Nostr is a decentralized public-private key authentication protocol. Since it's not part of FIDO and doesn't use Web Auth, it's not supported by most key device vendors. Why would someone buy a cryptocurrency wallet just to log into a social media account? When would you be able to store a Nostr private key in a YubiKey and import it into Amber to log into Nostr applications like Amethyst?
Since Nostr doesn't have an actual server, the increasingly popular Passkey is unlikely to be used with Nostr. With Nostr, keys are never stored in the cloud; therefore, there's no real client login or MFA. It's so much like GPG, Nostr is indeed a modern utopia, and it's destined not to become popular. Everything is done on the client side; there's no server or cloud. Unless more applications require people to paste and save their private keys on a server or in the cloud, this won't change.
People haven't even encountered private key theft or key phrase theft on Nostr yet; the worst thing encountered so far is merely some buzzing spam and crypto bros.
