as an off-chain authentication system for trusted hybrid blockchain projects where the keys are still maintained locally

that's why I mentioned for trusted projects. and, of course, there are various levels of that as well. For example, it's a lot less risky to share your posting key versus an active key, which is what many services such a DTube, DLive, and DSound require.