Curv’s proprietary multi-party computation (MPC) protocols eliminate the concept of private keys, signing each and every transaction in a secure, distributed way to protect against cyber breaches, physical damage, and insider collusion.
Curv provides a scalable, software-only, cloud-based service that replaces the need for both cold and hot wallets. Curv also manages all the set-up and ongoing operations of blockchain IT infrastructures, making it easier than ever to adopt new digital assets, now and in the future
Curv’s flexible, enterprise-grade policy engine allows administrators to define adaptive risk profiles and enforce granular controls for all employees, machines and wallets, assuring compliance with organizational policies across all digital assets.
Curv’s unique, institutional-grade policy engine gives you total visibility and control over your digital wallets. For the first time, you can define risk profiles, based on the volume of funds being transferred, and enforce granular policies for each wallet to ensure only valid and authorized transactions can be signed.
As part of Curv’s software-based design, the policy engine can easily scale to support any number of users within your organization and adapt approval policies to match a transaction’s risk.
Curv’s Secret Sauce:
In order to securely sign transactions, Curv uses multi-party computation (MPC) protocols that leverage independently generated shares of cryptographic material instead of private keys. This is done in a mathematically secure, distributed way to eliminate the single point of failure in blockchains. These MPC protocols enable you to confidently adopt and take full advantage of the speed, efficiency and autonomy of an online interaction with blockchain applications.
Curv’s protocols extend to many digital assets, allowing you to confidently adopt and easily use any digital asset you want to transform your business.
It is easy to set up and start using the Curv Institutional Digital Asset Wallet Service to manage and secure all your digital assets. Before creating a wallet, cryptographic secrets, called shares, are independently generated by you and Curv. They can be generated within your network or on an employee’s device. These shares are then used, via one of Curv’s MPC protocols, to create a public key for the wallet.
Shares can be distributed to any number of users – they remain confidential and are constantly rotated for added security. Compromising just one share has no cryptographic significance whatsoever. It is virtually impossible for an attacker to compromise the right sets of shares from both you AND Curv at the same point in time. Once the wallet is generated, digital assets can be deposited to the public key and you can start securely transacting.
In order to sign a transaction there is a need for all the shares in
the set to participate in the MPC protocol.
When a request to transfer funds outside of the wallet is made, Curv will authenticate the requesting party (user or machine), and validate the request adheres to your pre-defined policy. These rules can cover any number of criteria pertaining to the user’s identity, transaction volume, destination wallet, and more.
Once approved, the MPC protocol is executed to jointly sign the transaction using shares on your side and the Curv side, without ever bringing them together.
Curv maintains all the infrastructure required to transact with different blockchains so you don’t have to. Once jointly signed, Curv will upload the signed transaction to the relevant blockchain and monitor its execution.