Post by Alex Pecorilla
Imagine an nsec leak on the scale of other ordinary data breaches. Suddenly your access key is splashed all over the dark web and spammers start using your identity before you even realize it, and there’s no way to stop them. You literally have to abandon your entire online persona.
PGP solved this with revocation certificates. There were attempts like NIP-41 to propose the same for Nostr - mark your compromised key as dead and migrate. But I agree a nsec leak sucks in the short term.