Understanding Security

Learn how Kasanova keeps your funds secure and what makes it different from traditional accounts.

Your Wallet Basics

What is a Wallet?

A cryptocurrency wallet like Kasanova is not like a physical wallet that "holds" money. Instead, it:

  • Stores your private keys (think of these as passwords to your funds)

  • Derives addresses where you can receive KAS

  • Signs transactions to send KAS to others

  • Displays your balance by querying the blockchain

Your funds live on the Kaspa blockchain, not in the app. Kasanova is your interface to access and control those funds.

Seed Phrase: Your Master Key

Your 12-word seed phrase is the foundation of your wallet:

  • One seed phrase = one wallet (permanently linked)

  • All your addresses and keys derive from it

  • Anyone with the seed phrase has full access to your funds

  • Losing it means losing access forever (Kasanova cannot recover it)

Think of it as a master password that unlocks unlimited sub-passwords (private keys).

How Kasanova Protects You

Client-Side Cryptography

Unlike centralized services, Kasanova performs all sensitive operations on your device:

What happens on your device:

  • Seed phrase generation

  • Private key derivation

  • Address generation

  • Transaction signing

What Kasanova servers never see:

  • Your seed phrase

  • Your private keys

  • Your addresses

  • Your balance

  • Your transaction details

This is called non-custodial or self-custodial security—you have complete control.

Three Layers of Security

1. Device Security

Your seed phrase is stored in:

  • iOS: Secure Enclave (hardware-isolated storage)

  • Android: Android Keystore (hardware-backed when available)

Even if someone gains physical access to your device, they cannot extract the seed phrase without biometric authentication.

2. Biometric Authentication

Every sensitive operation requires:

  • Face ID / Touch ID (iOS)

  • Fingerprint / Face Unlock (Android)

This includes:

  • Viewing seed phrase

  • Sending transactions

  • Signing inscriptions

  • Creating marketplace listings

3. Session Management

Kasanova automatically locks after periods of inactivity:

  • Default: 5 minutes

  • Configurable in Settings > Security > Session Timeout

  • Requires biometric re-authentication to unlock

Addresses Explained

What is an Address?

A Kaspa address is like an email address for cryptocurrency:

  • Starts with kaspa: (mainnet) or kaspatest: (testnet)

  • Long string of letters and numbers

  • Used to receive KAS and tokens

Example:

kaspa:qzxyz1234567890abcdefghijklmnopqrstuvwxyz1234567890

HD Wallet: Multiple Addresses from One Seed

Kasanova uses Hierarchical Deterministic (HD) wallet technology:

  • One seed phrase generates unlimited addresses

  • Each address is derived using a mathematical algorithm

  • Same seed phrase on any device = same addresses

Why multiple addresses?

  • Privacy: Using different addresses for different purposes

  • Organization: Separate addresses for different tokens or purposes

  • Compatibility: Following BIP-32/44 standards

Address Types in Kasanova

Receive Address

  • Your primary address for receiving funds

  • Visible in the Receive screen

  • Can be shared publicly

Change Address

  • Automatically generated for change from transactions

  • Managed behind the scenes

  • You don't usually interact with these directly

Biometric Protection

Why Biometrics Matter

Biometric authentication adds a critical security layer:

  • Device compromise: Even if someone steals your phone, they can't access funds

  • Convenience: Quick access while maintaining security

  • No password fatigue: No need to remember complex passwords

What Requires Biometrics?

In Kasanova, you'll need biometric authentication for:

  • Viewing your seed phrase

  • Sending KAS or tokens

  • Creating or minting tokens

  • Signing marketplace transactions

  • Accessing advanced settings

Setting Up Biometrics

iOS:

  1. Ensure Face ID or Touch ID is enabled in iOS Settings

  2. Kasanova will request permission on first launch

  3. Grant permission for biometric authentication

Android:

  1. Ensure fingerprint or face unlock is enabled in Android Settings

  2. Kasanova will request permission on first launch

  3. Grant permission for biometric use

If biometrics fail:

  • Kasanova provides a PIN fallback

  • Set your PIN in Settings > Security > Backup PIN

Private Keys vs. Seed Phrase

What's the Difference?

Seed Phrase (12 words)

  • Master key that generates all private keys

  • Human-readable and backed up on paper

  • Used to restore entire wallet

Private Keys

  • Cryptographic keys for each address

  • Not human-readable (long hexadecimal strings)

  • Derived from seed phrase automatically

You only need to back up your seed phrase, not individual private keys. The seed phrase can regenerate all private keys.

Kasanova Cannot Help If...

Understanding Kasanova's limitations is crucial:

❌ We CANNOT Recover Your Seed Phrase

If you lose your seed phrase, we cannot retrieve it. It never leaves your device.

❌ We CANNOT Reverse Transactions

Blockchain transactions are permanent. Once sent, funds cannot be recalled.

❌ We CANNOT Access Your Funds

We don't have your keys, so we cannot move your funds even if you ask us to.

❌ We CANNOT Reset Your PIN/Biometrics

If you lose access to biometric authentication and forget your backup PIN, you'll need to reinstall and import using your seed phrase.

Your Responsibility

With great control comes great responsibility:

✅ You Must:

  • Securely store your seed phrase (physical backup, not digital)

  • Never share your seed phrase (not even with Kasanova support)

  • Verify addresses before sending (transactions are irreversible)

  • Keep your device secure (lock screen, up-to-date OS)

  • Enable biometric authentication (adds critical security layer)

❌ Never:

  • Screenshot your seed phrase

  • Store seed phrase in cloud storage or email

  • Share seed phrase with anyone (even if they claim to be support)

  • Send funds to unverified addresses

  • Use public Wi-Fi without VPN for sensitive operations

Backup and Recovery

What to Back Up

Required:

  • ✅ Your 12-word seed phrase (written on paper)

Optional but Recommended:

  • Transaction history records (for tax purposes)

  • Addresses of frequent recipients (for convenience)

  • Marketplace listing details (for reference)

Never Back Up Digitally:

  • ❌ Seed phrase

  • ❌ Screenshots of seed phrase

  • ❌ Private keys

Testing Your Backup

Periodically verify your seed phrase backup:

  1. Read your written seed phrase

  2. Ensure all 12 words are legible

  3. Verify word order is numbered

  4. Store in a secure location

Advanced: Test recovery on a second device (optional)

  1. Install Kasanova on another device

  2. Import using your seed phrase

  3. Verify balance matches

  4. Uninstall from test device or keep for multi-device use

Next Steps

Now that you understand wallet security:

PreviousImporting a WalletNextApp Interface

Last updated