One of Casa’s unique offerings to our members is use of a recovery key service that's managed by Casa .
If you lose multiple devices (sets of keys) in your keyset, we have the ability to help recover your funds and help you set up a new keyset.
The trade off to this convenience is that Casa must have a way to verify the identity of the person who is making a recovery request.
For Gold members, this involves us storing your answers to a series of unique security questions that only you know. If you ever need to use the recovery key, you'll be asked to input those answers and undergo a 7-day wait period before your recovery transaction is signed.
For Platinum and Diamond members, while we are not going the AML / KYC route and requiring government issued identification documents, we will want to store an audio + video session for our records. Support agents will use these records in the future to verify via video conferencing that it is the real account owner who is requesting to make changes to an account such as resetting a password or performing a Casa-facilitated key recovery.
This should at least provide strong enough authentication until we reach the point that tools making it trivial to generate audiovisual representations of people in realtime become available (e.g. “deepfake” AI). If you do not wish to use this form of audiovisual authentication, we’re open to exploring other options.