Today I’m excited to announce that Multicoin Capital has led a $2M seed round in Torus, including participation from Binance Labs, Coinbase Ventures, Accomplice, Sixth Horizon, and Terminal.
Key management is the single biggest usability constraint in crypto today. Torus offers the most elegant key management solution. Using Torus, logging into Web3 applications is indistinguishable from Web2 applications.
The Problem
Nick Szabo states that “Trusted Third Parties are Security Holes.” Because the modern web is predicated on trusted third parties storing users’ keys, the web as we know it is a security hole.
Why is key management such a hard problem? Because there is no way to recover lost keys. Keys are the root of trust, and if they’re lost, they’re lost permanently.
Consumers have been trained to assume that there are always backdoors:
- Forgot your password? Click the “Forgot Password” button.
- Forgot to bring your driver’s license to the airport? Talk to the security agents in the backroom.
- Lost your passport while travelling abroad? Go to the local embassy.
- Forgot your login for your online bank? Go to the local branch with a driver’s license.
Consumers depend on trusted third parties. Creating a key management system that puts consumers in control, that elegantly works across devices, and that doesn’t suffer from any false positive or negatives is an extraordinarily difficult problem.
There are many approaches to consumer-grade key management. We’ve considered all of the approaches to key management, and have found that Torus offers far and away the best user experience without introducing any new trust assumptions.
Torus makes Web3 apps feel like Web2 apps.
The Evolution of Consumer Key Management
The first iteration of key management in crypto boiled down to: write down 256 bits of information on a piece of paper and don’t lose the paper. The second iteration reduced the amount of security in terms of bits of entropy by introducing the all too familiar “write down 24 words.” This is better, but not much.
More recently, apps started offering the ability to encrypt keys with a user-generated password, and sync the encrypted files across devices. This innovation was a huge improvement in usability. However, this solution lacks account recovery.
Since then, teams have been playing with a few approaches to account recovery, including approaches based on multisig wallets and Shamir Secret Sharing (SSS). But these approaches have clear drawbacks: they require elaborate setup processes that are intimidating to users.
Other key management service providers are offering solutions based hardware security modules, but these solutions rely on backdoors for account recovery, introducing new trust assumptions that are actually worse than the status quo in many ways.
Torus is the first and only key management solution that works natively across all devices and browsers, includes account recovery, and that doesn’t introduce any new trust assumptions.
How does it work?
The foundation of Torus is a distributed key generation (DKG), which is a specific type of multi-party computation (MPC).
There is a distributed network of nodes—9 nodes run by companies including Binance, Coinbase, ETC Cooperative, Terminal, Kyber, among others—that participate in the DKG. During this process, the nodes collectively generate a sharded key, but—importantly—the key never exists in one place at any point in time. This is makes DKG distinctly different from SSS. Using SSS, the key is still generated in one place, then sharded using SSS. Using a DKG, the key is generated in a distributed fashion.
In order to reassemble the key, the user needs 5/9 nodes to share their respective key shards. In the first version of Torus, users request the key shards and reassemble them locally in their browser in a separate javascript context, or iFrame (so that a malicious app cannot steal the key). When users close the browser tab, the keys are wiped from memory and disk.
Traditional key management solutions are logically-, architecturally-, and politically-centralized. The beauty of Torus is that it’s logically centralized, but architecturally and politically decentralized. It offers the same type of logical endpoint that developers and consumers are used to in the Web2 model, but with Web3 trust assumptions.
The Torus network implements the oAuth standard, so users can login with any oAuth provider, including Google, Facebook, and Twitter. Because of oAuth support, logging into Web3 applications with Torus feels just like logging into Web2 applications. The user experience is virtually identical. This also means that Torus can integrate with any oAuth provider, enabling Torus-based logins for enterprise Active Directory installations, as well as 3rd-party apps that don’t rely on Google, Facebook, and Twitter.
As a result of this unique architecture, Torus offers a seamless key management and login experience. Torus works natively across all devices and browsers without any extensions, it supports account recovery via oAuth providers, and it doesn’t introduce any new trust assumptions.
The Torus network is live today for Ethereum based applications. And it will be available shortly for SKALE chains. You can try it for yourself here. The API is also now available for developers and can be implemented with just a few lines of code.
Torus is coming to ed25519-based chains in the coming months. This includes Tezos, Solana, Near, Helium, Algorand, and Libra.
Bridging Web2 and Web3
We expect Torus will help bridge Web2 and Web3 applications. For example, let’s consider an e-sign application like Docusign. Most e-sign applications already ask the user to login using an oAuth identifier. In the future, e-sign apps will implement Torus so that the e-sign applications can record a cryptographic signature on a public ledger. This means that e-sign users won’t have to rely on Docusign as the arbiter of truth, but will be able to verify the integrity of digital signatures themselves on public ledgers.
While this is just one example, we expect there will be many analogs to this usage model. As consumers continue to lose trust in Web2 apps, those application providers will seek ways to reduce trust assumptions using public ledgers. While this seems counter-intuitive - after all, why would web2 apps empower users with web3 freedoms? - this will become increasingly necessary as deep fakes become widespread.
The world is experiencing a renaissance in MPC research and development. Although MPC has been around in academic literature since the 90s, it’s still a woefully underdeveloped area of computer science. The Torus team is at the bleeding edge of MPC, and we’re excited to back them to unlock the power of MPC for the world.
Because Torus maintains the same logically centralized endpoints as web2 applications, and because it so seamlessly integrates with web2 workflows that users already know, Torus is perfectly positioned to bring the best of Web3 to Web2, and the best of Web2 to Web3.
PS, if you’re interested in building the future of MPC and key management, Torus is hiring.
Disclosure: Unless otherwise indicated, the views expressed in this post are solely those of the author(s) in their individual capacity and are not the views of Multicoin Capital Management, LLC or its affiliates (together with its affiliates, “Multicoin”). Certain information contained herein may have been obtained from third-party sources, including from portfolio companies of funds managed by Multicoin. Multicoin believes that the information provided is reliable and makes no representations about the enduring accuracy of the information or its appropriateness for a given situation. This post may contain links to third-party websites (“External Websites”). The existence of any such link does not constitute an endorsement of such websites, the content of the websites, or the operators of the websites.These links are provided solely as a convenience to you and not as an endorsement by us of the content on such External Websites. The content of such External Websites is developed and provided by others and Multicoin takes no responsibility for any content therein. Charts and graphs provided within are for informational purposes solely and should not be relied upon when making any investment decision. Any projections, estimates, forecasts, targets, prospects, and/or opinions expressed in this blog are subject to change without notice and may differ or be contrary to opinions expressed by others.
The content is provided for informational purposes only, and should not be relied upon as the basis for an investment decision, and is not, and should not be assumed to be, complete. The contents herein are not to be construed as legal, business, or tax advice. You should consult your own advisors for those matters. References to any securities or digital assets are for illustrative purposes only, and do not constitute an investment recommendation or offer to provide investment advisory services. Any investments or portfolio companies mentioned, referred to, or described are not representative of all investments in vehicles managed by Multicoin, and there can be no assurance that the investments will be profitable or that other investments made in the future will have similar characteristics or results. A list of investments made by funds managed by Multicoin is available here: https://multicoin.capital/portfolio/. Excluded from this list are investments that have not yet been announced (1) for strategic reasons (e.g., undisclosed positions in publicly traded digital assets) or (2) due to coordination with the development team or issuer on the timing and nature of public disclosure.
This blog does not constitute investment advice or an offer to sell or a solicitation of an offer to purchase any limited partner interests in any investment vehicle managed by Multicoin. An offer or solicitation of an investment in any Multicoin investment vehicle will only be made pursuant to an offering memorandum, limited partnership agreement and subscription documents, and only the information in such documents should be relied upon when making a decision to invest.
Past performance does not guarantee future results. There can be no guarantee that any Multicoin investment vehicle’s investment objectives will be achieved, and the investment results may vary substantially from year to year or even from month to month. As a result, an investor could lose all or a substantial amount of its investment. Investments or products referenced in this blog may not be suitable for you or any other party.
Multicoin has established, maintains and enforces written policies and procedures reasonably designed to identify and effectively manage conflicts of interest related to its investment activities. For more important disclosures, please see the Disclosures and Terms of Use available at https://multicoin.capital/disclosures and https://multicoin.capital/terms.