallet (bitoinj).

The user flow is quite nice and if you are curious here is a short video demonstration :

https://www.youtube.com/watch?v=3eepEWTnRTc

By default, each new first auth request will create and save a new address (SQRL like). It could be based on BIP32, but this works also without.

This requires to add metadata to addresses, as described here :

https://github.com/bitid/bitid/blob/master/bitid_metadata.md

It open also the fields for decentralized 2FA as well as "pay as guest" checkout in conjonction with BIP70 payment request.

Eric

On Tue, Apr 22, 2014 at 8:34 AM, Jan Møller <jan.moller@gmail.com> wrote:

The reason why client side certificates have never gained traction because it is a pain to safely store/backup secrets.
In bitcoinland we are forced to solve the problem of safely storing secrets, and over the years we have come up with software and hardware solutions to make this safer and easier to manage for ordinary people. Solving this is paramount to the success of Bitcoin, and nobody has solved it before on a grand scale.

I see no reason for forcing end users to use two different mechanisms for safely managing secrets.

I agree that using a bitcoin address for authentication purposes might be confusing and potentially linking your funds with your identity. So I am all for using something else than bitcoin addresses and bitcoin private keys.

With bip32 we have finally agreed on a mechanism for generating a hierarchy of bitcoin private keys from a master seed. A similar approach can be used for generating a parallel hierarchy for authentication purposes.

- Jan