This is one of the reasons I've been pushing for cross signing private keys. That way we can rotate keys and 'safely' inherit the old 'account'. Could use a pin system like Signal to help mitigate fraudulent signing maybe.
Discussion
Could be as simple as entering your new privat key into the client and then using your pin code to do all the fancy stuff.
How would cross signing work?
I think one priv key songs off on multiple pub keys at once
Been staying at a beach resort for the weekend ☀️ Sorry for the late reply!
Cross signing keys works by the old key signing (nsec..) the new key. This proves the owner of the old key knows the new key owner. Then the new key signs the old key. This shows 3rd parties that the new key is definitely associated with the old key owner. But what if someone steals your old key? This is why a pin code should be necessary for signing. People forget PIN codes so your client should ask you for it periodically like Signal does. It can be done locally. If you forget your PIN code then the only functionality lost is the ability to cross sign keys. Also a revocation certificate could be made in case someone steals your account and starts impersonating you. That's another story! Getting back to my pina colada 🧉 Have fun guys 💜
Jealous 👀🍹🍹🏝️
Back to the coal mines on Monday
Coal mines👀 you must be close by 😅🧡
Not really! I'm up north in NC visiting friends and family!
Ohhhh. I live in WV so coal mines are everywhere 😅 beautiful pic btw. Enjoy the beach. It’s def my fav place to relax 🏝️🍹
They actually do have real coal mines in West Virginia 😅 In a way Si is kind of close i C. At least on an atomic level 😜 We're heading out to a steakhouse. I'm in the back seat a bit tipsy trying to find the keys on my phone ☺️ Back to Palm Beach FL Sunday. I'll have plenty of time for #nostr then 🧉🍹
Do you know how to actually do that?
To rotate keys? Yeah I do it once a year with my gpg keys. It doesn't need to be as complicated as gpg though. Just make a new key pair. Copy paste your new private key into the client. Enter your PIN code and the magic happens in the background. Needs to be grandma proof.
I meant like code it so it’s possible to do it on one of the clients.
Don't think I've ever written anything in Kotlin. It looks pretty self-explanatory. Time is my biggest issue. Also protocal developers will need to make a framework first. Ideas are cheap. Everyone has a billion of them. Applying ideas now that's what counts. Anyway dinner just got put in my face 🍹🍸 Yummy!!
