Hm, there are already some client auth techs on the session level, like TLS for example, or http-auth. But yes, private relays totally make sense.