Wouldn’t you just sign with the same key that sent the payment? Separate from the nsec? I think this is going to prove a stubborn problem to solve for a long time even Amazon pretty much relies on humans to verify key transaction points because who knows when a key will become compromised? Does that make sense or is it a bit scatter brained? 🧠