teatwo on Nostr: NOTE: It's high context comment. Nostr is easy, because sign is almost only one ...
NOTE: It's high context comment.
Nostr is easy, because sign is almost only one method (i dont know E2EE DM well though). What is really difficult is Bitcoin, because there are not only several BIPs but also broad to L2.(definetly it doesn't help a type of sending credential to sever like LNC. It will need huge research)
Anyway, a problem of key management about Nostr is different from Bitcoin. Thinking of the importance of data asset, I can't imagine you backup Nostr's master key by multisig and geolocation distribution. And Nostr's data is self-conclusion without consensus with others. Therefore, key rotation is enable. Although hiding the sec key from the app helps with phishing and vulnerable code, I think the key rotation is better way assuming you will lose them.
Nostr is easy, because sign is almost only one method (i dont know E2EE DM well though). What is really difficult is Bitcoin, because there are not only several BIPs but also broad to L2.(definetly it doesn't help a type of sending credential to sever like LNC. It will need huge research)
Anyway, a problem of key management about Nostr is different from Bitcoin. Thinking of the importance of data asset, I can't imagine you backup Nostr's master key by multisig and geolocation distribution. And Nostr's data is self-conclusion without consensus with others. Therefore, key rotation is enable. Although hiding the sec key from the app helps with phishing and vulnerable code, I think the key rotation is better way assuming you will lose them.