I think this shares the same concerns as authenticating with other services, and could potentially share the same solutions as well.
The solution I proposed for authenticating with push notification services (for example) was to use a threshold key pair (as in threshold ECDSA)
The private key is split into shares so no one sees the fully assembled private key but canisters can sign outgoing requests. Only the public key is revealed in the request.