Security

Kresus is designed to provide the highest level of security without the need for a seed phrase, which often presents a vulnerability for most users. Instead of relying on users to manage and secure their own seed phrases, the Kresus Smart Wallet uses a more secure, modern approach to private key management by utilizing ERC-4337 which removes the complexity of managing private keys and seed phrases, enhancing security with two-factor authentication and biometrics.

Secure Key Management Without Seed Phrases

At the heart of the Kresus wallet is the use of public-private key pairs to manage access to your assets. Unlike traditional wallets, where the user is required to keep track of a 12- or 24-word seed phrase, Kresus employs advanced cryptography to ensure your private keys are securely stored and managed.

When you create a Kresus account, a public-private key pair is generated. The public key identifies you on the blockchain, while the private key authorizes transactions. The private key, however, is never exposed directly to you, the user, making it impossible for attackers to steal or compromise.

HSM Technology

Kresus leverages Hardware Security Modules (HSMs) for the highest level of key security. These HSMs are specialized, hardware-based systems designed to securely store and manage encryption keys. Your private key is encrypted and stored in these HSMs, which are locked down in such a way that the keys never leave the secure hardware. This is similar to how leading hardware wallets like Ledger and Trezor work, but with the added convenience of cloud-based access.

Whenever you authenticate in the Kresus app, a secure token is generated, giving you temporary access to your private key stored in the HSM. This token is time-limited, ensuring that even if intercepted, it would be unusable after a short period.

Smart Contract Audit Link https://github.com/Credshields/audit-reports/blob/master/Kresus_Final_Audit_Report.pdf