Nsec *is* a password and vice versa, so why not just store your proton password in a remote bitwarden if you want a bunker-like solution without nostr?  But also, why wouldn't proton just allow nostr logins too?