Oddbean new post about | logout
 Sounds mysterious. Likely yes but curious how it would work. Similar to your exit thing but nostr—>nostr? 
 No, you would white list in a non-forgeable way what your next npub will be so when your key is compromised you can move to it regardless of what the attacker does

NIP-41 if you want the whole thing 
 Hm, guess I should read NIP-41 first… 🙃 
 nice 
 Is there a NIP for keychains, where nostr would recognize everything from a given key as being from another key with linked permission?

So you could have a primary key you only use once to link 2 other keys, one for everyday use and one you keep buried or locked in a safe for redoing the linking process if the other one is ever compromised.

Whenever you log into nostr, you enter your currently active everyday use key, but nostr displays your activity as coming from the original key.

Or could any login functionality work along the lines of a derivation scheme like BIP 44/49/84/87 ❓



nostr:nevent1qqsv3r604ntyua0ctpthgvukneltpk2qkesjge2lccg5xjcew23ncgcppamhxue69uhhxmmvda3k7tnwdspzp75cf0tahv5z7plpdeaws7ex52nmnwgtwfr2g3m37r844evqrr6jqvzqqqqqqy979p0g 
 @The: Daniel⚡️ were you thinking of something like this when you mentioned layers?

(had a typo before) 
 Didn't get an answer on this. I thought a bit more about how it would have to work - here's my ideal way to improve logins on #Nostr 

You'd have 3 types of keypairs you can register on nostr:
• Primary profile keypair
• Redirect keypair 
• Signature keypair

Your primary profile keypair is like the keypair I'm posting this post with. It's for everyday use.

A redirect keypair can point from a signature keypair or another redirect keypair, to a primary profile keypair or another redirect keypair. It can't do shit else. You keep it buried in the woods in case your everyday use primary profile key is compromised.

The signature keypair should only be used once, to set a redirect keypair, then burned. All it does is point to a redirect keypair.

You put your signature keypair on your business cards or your hat or whatever, then a nostr client looks at the redirect key and finds your current profile from there.
Every time you're looking at a post from a given user, your nostr client can check the redirect chain to verify what signature keys do and don't link up.

So, is this already a NIP or is there a better version of anything? It's possible this concept has already been discussed, I'm not sure

nostr:nevent1qqs2dpa4rnuye4k84rgd0qjv6hd5dptygt6kmfkedn5e9uu2a0n7despz4mhxue69uhhyetvv9ujumt0wd68ytnsw43qygxvg8sqzdvs7wgr36rawtgyswymqgn5r7ve4ctejrpjgl9f5nms3vpsgqqqqqqsufjzgj