Thank you Ben. But just to be clear the key itself sits unencrypted on the device? I'm just looking for the most safe way to use my nsec and really not sure what's the way to go at today's stage of development 😅