Nostr has a decent way to go with key management - unless you are careful with your private key.
Things like rotating, expiring or migrating - or multi-sig keys, are all under development.
I just needed a simple enough way to add login to a website or web service, that didn’t allow impersonation. It may get replaced as things develop.
Pretty sure that was #[3] usecase for this NIP originally.
Personally I think a whole identity management layer could be built around it.
The current workflow of client > identity > relay is ass-backwards to me. Identity should be front and centre, we’re not utilising it anywhere near as well as we should be and as a result the onboarding process for newbies sucks.
