but I think the secp256k1 algorithm used in bitcoin is inadequate and this is a design flaw.
How exactly it's flawed or inadequate? It's still deemed secure until now and at that time, Satoshi couldn't use Schnorr Signature due to patent.
My target is only lost wallets.
And what exactly do you mean by lost wallets?