Levain Wallet's Security Model

Levain believes security is paramount when it comes to managing digital assets on the blockchain, and it is at the core of everything we do. In this article, we will delve into the heart of our Levain Wallet and explore how we design self-custody wallets that ensures the highest level of security for your digital assets.

Keys

Keys are signatories of a Wallet, providing signing capabilities required as part of making transactions from your Levain Wallet. Signing comes in the form of a cryptographic signature that is viewable on-chain using public block explorers, which is generated using the Key's private key material.

How keys are used in Levain Wallets

Levain Wallets are built using multi-signature technology that requires a 2-of-3 signing quorum on-chain. When you create a Levain Wallet, there are three private keys which are generated in different ways.

Key Held by
User signing key You
User backup key You
Levain key Levain

User signing key

The User signing key is generated and held by you. Levain keeps an encrypted version of this using your wallet password, and Levain has no access to your actual private key. This key is used to co-sign transactions such as transferring funds out of the wallet.

User backup key

The User backup key is also generated and held by you.

This key is meant for you to backup safely, and only used in situations when you need to perform wallet recovery. Levain never keeps this key at all, except for the public key.

Levain key

The Levain key is held by Levain, and is used to (i) co-sign transactions and (ii) execute them (thereby paying the gas for the transaction). You need to fund the Levain key with native tokens such that