I've been thinking...

Why does #nostr not handle user's keys differently?

What would be the drawback of a system such as this:

Relays store nsecs in encrypted form.

Users/clients log on with just a username and a relay returns that user's encrypted nsec.

User/client then decrypts the nsec in whichever way it was encrypted.

The rest happens as usual.