TimeLock
Overview
TimeLock is a temporal shield for your UnoLock vault, empowering users across all tiers, Free, Inheritance, Sovereign, and HighRisk, to lock their vault or disable specific device keys for a user-defined period, ensuring no access until the time expires. Whether securing your entire vault or a single compromised device, TimeLock delivers immutable, time-based access control, fortifying your cryptocurrency keys, sensitive files, or private data against unauthorized access or coercion. This feature redefines security, offering unparalleled flexibility and protection in any risk scenario.
How It Works
- Vault-Wide Locking: Configure your entire vault to be inaccessible for a specific period (e.g., hours, days, or weeks), locking all contents, including cryptocurrency keys and sensitive files, across all devices and users.
- Per-Key Disabling: Temporarily disable access from a specific device key (e.g., a lost or compromised phone), preventing vault access from that device for a set period while allowing recovery from other trusted devices.
- Immutable Time Period: Once TimeLock is activated, the lock or key disablement is unchangeable, ensuring no access until the period expires, even under coercion or device compromise.
- Secure Activation: Initiate TimeLock via passkey authentication (FIDO2 or biometrics), with vault contents encrypted using AES-256 GCM and stored securely in AWS S3 with pre-signed URLs.
Security Implications
- Time-Based Protection: TimeLock prevents unauthorized access during vulnerable periods, such as travel or device loss, ensuring your vault or specific device remains secure.
- Coercion Resistance: The immutable lock period or key disablement protects against forced access, complementing DuressDecoy (Sovereign) and Plausible Deniability (HighRisk) for robust defense.
- Device Compromise Recovery: Disabling a compromised device’s key allows safe recovery from another trusted device, maintaining zero-knowledge privacy and user control.
Use Cases
- High-Risk Scenarios: Free tier users lock their vault during a high-risk event, ensuring no access to sensitive data if coerced, with access restored after the lock period.
- Device Loss Protection: Inheritance tier users disable a lost phone’s key via TimeLock, preventing unauthorized access while accessing the vault from another device to revoke the compromised key.
- Temporary Asset Security: Sovereign tier businesses lock their vault during critical operations, guaranteeing inaccessibility to cryptocurrency keys or proprietary data until the lock expires.
Why It Matters
TimeLock empowers users across all tiers to wield precise, time-based control over their vault’s accessibility, safeguarding digital assets against unauthorized access, coercion, or device compromise. In a world of unpredictable threats, this feature delivers unbreakable security and sovereignty, ensuring your data remains yours alone.
FAQs
Can I access my vault while TimeLock is active?
No, TimeLock renders the entire vault or a specific device key inaccessible until the defined period expires, ensuring maximum security for all users.
What happens if I lose a device with a TimeLocked key?
You can disable the lost device’s key via TimeLock from another trusted device and access your vault to revoke the compromised key, maintaining full control.
Can I change the TimeLock period after activation?
No, once TimeLock is set, the period is immutable and cannot be altered, preventing override attempts during the lock, across all tiers.
Compliance & Privacy Regulations
- GDPR & HIPAA Compliance: TimeLock ensures vault contents remain encrypted and inaccessible during the lock period, supporting GDPR and HIPAA by maintaining user privacy and data security across all tiers.
Integration with Other Features
- End-to-End Encryption: TimeLock leverages AES-256 GCM encryption to secure vault contents during the lock period, ensuring no unauthorized access, even by UnoLock, in all tiers.
- DuressDecoy: Complements TimeLock in the Sovereign tier by enabling decoy actions under coercion, enhancing protection when the lock period is inactive.
