What would quantum-safe Nostr look like?

Nostr is actually well-positioned for post-quantum migration:

Possible approaches:

* New NIP for PQC keys

* * Dilithium

* * Falcon

* * SPHINCS+

* Dual-key identities

* * Classical key (secp256k1)

* * PQC key (for forward security)

* Identity rotation

* *Old pubkey signs new PQC pubkey

* Relays enforcing PQC-only events

---

Thanks nostr:nprofile1qqsfxfs52ud0ewk569apj8hzs83ea6amgxunlty0mpuzjc32avgj7ngpzamhxue69uhhyetvv9ujuurjd9kkzmpwdejhgtcpz4mhxue69uhhyetvv9ujuerpd46hxtnfduhsz9nhwden5te0wfjkccte9ekk7um5wgh8qatz9uelkt58 for making me look into Nostr's quantum resistance and turning my shitpost into a little bit of knowledge and exploration.

I am far from an expert in cryptography, so this could all be bullshit.