Security and Privacy for Web3
Easier digital asset security for developers and their users.
Don’t compromise on
digital asset protection
Lock-Keeper Wallet as a Service infrastructure removes roadblocks for developers, letting them extend the right balance of control and utility to their users. Because there’s no such thing as a “low-value” digital asset to those who own them.
Empowering Developers
Flexible, done-for-you, and simple!
Protecting User Assets
From the every-day to extraordinary
Securing Web3
Extensible from gaming to global finance
Early Web3 adopters agree
“Lock-keeper driven hidden non-custodial wallets empower any genre of gamers to engage with Web3 enabled games in a seamless manner.”
Abhishek Agarwal,
Senior Director of Product Management, Wallet, Defi, and Gaming at Forte
“Bolt’s approach potentially offers more privacy and similar scalability characteristics that we think are worth researching and exploring.”
Josh Cincinnati,
Mina Foundation
Blockchains are great. Until they aren’t.
Over the past few years, more than $4.9 billion in digital assets have been stolen by criminals from centralized exchanges, cross-chain bridges, DeFi protocols, NFT marketplaces, and play-to-earn games.
It’s easy to lose control of digital keys. Lost keys are equivalent to lost assets, and in public blockchains, there is no built-in recovery mechanism to handle loss or theft.
Getting key management right can be a pain for developers and users.
Poor Usability
Single Point of Failure
Insecure Implementation
Developer and user benefits
We did the hard stuff for you!
Lock-Keeper from Bolt Labs is a speedy, flexible, cloud-hosted architecture that satisfies the requirements of modern Web3 cryptography, at scale, with a combination of:
- State-of-the-art crypto
- Policy-based access control
- Trusted execution environments
- Distributed, secure persistent storage
Users own their keys
Both secure storage and key use are user-controlled. Even in the event that a cloud provider is compromised, no user keys can be obtained.
Flexible key usage policies
Developers and users can specify authorization policies around transactions, allowing additional user authentication mechanisms (PINs, biometrics, etc.) to provide extra assurance for keys that protect higher-value assets.
Secure, redundant, failsafe hardware
Private keys are broken up and stored securely using secure processors in cloud-based trusted execution environments—protecting against software and hardware attacks.
Users can recover their keys if lost
In the event of a lost or stolen device, users can recover their keys. Our system enables service providers to offer users meaningful autonomy over their assets while preserving confidentiality.
Features that matter
The Infrastructure Web3 needs.
The protection your users deserve.
Industry-Leading Security
Built on Shamir’s Secret Sharing (SSS) and Multi-Party Computation (MPC) coming soon, industry standards provide secure distributed key validation options for privacy and security.
Crypto Expertise with Click & Drag Ease
We built the hard part, so you don’t have to. Easily integrate multi-layered digital asset security infrastructure that adds value and utility to your platform.
Future-Proof
Our flexible infrastructure model anticipates new regulations, standards, and technologies for maximum compliance and interoperability.
How does it work?
Secure and Trusted Infrastructure
All key generation, sharding, and transaction signing activities in Lock-Keeper take place inside of secure enclaves. Plaintext keys are never handled outside the context of the enclave, meaning that no outside party – including Bolt Labs – can access them. Attestation and build signing is used to ensure the authenticity and integrity of each enclave.
Choose Your Crypto
Select the right level of security for the asset. Depending on your service model or the level of protection needed, Lock-Keeper enables a variety of seamless protection schemes that can be interchanged easily.
Select your security level
Keys are fragmented and distributed to allow for shared custody over the asset.
Following established policies, all parties must agree to sign, which creates a collaborative and shared custody experience.
Private keys are split into key shares with entropy from multiple parties without any single party learning the whole private key at any time.
There are no seed phrases or mnemonics for users to back up, and there is no single point of failure or compromise.
Modular, Extensible, & Future-Proof
From support for arbitrary secrets and other non-cryptocurrency digital asset types to the realization of complicated key control notions like joint key custody and user-centric, delegated key use, Lock-Keeper is designed to be customizable without compromising your principles.
Lock-Keeper’s infrastructure is transparent from the developer’s standpoint, requiring only an initial integration to receive a universe of possible security and privacy schemes, including:
- Native wallet APIs and several industry wallets supported
- Multiple key types
- Expanded attestation for verifying and ensuring the integrity, authenticity, and trustworthiness
- Advanced Multi-Party Computation (MPC) coming soon!
*Coming soon! Be the first to get MPC by getting on the list.
Ready to
get locked?
Lock-Keeper makes balancing security and convenience easy for Web3.
(Because you don’t have to pick just one.)
Talk with a Bolt cryptographic expert to get started or download our latest white paper.
Follow Bolt
If you’re as excited about Web3 as we are and want to get our occasional industry and development updates, follow us below or join our newsletter.