Using a signer (while still having your pair backed up in a ...

Ryu Santiago

npub1ftj3tmr44tdzs93e0hdgfnrrct9pu2e8haylzuatm2tkfwdaudds27pjju

hex

5dc120f7c907ca70642d33fdbcc24e38e1a2fc0cb954d2e8e2be154ce4cbcae2

nevent

nevent1qqs9msfq7lys0jnsvskn8lducf8r3cdzlsxtj4xjar3tu92vun9u4csprpmhxue69uhhyetvv9ujuem4d36kwatvw5hx6mm9qgsy4eg4a3664k3gzcuhmk5ye33u9js79vnm7j03ww4a49myhx77xkc5lmu67

Kind-1 (TextNote)

2026-04-21T22:41:29Z

↳ Reply to CXPLAY (npub1gd8e0xfkylc7v8c5a6hkpj4gelwwcy99jt90lqjseqjj2t253s2s6ch58h)

Nostr's key management issues make it unsuitable for most people, just like GPG, and it lacks an effective key revocation and rotation scheme.

Using a signer (while still having your pair backed up in a password manager) alleviates the former issue, but I do agree that the latter (especially when users from 2021-25 get compromised) is a major issue.

The moment a developer can make key management and identity retainment without having to wholly start over viable, Nostr will blow up like crazy; Divine and other services that don't heavily emphasize the Nostr aspects of it while retaining full compatibility already do a lot for the protocol.

Raw JSON

{
  "kind": 1,
  "id": "5dc120f7c907ca70642d33fdbcc24e38e1a2fc0cb954d2e8e2be154ce4cbcae2",
  "pubkey": "4ae515ec75aada2816397dda84cc63c2ca1e2b27bf49f173abda9764b9bde35b",
  "created_at": 1776811289,
  "tags": [
    [
      "e",
      "41ca55f98fc22fa9d59bd7e0b9154e3d9537bcab57b5b2f8a2c3c599ab5c3e3c",
      "wss://relay.damus.io/",
      "root",
      "347a2370900d19b4e4756221594e8bda706ae5c785de09e59e4605f91a03f49c"
    ],
    [
      "e",
      "3946cd75292f7f3c3adaeb07012665a44e47625c57936aa2211fe5efb8bb01b7",
      "wss://relay.ditto.pub/",
      "reply",
      "434f97993627f1e61f14eeaf60caa8cfdcec10a592caff8250c825252d548c15"
    ],
    [
      "p",
      "434f97993627f1e61f14eeaf60caa8cfdcec10a592caff8250c825252d548c15"
    ],
    [
      "p",
      "755b0e473ab8a59bdfdf8e0b395d6e72d162a14f293e04d56c6cd5b7f8d203f5"
    ],
    [
      "client",
      "Ditto",
      "31990:781a1527055f74c1f70230f10384609b34548f8ab6a0a6caa74025827f9fdae5:ditto"
    ]
  ],
  "content": "Using a signer (while still having your pair backed up in a password manager) alleviates the former issue, but I do agree that the latter (especially when users from 2021-25 get compromised) is a major issue.\n\nThe moment a developer can make key management and identity retainment without having to wholly start over viable, Nostr will blow up like crazy; Divine and other services that don't heavily emphasize the Nostr aspects of it while retaining full compatibility already do a lot for the protocol.",
  "sig": "98604879cb6ff87f777cf3ab01006ba48294106d2af212e81a9c7c4e695ca50298293d0f596f34ab56861b8f7afcd633f623536f3d728ec0759b78420ef38452"
}