mod6: mircea_popescu: don't raise it before later tonight lol

mod6: i better get one tonight and heed my own advice.

mod6: DONT LET THIS HAPPEN TO YOU, SIGN UP NAO

mod6: i just haven't because i guess i didn't wanna step on my own toes.

mod6: yeah, to be honest, i actually meant to make a new one like 50x before it went up to 30.

mod6: no worries though.

mod6: oh ok, I'll just have to make a new acct then.

mod6: i guess in the past i've had other pgp keys, i think they just expired and I made new ones...

mod6: haha, i'll have to change the expiration or whatever, no big deal

mod6: haha, i set mine to expire in ...

mod6: haha, thats awesome.

mod6: sure..i see what you're getting at. these are great things, looking forward to talking about that more as the time comes.

mod6: i'll be stoked to use it from the car, or wherever. have you ever seen an MPEx trade fly by on twitter and wish you were home to but in a bid? lol

mod6: and then we have a first release. much more to go from there, but it'll allow a user to trade, send commands and see the VWAP and Depth

mod6: just a screen that displays the results from that

mod6: im so excited for the JSONSTAT cmd, thats the only other thing I need to implement really.

mod6: I honestly hope to turn BitOTTer into a fulltime thing if all goes well.

mod6: I plan to add charting and graphing and all kinds of neato stuff actually.

mod6: I see... very exciting feature to be implemented for sure.

mod6: like atomated trades?

mod6: at least that was what was planned a while ago. I want to kinda get a alpha/beta program going

mod6: Well, I had been wrestling with this for a while, but what I thought would be a good idea was if people use me for the referal program at MPEx, they can get BitOTTer to download and also save some on the MPEx registration as I'll kick them back 2.5 BTC

mod6: then put out that alpha release I've been talking about for forever. once that happens, I can get some feed back from all the users and make good changes based upon feeback

mod6: but... hitting some issues with getting the private key back out -- hopefully I can whip up something different.

mod6: what i have code for now, and was trying to make work successfully was getting these three keys into a KeyStore for use as needed

mod6: and your MPEx private key should be vastly important to you -- so trying to give the user a layer of extra protection

mod6: oh for sure. it'll be risky to probably keep any large amts on a mobile device

mod6: currently to trade @ mpex you must be able to clearsign,and enrypt a message - decryption is helpful too!! - this requires the 3 keys I was talking about

mod6: and then you can say, "THANKS MOD6!" instead of "FUUUUUUUUU MOD6!"

mod6: i could write that in also... anyway. then the key will be safe... at least it'll be encrypted if the device is hacked/stolen

mod6: or the user could do it if so desired

mod6: 4) notify the user to delete unencrypted private key file

mod6: 3a) encrypt private key and save output to localfile store

mod6: 3) set the seperate password for the private key

mod6: 2) start BitOTTer and enter the path's to the keys.

mod6: yeah, in this situation that im setting up for the user, the user will have to do this: 1) copy the 3 pgp keys onto the device

mod6: im using spongy castle to read in the PGP keys, I then have to convert them to be able to use them outside of its context, it gets hairy

mod6: then when the user goes to trade, they'll need to enter their passphrase to decrypt the encrypted private key stored on the file system so the application can decipher the return tx statements from mpex

mod6: i don't want to replace the gpg passphrase... im saying that the user can set a seperate passphrase to encrypt the unencrypted privatekey file on the filestore

mod6: huh? i think we misunderstand eachother

mod6: use that... maybe in a future release i can get the keystore thing working better, or change it so the user might be able to select from a variety of different algos to use

mod6: what I was thinking about using is currently a class that implements 256bit AES

mod6: hmmm... well, this wont be a 6 digit pin like that

mod6: yeah, im not sure whatever Jan or whomever was talking about. just want to be clear about that I'm doing :)

mod6: the code can read them in either keyring format or ascii armor'd output format

mod6: the users PGP PublicKey and MPEx PublicKey can stay as they are. no need to do anything with those at all.

mod6: ok. to be a bit more spacific, and the documentation will reflect this... i'll encrypt the private key on the local file store.

mod6: anyway guys, I gotta run along to something else quick. i'll try to save the elaborations on that for #BitOTTer in the future. thx.

mod6: its really getting close. i don't wanna let this damn keystore hold me back when I can just use something else.

mod6: this will take some time, but I want to get this into the hands of a few people who'd like to test it before the end of the year.

mod6: everything will be well documented in BitOTTer so the users will know what they are setting and what stuff means in the application

mod6: i have a screen now where the user goes in and sets the private key for the KeyStore, etc. but now I think I'm just gonna make that be the symmetric key for like AES or something

mod6: I wanna make sure that if anyone uses BitOTTer that they know their key they put on the device is safe at lesat if the device is stolen or hacked

mod6: jurov: hmm! i didn't know that. they really should be just to save a guy if his device gets stolen or hacked.

mod6: right on. no matter what happens, I'll make sure the PrivateKey ring file will be protected