One of Casa's unique offerings to our members is use of the Casa Recovery Key, a service that's managed by Casa .
If you lose multiple devices (keys) in your keyset, we have the ability to help recover your funds and help you set up a new keyset.
The trade off to this convenience is that Casa must have a way to verify the identity of the person who is making a recovery request.
For 3-key vaults, this involves storing your answers to a series of unique security questions that only you know. If you ever need to use the Casa Recovery Key, you'll be asked to enter those answers and undergo a 7-day waiting period before your recovery transaction is signed.
For 5-key vaults, while we are not going the AML/KYC route and requiring government-issued identification documents, we will want to store an audio/video session for our records. Support agents will use these records in the future to verify via video conferencing that it is the real account owner who is requesting to make changes to an account such as resetting a password or performing a Casa-facilitated key recovery.
This should at least provide strong enough authentication until we reach the point that tools making it trivial to generate audiovisual representations of people in realtime become available (e.g., "deepfake" AI). If you do not wish to use this form of audiovisual authentication, we're open to exploring other options.
Some members choose to verify with an audio/video recording of some specific object, like a wedding ring or a tattoo, rather than their face. If this level of privacy is important to you, we'll be happy to help you come up with an alternative to recording your face.