Nutstash is an ecash wallet for your browser on any device. It uses the cashu ecash protocol to offer a digital cash-like experience.
Nutstash wallet comes with a suite features
"Civilization is the progress toward a society of privacy. The savage's whole existence is public, ruled by the laws of his tribe. Civilization is the process of setting man free from men.
Install Nutstash as a PWA on your device via browser.
(Available on Mobile, Tablet, Desktop and any other device!)Open Mobile Browser
Using your mobile native internet browser, open an existing or create a new wallet at
https://wallet.nutstash.app
.
Dive Browser Options
Using your internet browser (on mobile, use the OS native browser) go to the browser
settings.
Save to
Home Screen
Look for an "install" or “Save to Home Screen” option and the nutstash PWA will appears.
Offline
Access
Once Nutstash is saved in your device home screen, you’ll be able to access your wallet
anytime. You can even send tokens peer-to-peer when you are offline
Run it from source
git clone https://github.com/gandlafbtc/nutstash-wallet
cd nutstash-wallet
npm i
npm run dev
Nutstash is in early development. The tools and protocols in use are cutting edge, which means they probably haven't been tested enough to be deemed secure. Also, errors might occur that make the app unusable. Backup your tokens, and if all else fails, recover them from the browsers local storage.
In nutstash, the user of the wallet does not hold the keys to the Bitcoin. The Bitcoin custodian is the mint. This means, that if you don't trust a mint, you should probably not interact with it.
The tokens in Cashu are bearer tokens. This means, if you loose access to your tokens, there is no way to recover them. Nutstash stores your tokens in the local storage of the browser. This means, you shouldn't use a private window, or the cache might get cleared. Also, before deleting your browser history, you should backup your tokens.
The tokens in nutstash are stored in the browsers local storage. Unencrypted. If someone has access to that browser, they can steal the tokens.
Yes, Cashu has great privacy features. But if you're connecting to the mint, they have access to the IP you're connecting with. This can be mitigated by using a proxy, VPN or TOR browser.
A "token" (also known as "ecash" or in slang "a nut") is a piece of data that consists of a blindly signed secret. It was signed by the mint with the private key for a specific amount. Therefore a token is an IOU representation of satoshis that are custodied at the mint.
An ecash wallet, like Nutstash, is a special type of wallet. Ecash wallets are always custodial, since the ecash itself has no value. Cashu ecash represents satoshis, but the keys that control the actual satoshis on-chain are at the mint. So the easiest way to compare an ecash wallet is with another custodial lightning wallet, like wallet of satoshi.
Ecash wallets come with some additional features over traditional custodial wallets, such as:
Yes. In fact, there are many risks. Make sure to understand them before putting any sats into nutstash.
Please take these risks seriously. Don't put any money into nutstash that you're not willing to lose.
The Cashu protocol offers a blinding mechanism to unlink the creation of an ecash token from its redemption. This gives the mint or anyone else no direct link for parties involved in a transaction. The cashu protocol also works entirely without accounts. So theoretically it is impossible for a mint operator to determine how many users it has and who they are.
There are a few things to consider though.
Privacy chokepoints
Inter-protocol privacy
See http://lconf.gandlaf.com or
https://www.youtube.com/watch?v=UNjVc-WYdgE&t=105s
for an introduction to the Cashu protocol.
Or read the Cashu NUTs (Notation, Usage, Terminology) in Github here: https://github.com/cashubtc/nuts.
Cashu doesn't have accounts. In fact, you don't need one. All the tokens are stored client-side, on your device.
Mints are Lightning node runners, that have decided to let you use their Lightning infrastructure to offer you a service. They will act as a custodian for your satoshis on the Lightning network, while they issue ecash to you, the user. You can think of it as in free banking, where the bank issues their own bank notes that is backed by gold.
Yes. Cashu doesn't protect against network level heuristics per default. Users should take precautions to protect themselves against leaking network meta data by using privacy tools such as tor.
Right now, Cashu is in its early development. There are not yet any professionally run mints. Find mints through the mint discovery feature in nutstash.
Yes you can, and you should! At least for now, as we are still in the early testing phase. For chosing a mint visit here .
No. Each mint has their own tokens. You can however use the tokens from one mint and swap them over lightning for tokens from another mint.