The issue is that there is no way to derive a distinct key f...

semisol

npub12262qa4uhw7u8gdwlgmntqtv7aye8vdcmvszkqwgs0zchel6mz7s6cgrkj

hex

ab13eb041535d71703ac6c79ae653f26e2d9598cb55e97b794603046124a19fd

nevent

nevent1qqs2kyltqs2nt4chqwkxc7dwv5ljdcketxxt2h5hk72xqvzxzf9pnlgprpmhxue69uhhyetvv9ujuem4d36kwatvw5hx6mm9qgs99d9qw67th0wr5xh05de4s9k0wjvnkxudkgptq8yg83vtulad30gan6vgh

Kind-1 (TextNote)

2026-05-25T21:17:45Z

↳ Reply to semisol (npub12262qa4uhw7u8gdwlgmntqtv7aye8vdcmvszkqwgs0zchel6mz7s6cgrkj)

This is a horrible idea. If it happens, it will cause a disaster worse than Anigma. Use Payment Targets.

The issue is that there is no way to derive a distinct key from an npub.

All tweaks are reversible by the server and so they can derive your nsec easily, so the electrum server would know your nsec (and that is why I compared it to Anigma). A list of candidate npubs’ tweaks can be subtracted and checked.

Even asking an LLM would have found this issue. Cryptography is hard to get right and so unless you have a good reason, don’t roll your own schemes. If you do, do some research.

Just make a new keypair.

Raw JSON

{
  "kind": 1,
  "id": "ab13eb041535d71703ac6c79ae653f26e2d9598cb55e97b794603046124a19fd",
  "pubkey": "52b4a076bcbbbdc3a1aefa3735816cf74993b1b8db202b01c883c58be7fad8bd",
  "created_at": 1779743865,
  "tags": [
    [
      "e",
      "348eba4d0eabe5fe8c9f501fa4e1fb34be58658dafbc371b48b9dce0e3f9f2e0",
      "wss://relay.ditto.pub",
      "root",
      "06b7819d7f1c7f5472118266ed7bca8785dceae09e36ea3a4af665c6d1d8327c"
    ],
    [
      "e",
      "8370892b931b8a11eac9a353cbd1233945ecedeab51fa4d3ae8d7c5edac71ac8",
      "wss://aggr.nostr.land",
      "reply",
      "52b4a076bcbbbdc3a1aefa3735816cf74993b1b8db202b01c883c58be7fad8bd"
    ],
    [
      "p",
      "06b7819d7f1c7f5472118266ed7bca8785dceae09e36ea3a4af665c6d1d8327c"
    ]
  ],
  "content": "The issue is that there is no way to derive a distinct key from an npub.\n\nAll tweaks are reversible by the server and so they can derive your nsec easily, so the electrum server would know your nsec (and that is why I compared it to Anigma). A list of candidate npubs’ tweaks can be subtracted and checked.\n\nEven asking an LLM would have found this issue. Cryptography is hard to get right and so unless you have a good reason, don’t roll your own schemes.\nIf you do, do some research.\n\nJust make a new keypair.",
  "sig": "e7f130ff60bcfc261293716d7bb57d5c8df704e8381572faf9cc0ae395188d47e26df7e49204515a4b970440892e6db92a9602d5e8ba762339457e41c37fa6ba"
}