Why didn't you feel comfortable about it? That's what everybody does.
I do think people should migrate to this scheme I'm proposing for other reasons, but if you have different reasons I'd like to learn about them.
Discussion
I’m experimenting with building a simple wealth tracker, where you save encrypted records of your assets’ value to a local relay (indexedDB), and sync to a trusted relay.
If your nsec is compromised, the ideal would be for the data to not be revealed without an extra key.
If I’m not mistaken, the scheme you shared allows me to achieve this, since you’d need the device as well to decrypt. And I would add a passphrase, for when the device is compromised.
Am I doing something stupid? 😅
If you're doing something stupid I don't know, but to me it looks pretty good. I think your concerns make sense and I'm happy that you gave me another use case for this NIP. I'll mention it in the proposal thread.