Nostr’s decentralized premise is an illusion. In practice, the protocol hands the power of surveillance and control to private entities, the relays, creating fertile ground for tracking your multiple profiles and discriminating against users. Here’s how it really works.

The Control Mechanism: Why Relays See Everything

In Nostr, you are not a user. You are a public key. Every post, like, or follow is a digitally signed event from that key, sent to one or more servers called relays.

This is the first crucial point: the relay you publish to stores everything. It sees your public key, the content, timestamps, and metadata. If you use two different profiles but connect them to the same relay, the operator of that server has two streams of activity on a silver platter. They can easily be correlated through your connection IP address or simple behavioral analysis.

The decentralized ideal stops here. There is no protocol-level privacy mechanism to obscure this link. A relay is a private server run by an individual or organization and can do what it wants with that data.

The Economic Incentive: Why Relays Need to Track You

Running a relay costs money. The rhetoric of decentralization doesn’t pay the bills. This is why many relays are becoming paid or require verification to limit spam.

This creates the perfect incentive for discrimination. A busy public, free relay has every interest in using algorithms to identify suspicious behavior or costly users. Using multiple profiles from the same IP can easily be flagged as spam or abuse.

The result? Silent penalization. Your main profile might end up on a shadow ban list or suffer rate limits because a secondary profile violated an opaque relay rule. You, the common user, will never know and have no way to appeal.

The Resilience Myth vs. The Replication Reality

Nostr’s strength is said to be replicating posts across many relays, ensuring resilience and censorship resistance. However, this doesn’t protect your privacy; it multiplies the tracking surface area. Instead of one central server knowing everything about you, you have dozens of private servers, each able to observe a slice of your activity. If just a couple of these relays collaborate or apply similar analysis logic, the puzzle of your multiple identities is easily pieced together.

The Structural Inequality: Insider vs. Common User

This is where the two-tier system emerges. The knowledgeable user knows how to navigate this terrain. They use private or trusted community relays, access via Tor to mask their IP, and know how to manage multiple keys without leaving obvious traces. The common user connects to a handful of large public relays recommended by popular clients. It is precisely there, in the public agora of Nostr, where tracking is easiest and the incentives to moderate and select are strongest.

In summary, Nostr is not a privacy protocol. It is a protocol for identity portability and content resilience. It shifts power from big platforms to a myriad of small relay operators, but it does not eliminate power. In fact, it makes it more opaque and less accountable.

If you use Nostr thinking you are anonymous or can play with multiple profiles undisturbed, you are misunderstanding its design. The protocol gives you control over your keys but entrusts control over your digital traces to the relays. And for them, it often pays to watch.