Skip to content

SeedSafe

Overview

SeedSafe provides a specialized, high-security vault for backing up existing BIP-39 mnemonic seed phrases from any standard wallet. Built on UnoLock's zero-knowledge architecture, it offers military-grade protection for your most critical cryptocurrency recovery keys without any active wallet functionalities. Designed purely for secure storage and recovery, SeedSafe ensures your seed phrases remain completely inaccessible to UnoLock servers while providing resilient cloud backup capabilities.

How It Works

  • Split-Entry Protocol: Enter your mnemonic in two halves (e.g., words 1-12 and 13-24) to mitigate single-device compromise risks, with support for 12, 18, and 24-word phrases validated against canonical BIP-39 wordlists in real-time.
  • Cryptographic Verification: Client performs full BIP-39 checksum verification after both halves are entered, guaranteeing mathematical validity and error-free entry.
  • Independent Encryption: Each mnemonic half is encrypted separately using AES-256-GCM with your Client Data Master Key (CDMK), creating two distinct ciphertext records.
  • Zero-Knowledge Storage: Encrypted halves stored as opaque records within your Space, with servers having zero knowledge of content type or relationship between records.
  • Authenticated Split-Retrieval: Recovery requires full authentication to decrypt either half independently or both together, enabling secure two-device recovery that prevents full reconstruction on any single endpoint.

Security Implications

  • Distributed Trust Model: Split-entry and split-storage architecture ensures no single compromised device or session can expose your complete seed phrase.
  • Server-Blind Architecture: UnoLock servers handle only encrypted ciphertexts with no metadata revealing mnemonic content, maintaining absolute zero-knowledge guarantees.
  • Multi-Device Recovery: Independent decryption of halves allows recovery across two trusted devices, preventing single-point-of-failure scenarios.

Use Cases

  • Hardware Wallet Backup: Store Ledger or Trezor recovery phrases with bank-vault security while maintaining cloud resilience against physical loss.
  • Exchange Wallet Protection: Secure backup for MetaMask, Trust Wallet, or other software wallet mnemonics without exposing them to online threats.
  • Multi-Wallet Management: Safely store multiple seed phrases from different wallets in isolated, encrypted vaults with granular access control.

Why It Matters

SeedSafe transforms the dangerous practice of physical seed phrase storage into a cryptographically secure digital solution. By combining split-entry protocols with zero-knowledge encryption, it eliminates the traditional trade-off between security and accessibility, ensuring your recovery keys remain both utterly inaccessible to attackers and reliably available when needed.

FAQs

Can UnoLock access my stored seed phrases?

No, SeedSafe's zero-knowledge architecture ensures seed phrases are encrypted client-side before transmission. UnoLock servers only store encrypted ciphertexts without any ability to decrypt or relate the stored halves.

What happens if I lose access to one device during split-device entry?

You can still complete the entry on a single trusted device. The split-device option provides enhanced security but isn't mandatory for storage or retrieval.

Is SeedSafe compatible with all wallet types?

SeedSafe supports all standard BIP-39 compliant wallets with 12, 18, or 24-word mnemonic phrases, covering virtually all modern cryptocurrency wallets.

Compliance & Privacy Regulations

  • GDPR & Privacy Compliance: SeedSafe maintains complete data sovereignty through client-side encryption, ensuring compliance with GDPR's data protection principles.
  • Zero-Knowledge Guarantee: Server infrastructure cannot access, decrypt, or correlate stored mnemonic data, exceeding standard compliance requirements.

Integration with Other Features

  • Post-Quantum Encryption Security: Leverages quantum-resistant AES-256 GCM encryption to protect seed phrases against future cryptographic threats.
  • Spaces: Enables isolated storage environments for organizing multiple seed phrases with distinct access controls and security policies.

Back to Features Overview