Skip to main content

Overview

With self custody on Fortary, external keys that are imported into the platform are done through the Fortary mobile app. The keys are sharded between 2 MPC TEE nodes managed by Fortary and within the dedicated mobile device that you imported the keys into.  Keys are a very vulnerable piece of holding crypto assets. Exposed keys can mean permanent loss of assets. This procedure may take time to set up, but it provides layers of security to keep your keys secure while your organization operates efficiently.  Here is additional info on imported keys and mobile device considerations.

Mobile Device Preparations Steps

  1. Acquire a dedicated mobile device.
  2. Ensure the mobile device is set up, has the latest iOS, and can access the internet.
  3. Ensure passcode and biometric are set up to log into device.
  4. Determine who in your organization will own this device.
  5. Agree within your organization the proper security measures around this device.
  6. Ensure you already have your account set up with the Fortary Team. And you have logged into the Fortary site prior. 
    1. Ensure you’re using a YubiKey that easily connects to your mobile device.
  7. Download the Fortary Mobile App to the dedicated mobile device.
    1. https://testflight.apple.com/join/gZMPkUWS
  8. Download a VPN App.
    1. Suggestion: Proton VPN

Onboarding Procedure (~30 minutes)

Fortary will schedule a short video call to set up your mobile device. Fortary team will walk you through this procedure.  Part #1- Device Set up
  1. Fortary will message your Signer Device a file. Download this document to your files.
  2. Go to your files on your Signer Device, and select the downloaded document. It will prompt you to go to settings.
  3. In settings, search “VPN & Device Management”. Go to this section.
  4. Select the option that says “MarbleRun Coordinator”. Once selected, hit “Install”
  5. Once installed, in settings go to “General”. Then select the “About” option.
  6. When in the “About” section, scroll down and select the option at the bottom that says “Certificate Trust Settings”
  7. In this section, switch “MarbleRun Coordinator” on.  
Part #2- Mobile App Set up
  1. Go to the Fortary Mobile app.
  2. Log into your Fortary Account.
    1. This will require your YubiKey.
  3. The Fortary App will ask if you want to generate a new password. This is your private key recovery password.
    1. If you are setting up the app for the first time, you should select “Generate New Password”
    2. If this is not your first time setting up the app, you should select “Use existing password”
  4. Store this password securely offline.
    1. Note: It is not a wallet seed phrase. This password is specifically for recovering the mobile app and your partial key on a new device if it is lost or damaged. Loss of this password does not compromise the system, but we may need to take precautions if you report the password has been exposed. 
  5. The Fortary App will request you name your mobile device so that the Fortary team can identify it as needed.
  6. Once you’ve entered the above information, the Fortary App will provide a “Certificate”.
    1. Please copy/paste this and share it with the Fortary team. 
    2. Then hit next.
  7. Wait for Fortary team to verify your device. Once complete your device is set up. 5. You can now use the device with a newly generated wallet or externally imported existing wallet.