Casa App allows you to mark a key as compromised for several reasons:
- Your key was lost
- You believe the key or the backup seed phrase may have been stolen (compromised)
- You wish to replace the key with a different one
Casa App allows both the Mobile Key as well as any Hardware Wallet Device Key to be marked compromised and replaced.
"How do I mark my key as compromised?"
To mark a device as compromised, tap the device icon, then tap "Mark as Compromised."
You'll be asked to confirm the action in the next window:
This animation shows what the process looks like from start to finish:
When your device is marked compromised, Casa App will assume that your entire keyset is compromised, and you'll be guided through the steps of replacing that key as part of the process to migrate to a new keyset.
"Why can I still use my 'compromised' key to transfer to my new keyset?"
A key that's been marked compromised can still be used to transfer to the new keyset. The reason for this is you can't ever disassociate a key from a multisig keyset once that keyset has been created.
Because keys can't ever be disassociated from a keyset, Casa App creates an entirely new keyset for you when you've lost a device, or simply wish to swap your device for a different one.
Any of the 3 keys in the old keyset can be used to make the transfer to that new keyset. However, once funds are in the new keyset, the key that's been marked compromised will no longer work.
This means that if you still have the key in your possession, and mark it as compromised, you should not alter, reset, or make any changes to the key until you have transferred funds to the new keyset. Only when funds are on the new keyset will that key no longer work with your multisig setup in Casa App.
In addition, you should only ever mark one of your keys compromised at a time.