Skip to content

Advanced Key Management: Admin and Read-Only Access with Timelock

Overview

UnoLock access keys can be granted different levels of authority. Some keys can fully administer the Safe, while others can be limited to read-only or otherwise narrower access. Timelock adds time-based control on top of those permissions, making it possible to delay when a key or access path becomes usable.

How It Works

  • Admin Access Keys: Admin keys can manage the Safe, register or revoke other keys, and change access settings.
  • Limited-Access Keys: Other keys can be constrained to read-only behavior or limited Safe and Space permissions.
  • Timelock Controls: Access can be delayed until a configured time or condition is reached.
  • Client-Side Enforcement Model: Access policies are applied within UnoLock’s client-side security model rather than by exposing plaintext data to the server.

Security Implications

  • Granular Delegation: Users can share the same Safe without making every participant a full administrator.
  • Reduced Change Risk: Read-only or limited keys lower the chance of accidental or malicious modification.
  • Time-Based Release: Timelock reduces premature access and can support estate, governance, or staged-release workflows.

Use Cases

  • Family Safes: One person keeps admin rights while another person receives limited access to selected areas.
  • Team Operations: A collaborator can be given visibility without full administrative control.
  • Delayed Release: Access can be held back until a date, event, or operational milestone.

Why It Matters

The important distinction in UnoLock is not just who can open a Safe, but what each access key is allowed to do once inside. Adding role and timing controls on top of access keys makes same-Safe sharing much safer and more practical.

FAQs

What is the difference between admin and read-only access?

Admin access can manage the Safe and other keys. Read-only or limited access can view data without broad modification rights.

Can access be restricted to only some Spaces?

Yes. UnoLock can grant narrower access to selected Spaces instead of full Safe administration.

Can UnoLock override a timelock?

No. The point of timelock is to enforce delayed access within UnoLock’s security model, not to create a server override path.

Compliance & Privacy Regulations

  • Controlled Access Management: Role and timing controls help users apply least-privilege access in sensitive environments.

Integration with Other Features

  • Robust Key Management with Multi-Key Registration and WebAuthn: Supplies the registered access keys.
  • Spaces Granular Data Access and Control: Works with Space-level boundaries inside the same Safe.