Discussion: Key Recovery Process

[demisx]

As a user of frequency network, I want to be able to restore a lost cryptographic key (account key, private graph key), so I can access my account or data in the private graph.

Acceptance Criteria:

• [ ] The recovery process must be easy and straightforward
• [ ] The recovery process should be universal for recovering different types of keys

References:

• https://github.com/Liberty30/polkadot-experiments/issues/25#issuecomment-1026350463
• https://github.com/LibertyDSNP/frequency/tree/main/designdocs
• Why we need wide adoption of social recovery wallets
• An Off-Chain Solution for Social Recovery | by Web3Auth

[demisx]

Would it be considered “key recovery” if (once the user identity has been verified) a new key pair is generated? Or do we need to restore the exact key pair that was used before?

[aramikm]

That seems like a valid way to recover an account related key, To give access to MSA.

If we are using the considered recovery keys for encryption( like in private graph) this approach alone probably would not work , unless we have a way to recover the private graph data.

[demisx]

@aramikm Understood. I was just wondering if I should even document solutions which are capable only to generate a new pair. Seems like I should, since this potentially may work for some use cases. Thanks.

[wilwade]

Moving this to a Frequency/Wallet concern.