No need really.  Maybe just have a way to verify your ID outside of NOSTR.

I have been loose with my keys as well, but don’t care too much.  

If somebody takes this account, I will just start another. 

 If you must, take the time to make a vanity key! 

 https://github.com/mleku/nodl/tree/master/cmd/vainstr

this is the fastest vanity miner but you have to build and install the bitcoin secp256k1 library to get that benefit (and go)

it lets you search for prefixes, suffixes and anywhere in the key string

it can mine a 5 character suffix key in about 10 minutes on a 12 core Ryzen 5

i'd build a binary if someone would pay me to *wink* 

 100 sats from utxo should cover your run of “go build .” 

 haha... it took me about 1 week in total work to make that thing, putting the secp256k1 library in it was complicated 

 That would be fun! I don't really have a computer to do it.  

 It doesn't take a load of processing power. I would run it on my computer overnight and it only took a week or so and mine is 7 characters. 

 Well I guess it's worth a shot then. 

 I should  have said laptop before not even a desktop computer. https://github.com/grunch/rana 

 Whats your tradeoff mix? Asking for a friend. 

 I just figured is better to switch now when I've only got a years worth of notes instead of losing several years because someone finally found my leaked keys from something stupid I did early on.  

 But how do you keep sanity today with a new nsec? 

 I think we all were a bit careless with them at first.

You'll lose many people in migrating.

You could update your profile to point to your new npub as well as post a note about it. Many people won't notice & will only see it when they go looking for you.

I'd wear the risk that your nsec has compromised & not discuss anything too important in DMs. 

 All great points.

But the vane will arrive one day.

This is like bagging domain names in the late 90s. 

 I was thinking I would post on both for a while and set a date for this npub to retire. That way I could hopefully most people who want to stay connected can have plenty of opportunities to follow the new npub. 

I'm putting a lot of effort into Nostr and it would suck to be forced to switch npubs suddenly because my keys were compromised. 

Thinking about changing my nym too in order further separate from my Twitter identity. Right now everything is totally linked. Want to add an extra layer of obfuscation while I'm at it.  

 I'd note on the new npub and boost that note from the old npub.

That way you're reminding people & sharing the content.  

 I'm in the same boat of early carelessness with my keys and these are my key rotation musings so far.

I wonder if any clients manage follows by nip05 instead of npub. That would allow relatively easy key rotation that is seamless to the followers.

There seems like an opportunity here for a rotation nip too. Publish and sign your new npub from your current nsec as a specific rotation event. Then clients can spot the nip314 event (no idea if this is taken I just used pi because rotation like a circle) and offer to refollow. This should not be automatic due to the abuse potential in the case of a beach.

The one thing I know to exist now that could help with planned key rotation is shipyard for scheduling posts. You should be able to dual post your normal content with automatic regularly scheduled "follow my new npub" posts on the old keys.

Follower counts are a shitcoin anyway right. This makes your followers proof of work for your high quality content.