Overview
Collaborative Key Management (CKM) is a Blockchain Commons architecture for generating, storing, and using keys in a collaborative way, where several different devices or entities come together and use their individual secrets to generate and regenerate keys solely for the brief instant that they’re needed. Our roadmap target for deployment of solutions leveraging this CKM architecture is 2024+.
CKM expands upon Collaborative Seed Recovery (CSR), our existing architecture (begun in 2019 with SSKR, then expanded to the wider CSR architecture in 2022), which supports the resilience and recovery of seeds (not keys) using well-reviewed cryptographic code. CKM is still a future project, but these current pages are intended to create a touchstone for the current CSR work, so that it’s appropriately future-proofed against current CKM development.
Why Is CKM Important?
Digital assets are an emerging asset class in the 21st century economy. Unlike physical assets, they require a secure digital custody solution. However, in order to protect digital assets, we need someone in the physical world who will protect the keys underlying the digital assets — acting as an interface to the digital landscape.
CKM resolves the current problems of centralization and of self-custody solutions by providing a new solution that is not endangered by the lossage possibilities of self-custody or the censorship and compromise dangers of third-party custody. It also improves on CSR by creating a system much less prone to compromise and incrementally less vulnerable to censorship.
See CKM Architectural Overview for more information on both g eneral and specific problems solved by CKM.
How Does CKM Work?
CKM depends on SMPC (Secure Multi Party Computation). Its ultimate goal is to use secrets held by Secret Servers on the internet to generate keys to be used for a variety of services. No Secret Server individually has enough key material to access digital assets; instead those keys are only generated just as they’re needed by the Secret Servers working together.
See CKM Architectural Overview for more on the new technologies making this possible.
Links
Intro:
Use Cases:
- CSR-Focused Progressive Use Cases (CSR Docs)