Skip to content

Back up an organization's private keys using key shareholders' recovery phrases.

Learn more about multi-party computation (MPC) in Fordefi.

The backup process is performed in two phases:

  • In the Fordefi web console: You select the key share holders and backup email.
  • On admins' mobile devices: The designated admins generate recovery phrases and share them.

In the Fordefi web console

  1. In the side menu, click Settings, then click the Backup tab.

  2. Choose Recovery Phrases as your backup method.

    alt
  3. In the first phase of the backup creation, assign admins as recovery key holders and specify the minimum number required to decrypt the backup. For example,

    2 of John June, Jane Doe, Joe Bee

    alt
  4. Click Next. Enter the email address to receive the encrypted backup snapshots, then click Initiate backup process.

    Specify the email address of the admin who is performing the backup, then click Initiate backup process.

    alt

At the conclusion of the process, an updated backup snapshot of the metadata and an encrypted copy of the organization's private keys will be sent as a .json file to the backup email address.

Opening the .json file requires the combined recovery phrase of the designated admins.

On admins' mobile devices

To continue the backup process, each of the designated admins must do the following in the Fordefi mobile app.

  1. Go to Management > Inbox.

  2. Tap Backup request to view the backup details.

    alt
  3. Tap Create key.

    The designated admins receive a recovery phrase comprising 12 random words that are displayed in a numbered list. Something like this:

    alt
    • Each admin receives a unique recovery phrase.
    • The designated admins should write down the recovery phrases in the correct order.
    • The recovery phrases should be stored in a secure location and not shared with anyone.
  4. Click Continue.

    alt
  5. In the window that is displayed, enter the recovery phrase in the correct order, and click Confirm.

When all the designated admins complete the process, the following occurs:

  • A message informs the designated admins that a backup key has been successfully shared.

    alt
  • An updated backup snapshot of the metadata, and an encrypted copy of the organization's private key is sent as a .json file to the backup email address.

Opening the .json file requires the combined recovery phrase of the designated admins.

  • Do not share a recovery phrase with anyone.
  • Store the recovery phrase in a secure location.