tank on Nostr: I agree nostr will also need a way to rotate keys, especially with users being ...
I agree nostr will also need a way to rotate keys, especially with users being susceptible to XSS in web clients. Question is what prevents an attacker from migrating your ID to a new key and revoke the old one?
Published at
2022-12-21 10:42:43Event JSON
{
"id": "9fe464f5b87add956803911b5b4bf7b0737fa22863c6f3ef734d62aab1a804b5",
"pubkey": "311b497635856767ff5c1cefa2b8c5c875ce184ae4876da9279e829ba01dd129",
"created_at": 1671615763,
"kind": 1,
"tags": [
[
"e",
"b8e0213f82edfbff7b984c397bfb8b04a361de010638d88049bf6ca2ddd658f8"
],
[
"e",
"3cb1165b0d1ed31fd011cd114388e11e3086c964b648ed1642338033ede71ec4"
],
[
"p",
"6b0d4c8d9dc59e110d380b0429a02891f1341a0fa2ba1b1cf83a3db4d47e3964"
]
],
"content": "I agree nostr will also need a way to rotate keys, especially with users being susceptible to XSS in web clients. Question is what prevents an attacker from migrating your ID to a new key and revoke the old one?",
"sig": "1ef8750ff78a9f1efe33761125d7373f0804c5c7a3aafe6d84d1bac036474a9098bc113f679fb3313679c52b48135d8ad711d6409b090ff2907effd2aa441060"
}