Ah good point. Ok, the key file to decrypt is stored on a remote server. If the restored copy of the hard drive cannot connect to that remote server, it cannot decrypt the stored information. The remote machine hosting the key file is accessible only via TOR. Have someone else setup the actual remote site so you only know it by it's TOR address. Again, two passwords but the wrong password wipes it on the remote side. This forces them to connect to TOR to attempt to decrypt and then they remotely wipe the key for you once you give them the tainted password, rendering the private key file unrecoverable.