Nostr Web Client

For the most part, yeah - if your nsec is compromised, you’re S.O.L.

Some very clever devs have been working on things like “nsec bunker” which (if I understand correctly) uses your nsec to authorize additional keypairs to sign events “as you”, with the idea that you’ll want to have multiple digital identities for different purposes.

It’s very very early

wooka 1y ago

okay, thanks! :)

I'm still used to the hive blockchain, where one has

hierarchical keys

one to post (for mobile device, if compromised they can only post)

one to make transactions

and a master/ owner key, which can be used to renew itself with a new derived owner key, from which the posting and active (transactions) key are being derived

so if my phone gets compromised

they can only post in my account - until I have renewed all keys

https://tutorial.hive-keychain.com/#/extension

but I guess cuz nostr is not a blockchain, this tech cannot be used here anyway..^^

Reply to this note

Please Login to reply.

Discussion

semisol 1y ago

key rotation proposals exist, but none are implemented

so if your nsec is gone, you can’t do much

I’d recommend creating a backup nsec and not using it except to set it up, and publishing the public key

boston wine 1y ago

Thanks Semi - good advice