2 upvotes, 1 direct replies (showing 1)
whitepaper. Which can be found here[1].
1: https://lightning.network/lightning-network-paper.pdf
I am no technical expert, but the keys are generated deterministically, from one master key. They can be checked and confirmed by the LN node, but they cannot be reverse engineered. Of course, the fact that the LN node knows its own Private Master Key, is an attack vector.
Comment by tripledogdareya at 22/12/2017 at 14:53 UTC
1 upvotes, 1 direct replies
The node needs to *sign* payment channel commitments with the private keys. To do that, it must be able to access them unencrypted.