Skip to content
Blockchain

Why does rotating a compromised wallet erase my entire on-chain history?

82

Opportunity

When a private key is leaked or lost, the only safe move is to abandon the address, but every piece of on-chain reputation, governance votes, lending history, and attestations stays with the old key. Moving those records to a new address requires publishing the link publicly, which permanently deanonymizes both addresses. Existing ZK identity schemes handle fresh anonymity sets but not migration of accumulated history between pseudonyms. A 2025 arXiv survey of decentralized identity systems identified key recoverability as one of the two dominant unsolved properties across all major DID methods. No production primitive exists that lets a user prove continuity to a new address under zero-knowledge while keeping the link between old and new private.

Why it matters

Without a safe migration primitive, key rotation is practically impossible for anyone with meaningful on-chain history, which means compromised keys stay active far longer than they should.

How I score the opportunity

The Opportunity Score is my own read, not a measurement: how much it hurts, how often it bites, and how little exists to solve it today. Higher means I think it is more worth building.

Severity9/10

How much pain it causes when it shows up.

Frequency6/10

How often people actually run into it.

Whitespace9/10

How little good tooling exists for it today.

More problems worth solving