Capsule’s MPC uses Distributed Key Generation (DKG) and distributed signing mechanisms to ensure private keys are never stored in one place. Refresh and rotate keys on demand.
Capsule uses passkeys to leverage secure enclaves on user devices for keyshare storage. This limits browser-based key extraction attacks and decouples key access from authentication, ensuring that wallets are never compromised even if the social login is.
Private keys cannot be accessed by your application, Capsule, or anyone but your users. Users can exit Capsule’s system whenever they choose, without the involvement of either Capsule or your app.