Skip to content
master
Switch branches/tags
Code

Files

Permalink
Failed to load latest commit information.

🛠 Gordian Products & Technologies

(Previously known as Bitcoin Standup and FullyNoded-2)

by Peter Denton and Christopher Allen

Gordian is a cryptowallet architecture focused on advancing the interests of the cryptocurrency user community. It's meant to enhance independence and resilience by granting you the ability to robustly control your own keys, and thus your own finances, and to do so be creating openness, so that you won't be locked into anyone else's security model or (worse) system. It supports #SmartCustody and responsible key management.

  • Independence. Gordian focuses on user freedom from external oversight or control.
  • Resilience. Gordian ensures that users won't lose their funds via any means.
  • Openness. Gordian supports open infrastructure that allows developers to create their own applications.

The Gordian system contains a wide variety of products, including mobile apps, desktop programs, and do-it-yourself kits. They are connected together from above by an architectural methodology and from below by a series of libraries and protocols. They also all serve the same common goals:

(It's meant to cut through a traditionally knotty problem in Bitcoin development.)

This repo contains a table of contents for various the Gordian system projects and features. Please see individual repos and pages for more information.

Quick Links for App Repos

Quick Links for Articles

Overview: Gordian Architectural Model

The Gordian architecture is based on a theory of functional partition.

Rather than following the design pattern of classic services, which group multiple services into singular applications, Blockchain Commons instead separates services from each other. Doing so improves both privacy and security by reducing the value of honeypots and also improves functional design by ensuring that each application is precisely and concisely able to perform a specific function.

Many of the Gordian applications are actually microservices, intended to perform small and simple but necessary activities as part of the blockchain ecosystem.

In order to maximize the utility of its functional partitions, the Gordian system also introduces gaps between services, which further the privacy and security capabilities of the architectural model.

Airgaps. The traditional manner for segregating services within a cryptographic network is to use an airgap. This is a physical gap that keeps the segregated services from talking via any sort of connected network. Instead, data flow between the services occurs via QR codes or other methods of small-scale data-only transfer. An airgap is often used to protect private keys on a non-networked device. Airgaps are built into some Blockchain Commons services, but are optional.

Torgaps. This is a new methodology for segregating cryptographic services, used when the services must be networked. As the name suggests, it places an onion link between the two services, enabling privacy and security while still allowing connectivity. Its power can be increased further with quorum computing, which aggregates services across different providers.

Using functionally partitioned services, linked by airgaps and torgaps, the Gordian architecture creates a powerful and safe new methodology for financial, data, and information operations on the internet. It also creates an interoperable market for cooperative competition, where various creators can introduce their own services, improving the overall architecture through their competitive designs and ensuring survivability of the model as a whole.

Overview: Gordian App Map

The Gordian architecture model is made concrete through the Gordian-branded wallet services and microservices, all linked by airgaps and torgaps, as laid out in the following diagram.

The core of the Gordian system is the Wallet and Server:

Gordian Wallet. The heart of the Gordian system, the Gordian Wallet is a mobile Bitcoin wallet that supports sophisticated #SmartCustody features such as multi-sigs and PSBTs. It acts as: a policy coordinator, determining how you set up your accounts; a transaction coordinator, creating transactions based on your policies; and a broadcast coordinator, determining how to send our your transactions. The Gordian Wallet is also self-sovereign, which means that you have total control over it and how it interacts with the rest of the Bitcoin network, including choosing your full node and your pricing service.

Gordian Server. A full-node server, created by Blockchain Commons' Bitcoin Standup scripts, running on a Mac or Linux machine. It connects to Gordian Wallet via a torgap. In the standard Gordian system setup, all transactions are signed with a 2-of-3 multi-sig, with one key secured by Gordian Wallet, one key used by Gordian Server, and one key saved offline. (Of course, since the Gordian system is self-sovereign, you can choose to use any other full-node server.)

The Gordian system also supports microservices:

SpotBit. A price-info microservice, used by Gordian Wallet (and potentially other Gordian services) through a torgap. Spotbit can be used to aggregate Bitcoin pricing information from a variety of exchanges and to store that data.

For higher security, the Gordian system may optionally be used with airgapped services that ensure that your private keys never touch a network:

Gordian Guardian. A cryptographic seed manager for your iOS device.

LetheKit. A do-it-yourself hardware kit that can be used to generate secure seeds for Bitcoin. It shares functionality with Seedtool, but where seedtool is a reference and a demo, LetheKit should be a secure seed-generation platform when it hits full release.

Gordian Cosigner. An offline PSBT and multi-sig signer. You can import keys and read PSBTs via QR code. After you sign the PSBT, you can then move it back to your Wallet, which will coordinate the broadcast of the transaction.

Overview: Gordian Protocols

The Gordian system of course uses standard protocols for Bitcoin, to interact with the trustless network. We are also developing and expanding protocols of our own as well as those created for other technology categories, to fill in gaps in the mobile wallet ecosystem. These protocols are in turn incorporated into many of our Gordian apps.

Bytewords. Blockchain Commons developed its own binary-to-text format because of flaws in current ones, such as the variants that exist for base-64, and the fact that none of them convert efficiently to the QR codes used widely in Bitcoin applications. Bytewords stays within the 31 characters that are well supported by QR codes (that's letters plus numbers minus URL-breaking characters), allowing more efficient and safe usage.

CBOR. Blockchain Commons represents binary data as CBOR, or Concise Binary Object Representation, which is RFC 7049. We feel that this self-descriptive language overcomes some of the flaws in pure JSON, while still retaining solid compatibility.

Quick Connect API. A spec for a deep link URI and a scannable QR Code, used to connect a wallet and server across a gap.

SSKR. A replacement for SLIP-39 to resolve issues where SLIP-39 and BIP-39 do not round-trip.

URs. The objective of many of our protocol expansions was to create a more robust system for encoding PSBTs, which were otherwise limited by the maximimum size of QR codes and the inefficient ways in which current text formats interacted with them. Much of that comes together in our Uniform Resource (UR) encoding, which is built upon Byteword and CBOR structures. It creates a methodology for encoding PSBTs as QR codes, either using sequential or animated QRs.

Please see the Airgapped Wallet repo, especially its discussions, for more on our work with the community to advance wallet state of the art.

Overview: Gordian Crypto Commons

To further support our methodologies and protocols, Blockchain Commons has created a number of Gordian reference libraries, which embody our protocols, as well as demo apps and command-line programs.

These are fully described in the Crypto Commons Overview.

Blockchain Commons is also happy to use libraries from other sources, if they're stabled and well-supported.

Spotlight: GordianWallet on iOS (and macOS)

GordianWallet-iOS is a purpose-built remote app for securely connecting to your node over Tor from anywhere in the world. Combined with your GordianServer, it provides you with a powerful suite of tools for managing Bitcoin. You can scan the QuickConnect QR code from GordianServer-macOS and easily create mutli-sig wallets where one key gets stored on your device, one on your node, and one in offline backup.

Gordian Wallet app Home Screen Gordian Wallet app Home Screen

GordianWallet-iOS is a macCatalyst app and can therefore be used on either iOS devices or macOS.

Install iOS Testflight

Install for macOS

Other Wallet Options: FullyNoded for iOS

GordianWallet author Peter Denton also provides an alternative app: FullyNoded-iOS, a feature-rich Bitcoin wallet.

Spotlight: Gordian Server on MacOS

GordianServer-macOS.app is an app that provides personal one-click installation for Bitcoin Core and Tor. It's built on Bitcoin Standup technology that presents a QuickConnect QR code that can be used to pair mobile wallets for remote use over Tor V3.

GordianServer-macOS has been developed and tested on "Mojave" and "Catalina", it can be installed via a DMG or an Xcode compilation

Install from DMG

Other Node Options: Bitcoin Standup for Linux

Linux Bitcoin-StandUp-Scripts achieves the same thing as GordianServer-macOS, but comes in the form of Linux scripts rather than a central app.

The easiest-to-use version of the Linux scripts run through the StackScript system at Linode, but you can alternatively use Linux scripts that have been tested with Debian Stretch and Ubuntu 18.04.

Spotlight: Gordian Cosigner on Android, MacOS, or iOS

The multi-platform GordianCosigner app for Android, iOS, and MacOS very simply allows for a PSBT to be signed by the input of a xprv, 12-word mnemonic word set, or QR-UR. It does not transmit the PSBT, but just updates it, for finalization on another node.

This is our first example of a rapid multi-platform deployment, and also our first example of one of patrons (Bitmark) directly working with us to release an app for the Commons.

Additional Information

Further Docs

More information about the purpose and design of the Gordian system can be found in the following documents:

  1. Why Run a Full Node? Why would you want to run a full node in the first place? There are advantages in validation, privacy, security, liquidity, and education.
  2. Security for Your Gordian system. Notes on ensuring the security of your GordianServer.
  3. Why Gordian? What the Gordian name means to us.

Discussions

The best place to talk about Blockchain Commons and its projects is in our GitHub Discussions areas.

Gordian System Discussions. For users and developers of the Gordian system, including the Gordian Server, Bitcoin Standup technology, QuickConnect, and the Gordian Wallet. If you want to talk about our linked full-node and wallet technology, suggest new additions to our Bitcoin Standup standards, or discuss the implementation our standalone wallet, the Discussions area of the main Gordian repo is the place.

Blockchain Commons Discussions. For developers, interns, and patrons of Blockchain Commons, please use the discussions area of the Community repo to talk about general Blockchain Commons issues, the intern program, or topics other than the Gordian System or the wallet standards, each of which have their own discussion areas.

Related Projects

The full node created by the Gordian system can also be interlinked with other projects from Blockchain Commons.

  1. Learning Bitcoin from the Command Line is a tutorial for programming the bitcoin-cli, which can be run using a full node such as the one created by the Gordian system.

Status - Varied

Please see individual projects for current status.

Origin, Authors, Copyright & Licenses

Unless otherwise noted (either in this /README.md or in the file's header comments) the contents of this repository are Copyright © 2020 by Blockchain Commons, LLC, and are licensed under the spdx:BSD-2-Clause Plus Patent License.

In most cases, the authors, copyright, and license for each file reside in header comments in the source code. When it does not, we have attempted to attribute it accurately in the table below.

This table below also establishes provenance (repository of origin, permalink, and commit id) for files included from repositories that are outside of this repo. Contributors to these files are listed in the commit history for each repository, first with changes found in the commit history of this repo, then in changes in the commit history of their repo of their origin.

File From Commit Authors & Copyright (c) License

Financial Support

The Gordian system is a project of Blockchain Commons. We are proudly a "not-for-profit" social benefit corporation committed to open source & open development. Our work is funded entirely by donations and collaborative partnerships with people like you. Every contribution will be spent on building open tools, technologies, and techniques that sustain and advance blockchain and internet security infrastructure and promote an open web.

To financially support further development of the Gordian system and other projects, please consider becoming a Patron of Blockchain Commons through ongoing monthly patronage as a GitHub Sponsor. You can also support Blockchain Commons with bitcoins at our BTCPay Server.

Contributing

We encourage public contributions through issues and pull requests! Please review CONTRIBUTING.md for details on our development process. All contributions to this repository require a GPG signed Contributor License Agreement.

Discussions

The best place to talk about Blockchain Commons and its projects is in our GitHub Discussions areas.

Gordian System Discussions. For users and developers of the Gordian system, including the Gordian Server, Bitcoin Standup technology, QuickConnect, and the Gordian Wallet. If you want to talk about our linked full-node and wallet technology, suggest new additions to our Bitcoin Standup standards, or discuss the implementation our standalone wallet, the Discussions area of the main Gordian repo is the place.

Wallet Standard Discussions. For standards and open-source developers who want to talk about wallet standards, please use the Discussions area of the Airgapped Signing repo. This is where you can talk about projects like our LetheKit and command line tools such as seedtool, both of which are intended to testbed wallet technologies, plus the libraries that we've built to support your own deployment of wallet technology such as bc-bip39, bc-slip39, bc-shamir, Shamir Secret Key Recovery, bc-ur, and the bc-crypto-base. If it's a wallet-focused technology or a more general discussion of wallet standards,discuss it here.

Blockchain Commons Discussions. For developers, interns, and patrons of Blockchain Commons, please use the discussions area of the Community repo to talk about general Blockchain Commons issues, the intern program, or topics other than the Gordian System or the wallet standards, each of which have their own discussion areas.

Other Questions & Problems

As an open-source, open-development community, Blockchain Commons does not have the resources to provide direct support of our projects. Please consider the discussions area as a locale where you might get answers to questions. Alternatively, please use this repository's issues feature. Unfortunately, we can not make any promises on response time.

If your company requires support to use our projects, please feel free to contact us directly about options. We may be able to offer you a contract for support from one of our contributors, or we might be able to point you to another entity who can offer the contractual support that you need.

Credits

The following people directly contributed to this repository. You can add your name here by getting involved. The first step is learning how to contribute from our CONTRIBUTING.md documentation.

Name Role Github Email GPG Fingerprint
Christopher Allen Principal Architect @ChristopherA <ChristopherA@LifeWithAlacrity.com> FDFE 14A5 4ECB 30FC 5D22 74EF F8D3 6C91 3574 05ED
Peter Denton Project Lead @Fonta1n3 <FontaineDenton@gmail.com> 1C72 2776 3647 A221 6E02  E539 025E 9AD2 D3AC 0FCA

Responsible Disclosure

We want to keep all of our software safe for everyone. If you have discovered a security vulnerability, we appreciate your help in disclosing it to us in a responsible manner. We are unfortunately not able to offer bug bounties at this time.

We do ask that you offer us good faith and use best efforts not to leak information or harm any user, their data, or our developer community. Please give us a reasonable amount of time to fix the issue before you publish it. Do not defraud our users or us in the process of discovery. We promise not to bring legal action against researchers who point out a problem provided they do their best to follow the these guidelines.

Reporting a Vulnerability

Please report suspected security vulnerabilities in private via email to ChristopherA@BlockchainCommons.com (do not use this email for support). Please do NOT create publicly viewable issues for suspected security vulnerabilities.

The following keys may be used to communicate sensitive information to developers:

Name Fingerprint
Christopher Allen FDFE 14A5 4ECB 30FC 5D22 74EF F8D3 6C91 3574 05ED

You can import a key by running the following command with that individual’s fingerprint: gpg --recv-keys "<fingerprint>" Ensure that you put quotes around fingerprints that contain spaces.

About

Gordian products and technologies such as Wallet and Server

Resources

License

Releases

No releases published

Packages

No packages published