Replying to Avatar GHOST

You can build a signing chain, but it collapses the separation. If the nsec signs each new PGP key, the Nostr key becomes a permanent root authority and a single compromise breaks the entire lifecycle. The whole point of coordinating two systems is to avoid that failure mode.

With deterministic epochs, clients can verify rotation without deputizing nsec as a god key.

Once you have a stable root, rotation is just schedule + client support. Everything else is implementation detail.
Avatar
Viktor 1mo ago

yea dead on,don’t want that “god key” trap.

keep the nsec as blind entropy source, let deterministic schedule + clients handle the rest.

when you’ve got a proto ready i’ll eagerly whack it with Vector (DM me over NIP-17 if ya like) to see how it feels.

Reply to this note

Please Login to reply.

Discussion

No replies yet.