I've been pondering key hygiene and the concept of key recycling.
We often rely on our npubs, but given the likelihood of these keys being compromised—or even the suspicion of compromise—it seems wise to abandon them for new keys from time to time.
This made me to consider a strategy less dependent on npubs and more resilient to such changes.
What if, instead of broadcasting our npubs for connections, we start using NIP-05 identifiers linked to our own domains?
This approach would allow us to maintain a consistent digital identity, even as we cycle through public keys for security reasons. I'm aware that owning a domain comes with its own set of challenges, including the risk of hacking. However, I believe the benefits of easily updating our public keys without losing our online footprint could outweigh these concerns.
This strategy could serve as an important part of our key management practice. By not tying our online identity directly to a single npub, we have something that lasts longer.
If I'm going to publish an article as a guest in a website I have no control, for example. I think it would be best to say what's my NIP-05 instead of putting my npub, right?
I'm curious to hear your thoughts on this.