Created: 2026-01-29 08:30 (GMT+11)
| Feature | nos2x / nos2x-fox | Amber | nsecBunker |
|---|---|---|---|
| Platform | Browser extension (Chrome/Firefox) | Android mobile app | Server/daemon (self-hosted or cloud) |
| Protocol | NIP-07 | NIP-55 (Android intents) + NIP-46 | NIP-46 |
| Where keys live | Browser extension storage | Mobile device | Server/remote daemon |
| Connection | Direct (window.nostr object) | Android intents + relays | Via Nostr relays |
| Multi-user | β Single user | β Single user | β Multiple users |
| Shared identities | β No | β No | β Yes |
| Permission scoping | β Per-site (you approve) | β Fine-grained per app | β Fine-grained per token |
| Offline | β Yes | β Yes | β Requires relay connectivity |
| Hardware wallet style | β No (software) | β Phone as hardware device | |
| Requires server | β No | β No | β Yes (unless self-hosted) |
| Revoke access | β Remove from extension | β Revoke app permissions | β Revoke token |
| Team/company use | β No | β No | β Yes |
| iOS support | β Yes (via iOS browser) | β No (Android only) | β Yes (via NIP-46 apps) |
| Open source | β Public domain | β MIT | β MIT |
How it works:
- Installs as a browser extension
- Exposes
window.nostrobject to websites (NIP-07) - Keys stored in browser extension storage
- When a site wants to sign, extension pops up a prompt for approval
Pros:
- β Works with any website that supports NIP-07
- β Fast and seamless (direct browser API)
- β Most widely supported signer
- β Cross-platform (Chrome, Firefox, Brave, etc.)
- β No server required
Cons:
- β Keys live in browser (if browser compromised, keys at risk)
- β No shared identity support (single user only)
- β No hardware-level isolation
- β Requires each device to have its own key pair (or you copy keys around)
Best for:
- Daily Nostr users who want convenience
- People who primarily use web clients (Damus web, Snort, etc.)
- Single-user setups
How it works:
- Dedicated Android app that holds your nsec
- Uses NIP-55 (Android-specific signing protocol)
- Also supports NIP-46 (can act as a bunker for other apps)
- Apps send signing requests via Android intents or relay-based NIP-46
- Your phone acts as a hardware wallet for Nostr
Pros:
- β Phone as hardware wallet β keys isolated on mobile device
- β Offline signing (no relay needed for local apps)
- β Fine-grained permissions per app
- β Multiple accounts supported
- β Can provide NIP-46 bunker to other devices
- β Works with both native and web apps
Cons:
- β Android only (no iOS version yet, though in development)
- β Requires multiple apps to support NIP-55/NIP-46
- β Not as widely supported as nos2x/NIP-07
- β Still single-user (no shared identities)
Best for:
- Android power users who want hardware-wallet-level security
- People who want their phone to be the single signing device
- Those who want to use Nostr across multiple devices with one key
How it works:
- Server/daemon that holds your private keys
- Uses NIP-46 (remote signing via Nostr relays)
- Apps connect via tokens (e.g.,
npub1abc#secret) - All communication encrypted and routed through relays
- Supports multiple users and shared identities
Pros:
- β Shared identities β multiple people can sign as same npub
- β Team/company support β perfect for shared accounts
- β Self-hostable β you control the server
- β Fine-grained permissions per token
- β Revoke access instantly by revoking token
- β Works from any device with NIP-46 support
- β Keys never touch user devices
Cons:
- β Requires server (either self-hosted or trust a public instance)
- β Depends on relay connectivity (must be online to sign)
- β Not hardware wallet β server-based (more attack surface)
- β More complex to set up
- β Less widely supported than NIP-07
Best for:
- Companies/teams sharing a single identity
- People who want to control their own signing infrastructure
- Multi-device setups where you want one key everywhere
- Users who can't use mobile or browser extensions
- You use web clients most of the time
- You want the easiest, most compatible solution
- You're a single user
- You don't need hardware-wallet-level security
- You're on Android
- You want your phone as the single signing device (like a hardware wallet)
- You use multiple devices but want one key
- You care about offline signing capability
- You want to sign from other apps on your phone
- You need shared/team identities
- You want to self-host your signer
- You're setting up for a company or project
- You need fine-grained permission management
- You want to use Nostr from devices without native signer support
You don't have to pick just one:
- Amber + nsecBunker: Amber can act as a NIP-46 bunker for other apps while also being a local signer
- nos2x + nsecBunker: Use nos2x for web, nsecBunker for team identities
- Multiple nsecBunkers: Self-host one for personal, use a public instance for testing
The Nostr ecosystem is composable β mix and match based on your security needs and use case.
| Use Case | Best Choice |
|---|---|
| Personal, web-heavy user | nos2x |
| Android, hardware-wallet style | Amber |
| Team/company shared identity | nsecBunker |
| Self-hosted infrastructure | nsecBunker |
| Maximum compatibility | nos2x |
| Maximum security (device isolation) | Amber |
Choose based on: platform β security needs β multi-user requirements π
- nos2x GitHub - Browser extension, NIP-07
- Amber GitHub - Android signer, NIP-55 + NIP-46
- nsecBunker Docs - Remote signer daemon
- NIP-07: Browser Extension
- NIP-46: Remote Signing
- NIP-55: Android Signer
#nostr #signer #security #nsecbunker #nos2x #amber #nip07 #nip46 #nip55 #identity #wallet