Is it yet possible to have an offline key that can revoke and reissue the online key?
Discussion
No, it's not. We can't revoke keys from accessing things that they had access before. Do you have any ideas around this?
Don't use the keys for access.
Revocation seems fairly simple on nostr. Not sure what needs explaining.
The hard part of nostr delegation is the UX since keys are displayed to end users
Can you exactly explain the key management model in your mind?
Offline key signs messages about what other keys can represent it
Those other keys go in your clients
If one gets compromised, master key signs a revocation and merkle tree of pre-revocation signatures
that's NIP26 - Delegated event signing, but it's kinda deprecated:
So review our key handling practices, but it's still impossible (or deprecated) to actually have good ones...?
do you think using delegated event signing (at least the way mentioned in NIP-26) is the best practice of managing our keys?
Key delegation and revokation (or even better, rotation) are badly needed, but NIP 26 isn't it.
Some recent discussion on the topic: https://github.com/nostr-protocol/nips/pull/1452
I'm sure your perspective on the problem would be very welcome.
How does it currently work? Do nostr clients store the private key on their servers after it's submitted by the user?
Usually it's stored in the app/browser, hopefully never on the server. You can also use extensions like nos2x or alby to protect your key from the app, or you can use NIP 46 signers like nsec.app or Amber to hold your own keys and sign remotely.
Thank you for the explanation. I'm looking at the NIP-46 doc and it's really a neat solution.
