Shard
Last updated
Last updated
Cregis utilizes advanced MPC (Multi-Party Computation) shard technology to enhance the security of private keys by dividing them into multiple shards. In a single-signature wallet, these MPC shards are securely stored across both the local device and a Trusted Execution Environment (TEE), ensuring that no single entity holds the complete key. For multi-signature wallets, the shards are distributed across different local devices, further enhancing security by decentralizing control. Each time a transaction is made, the MPC shards are computed in various locations and combined with those stored in the cloud, ensuring a highly secure and efficient signing process.
You can check your shard status through the tick icon. When your tick is green, it means the shard is imported.
When you want to authorize a shard to another device, you need to export it from the original device and then import to your new device.
Navigate to the wallet detail page
Export the key shard
Enter your transaction password
After you finish the authentication, there is a key shard code pop up. Please copy the key shard code and click "confirm". You must click "confirm" to proceed with the next step.
After you export the key shard, please go to your new device and click "Import Key Shard".
Enter the key shard you exported from another device and click "Confirm". Please be reminded that the processing has a time limitation which is stated on the pop up window.
After entering the shard key verification, you need to enter the transaction password for authentication.
After finishing the authentication, you have imported the key shard successfully.
This feature currently supports only single-signature wallets. Authorizing another member means that the member can sign on your behalf. Please handle this operation with caution. If the member has left the team or no longer needs to sign on your behalf, delete the authorized shard immediately to ensure asset security.
Navigate to the wallet details page and click Settings.
Click Authorized device to start the shard authorization process.
On this page, you can view authorized devices and click Add Authorization.
Select the member you wish to authorize. After selection, the devices used by the member will be displayed. Choose the device you want to authorize.
After selecting the device, set the authorization duration. You can choose Free (Permanent) or specify an expiration date.
Once settings are complete, click Confirm and complete the Google verification.
After successful Google verification, a passcode window will appear. Copy the passcode and use it to import the shard on the designated device.
If you're unable to locate the device holding the shard, you can opt to reset it. Upon resetting, all previous shards will be automatically deleted, and only the device used for the reset will retain the shard. Resetting requires the recovery phrase from when the wallet was created, so please ensure it is stored securely.
You can find "Reset key shard" under shard Management.
Then you can enter the recovery phrase of this wallet to reset the shard.
After inputting correct phrases, the authentication would be pop up. The shard will be reset after you finish the authentication.
You can delete the key shard in your device for safety concerns. If you cannot find the shard, you can reset it by any device.
You can click the "delete" button under shard management and then click "confirm".
Shard will be deleted after you finish the verification.