rchen8
commented
4 years ago Closed rchen8 closed 4 years ago
rchen8
commented
4 years ago 
shanefontaine
commented
4 years ago Hey Richard. We discussed a bit and don't think they pass the "non-custodial" check in the context of this chart.
While Fortmatic themselves don't necessarily have control of the accounts, they have delegated control to AWS Cognito. The intended definition of non-custodial in this context was that there is no reliance on 3rd parties at all.
Let me know if this makes sense and if you have any comments. If the above all sounds correct, I can go ahead and update the definition of non-custodial in the description section.
rchen8
commented
4 years ago Got it. So a sysadmin at AWS could theoretically steal all of Fortmatic users' coins?
Would be good to update the definition of non-custodial too.
shanefontaine
commented
4 years ago So a sysadmin at AWS could theoretically steal all of Fortmatic users' coins?
Yes, technically.
I do not know how their system specifically works, but I would imagine that whomever has control of the AWS account that configured Cognito may also be able to do the same. I do not know their system so this may or may not be true.
I'll update the definition now. :+1:
@rchen8 Cool! What’s the best place to find more information about this change?