If they can do taproot signatures, sure. Most of them can't.
Please Login to reply.
If they don't, maybe you could make a regular symmetric key, store it in HSM, and use it to encrypt the taproot keys.
That already happens today. But it's not as safe as a private that cannot leave an hsm directly.
