Hey! How’s it going? I’m sharing some new ideas that came out of @Sovereign Engineering 6. They feel especially relevant given the recent news about compromised keys. This is a new NIP for identity checkpoints. In simple terms, a checkpoint is a signed event that says: "this key is me at this moment" Over time, that checkpoint can gather evidence and attestations from other people, helping to maintain identity continuity.

GitHub

Checkpoints NIP by gzuuus · Pull Request #2278 · nostr-protocol/nips

This draft defines an immutable checkpoint event for Nostr identity continuity. It does not create an authoritative key rotation mechanism. It prov...

The idea is that anyone can create a checkpoint to show they control a key. Later, if something bad happens, like losing the key or having it compromised, they can publish a new checkpoint linked to the old one. That creates a lineage people can look at to decide whether the new identity claim seems legitimate or trustworthy. When you combine this with OTS, social graphs, NIP-05, and other forms of evidence, you get a way to deal with identity recovery, which in decentralized networks like Nostr, is crucial since there is no central authority that can definitively say "this person kept their identity". The best we can do is evaluate the available evidence. This proposal is all about that Alongside this, there is also a complementary Snapshots NIP, which lets users preserve a specific version of a replaceable event. That can strengthen the evidence and reduce some attack vectors.

GitHub

Snapshots NIP by gzuuus · Pull Request #2279 · nostr-protocol/nips

This draft defines an immutable snapshot event for preserving one exact version of a replaceable Nostr event. Its purpose is to keep a verifiable h...

I’ll soon publish an app to help create, visualize, and use all of this. Hope you find it interesting. #soveng #sec-6