NOTE: It's high context comment.
Nostr is easy, because sign is almost only one method (i dont know E2EE DM well though). What is really difficult is Bitcoin, because there are not only several BIPs but also broad to L2.(definetly it doesn't help a type of sending credential to sever like LNC. It will need huge research)
Anyway, a problem of key management about Nostr is different from Bitcoin. Thinking of the importance of data asset, I can't imagine you backup Nostr's master key by multisig and geolocation distribution. And Nostr's data is self-conclusion without consensus with others. Therefore, key rotation is enable. Although hiding the sec key from the app helps with phishing and vulnerable code, I think the key rotation is better way assuming you will lose them.
teatwo
npub1xk…75few
2024-08-25 04:53:36
in reply to nevent1q…9dl7
Author Public Key
npub1xkym0yaewlz0qfghtt7hjtnu28fxaa5rk3wtcek9d3x3ft2ns3lq775fewPublished at
2024-08-25 04:53:36Event JSON
{
"id": "c362931c0343d6e7d44c071b5c860dcb716f8702dcea2b5078211c2794ff6e1f",
"pubkey": "3589b793b977c4f025175afd792e7c51d26ef683b45cbc66c56c4d14ad53847e",
"created_at": 1724561616,
"kind": 1,
"tags": [
[
"e",
"2b8d8fb2b84e6636156cbe9aaf3c82e6862de1f41c6b179ee44dc4047f0b3db4",
"wss://relay.primal.net",
"root"
],
[
"p",
"fa984bd7dbb282f07e16e7ae87b26a2a7b9b90b7246a44771f0cf5ae58018f52",
"",
"mention"
],
[
"p",
"e88a691e98d9987c964521dff60025f60700378a4879180dcbbb4a5027850411"
]
],
"content": "NOTE: It's high context comment.\n\nNostr is easy, because sign is almost only one method (i dont know E2EE DM well though). What is really difficult is Bitcoin, because there are not only several BIPs but also broad to L2.(definetly it doesn't help a type of sending credential to sever like LNC. It will need huge research)\n\nAnyway, a problem of key management about Nostr is different from Bitcoin. Thinking of the importance of data asset, I can't imagine you backup Nostr's master key by multisig and geolocation distribution. And Nostr's data is self-conclusion without consensus with others. Therefore, key rotation is enable. Although hiding the sec key from the app helps with phishing and vulnerable code, I think the key rotation is better way assuming you will lose them.",
"sig": "328b391904a457de0ba9f6a30a8997f2c97f26dec4a743a4dacb1eef41cc89f4fe93bf202b936e990f8498b9ab7bca94907670b6ca3cb7a27aa3b6c3629546dc"
}