Objective
Strongly protect the private key export flow by requiring a second verification step before keys can be revealed.
Scope
- Verification challenge before showing/exporting keys
- Rate-limit export attempts
- Audit logging of attempts and successes
- Clear UX warnings and recovery guidance
Outcome
Even if a session is compromised, key export remains difficult without the second factor.
Objective
Strongly protect the private key export flow by requiring a second verification step before keys can be revealed.
Scope
Outcome
Even if a session is compromised, key export remains difficult without the second factor.