Trusted contacts
Social Recovery
Never lose access, and make sure the right people can. Keeplas splits your master key into encrypted shards across trusted contacts -- a quorum can restore your vault, but no single person ever can.
Shamir Secret Sharing
Your master key is split into 5 shards. A threshold you choose (2-of-5 by default) can rebuild it.
Post-quantum wrapping
Each shard is wrapped with ML-KEM-768 (NIST FIPS 203), so it stays sealed even against future quantum attacks.
Reconstructed on-device
Recovery happens on your contacts' devices. Keeplas never sees a raw shard or your reconstructed key.
No collusion risk
Below the threshold, the shards reveal nothing. Not even Keeplas plus a single contact can open your vault.
How recovery works
- 1
Invite trusted contacts
Add people you trust by email or phone. They confirm and receive an encrypted shard.
- 2
Choose your threshold
Pick how many contacts must cooperate -- 2-of-5 by default. Lower is easier; higher resists collusion.
- 3
Shards are distributed
Each shard is wrapped to that contact with ML-KEM-768. No raw shard ever touches Keeplas servers.
- 4
A quorum restores access
If you lose your phrase -- or after a confirmed legacy event -- enough contacts cooperate and the key is rebuilt on their device.
At a glance
Scheme
Shamir Secret Sharing
Shards
5, threshold 2-of-5 default
Shard wrapping
ML-KEM-768 post-quantum
Reconstruction
On contacts' devices
Frequently Asked Questions
Can my contacts read my vault?expand_more
No. Holding a shard lets them help reconstruct the key only when a quorum cooperates under the conditions you set -- it never gives them standalone access to your contents.
What if a contact loses their shard or becomes unavailable?expand_more
Because only a threshold is required (not every contact), your vault stays recoverable as long as enough remain. You can also replace contacts and re-distribute shards at any time.
Build your recovery circle
Invite the people you trust and choose your threshold. Resilient access, on your terms.