I created a Nostr account right at the beginning, back when hardly anyone was thinking about nsec security or copy-paste risks.
Now I’ve taken the opportunity to derive a new account using my hardware wallet (BIP85).
How do you secure your nsec and npub?
Feel free to follow me on my new account.
npub1n5wqmfk4psm7z8t6xf6wm0m7pexw6gjaemhj0mx2g3h8pk3mfsssyl2jyx
This is a weakness, I don't know what else to call it, with Nostr. And I'm not sure if it's fixable. First, no need to "secure" your npub, it's public by default. :) But the nsec...
One thing I did was to make another keypair so if the one I use now gets compromised I can go to the other and say "This is the real me". I made a note to this effect at some point. The reality is, no one would really know the difference; no on would do the investigative work to go back and find out that oh yeah, he did post a note at some point saying npub-2 is the account that verifies him. Frankly, I don't even know where that note I posted is.
I like and use the Hive blockchain and they have a better key system: you actually have four keys for different uses, each with more power. And, this is what nostr needs if possible, a way to change keys...to cancel your old keys and make new ones. Everything about the old account just changes over to the new keys.
I'm npub1qpdufhjpel94srm3ett2azgf49m9dp3n5nm2j0rt0l2mlmc3ux3qza082j by the way.