> A simple solution would be giving lesser trusted devices only access to lower security keys.

That puts the burden of the decision of picking the right security level on the sender though, right? I don't see that ever becoming a thing.