Topic: How to Secure Your Assets on Exchange in the Event of Your Death? How it Works: (Read 265 times)

Risk management examples​:

This happened to me recently, i have been locked out of my Gmail account with absolutely No way at all of ever getting "back in".  A quick search online and you will see posts from thousands of people worldwide, though absolutely no fault of their own, locked out of Gmail with absolutely no way of ever getting back in, even with 2FA on account.
...
I am currently locked out of my Bitrex account because i need to click a link in my email to log into account, you have to do this if
...
I am shocked that this is not more well known in Crypto, but believe me, there are going to be more and more posts about people getting locked out of account with no access ever again to funds...
https://bitcointalksearch.org/topic/warning-do-not-use-gmail-for-exchange-email-5313971
--------------------------------------------------------------------------
All you need is a Policy Number: https://keyco.io/

I'm not really a technical guy but for me this is harder to understand as compared to just retrieving your wallet via the private key and your service is only limited to Binance. For me it would be easier to teach my kin on how to create and retrieve a wallet so that in case of my death they will know the way on how they will get my Bitcoin. Of course my private key and seed phrases can be stored in a safe place like a safety deposit box in which in case of my death the ownership of that safety deposit box will be handed down to my heir. In this way I can also teach the basics on how they can use Bitcoin wallets which I think is one of the fundamental things they should learn if they will be inheriting my Bitcoin.

We've made this service for those, who work with the exchange.

I strongly recommend users keep a minimum amount of crypto on any exchange (for the duration of trades only) given there is a strong likely hood the owners or hackers of exchanges will cause your exchange of choice to cease trading and you are left with nothing.

People stop following crypto news. People stop using social media. People change mail. Just imagine the owner going through a very long illness... This can so easily end up with those funds lost ...


Indeed, but the main rule use to be to not keep too big funds on exchanges, or any custodian service. Many things can go wrong. Not your keys not your coins.
The seed idea is for those who keep their funds on proper wallets.


Thank you for the kindness, but I'll pass. Keep it for somebody who will find it more useful, somebody who keeps his funds at exchange. Maybe somebody who trades a lot. (I did say that this is a niche service, didn't I?)

---

I don't need myself such a service (for multiple reasons), I've only tried to do some (hopefully constructive) criticism, my goal being a well thought and good working service.
For now the change of (your) IPs can be a problem. And although the proposed solution is .. weak, the actual problem is not that big (rather small chance for happening if multiple ISPs are used).
And yeah, there's also a trust issue: people have to trust you that you (or your employees) won't log their info and steal their funds later on.

KEYCO has been working for 3 years.
"In the future we plan to implement a decentralized version of the platform"

We will do our best to make the service work perfectly.

Imagine this scenario that Binance exchange continue to work without issues and person is having some funds there without passed kyc verification, and same person have your keyco policy.
Then one day this person dies, and Keyco business also shuts down and there are no more servers to keep anything.
What will happen in this situation and how will family of this this person get his coins?

- after testing, we will add backup servers at different hosting providers, trusted will be several different ip addresses
- we will notify our users on the forum, discord, twitter that they need to change the trust ip
- In the future we plan to implement a decentralized version of the platform

I agree this does look to be a more certain way to ensure nobody takes advantage of the owner's death but still, this relies on KeycoSafe servers to always have the same IP address and or the same device. But definitely too technical for majority of people, including me (which I can fix by reading a manual but not everyone will).

What happens if the company or the ISP is forced to make a change?

That's why you can make two different policies and specify  the amount you want to pass in each of the policies.

Send me your BNB address (bsc network) and I'll send you the policy for the test.

Send me PM your BNB address (bsc network) and I'll send you the policy for the test.

If you don’t have the Binance Chain extension installed in your browser, you can download the extension here:
https://addons.mozilla.org/en-US/firefox/addon/binance-chain/?src=search
https://chrome.google.com/webstore/detail/binance-chain-wallet/fhbohimaelbohpjbbldcngcnapndodjp

 no seed phrase on the exchange 

I agree, why fix it if it ain't broke right? I mean by the time that you have a family and you might not be dealing with bitcoin or if you still are, it will be lessened hopefully to spend more time with the family. It's not just safer but also you can do a lot more things with it, like testing who really is the person that cares for you when you are older, there are Reddit stories about this inheritance things were the greedy will not be able to take anything.

This sounds better and somewhat reassuring. I'm somewhat still not 100% convinced (but I can't say clearly why), but you seem to be going on the right direction.
I guess it's still too technical for many and people will prefer to pass on a seed - in a way or another - but your service can easily have its niche.

Sure. Just delete the API KEY or address from Whitelist in your binance account.

"We plan to introduce policies with deferred use, for example, one year after creation or with an indication of the start date of the policy. Thus, the heir will not be able to use the policy until this date. Or you can use any other services for deferred messages, emails, SMS."

google. com/search?q=binance+blocked+account

But they may have to go through with it:
Identity verification
Facial verification
Withdrawal Appeal

"For security purposes, the withdrawal function may be temporarily suspended for the following reasons:
The withdrawal function will be suspended for 24 hours after you have changed the password or disable the SMS/Google authentication after logged in.
The withdrawal function will be suspended for 48 hours after you have reset your SMS/Google authentication, unlock your account or change your account email.
If there are abnormal activities in your account, the withdrawal function will also be temporarily disabled. There will be an error message in the user center as follows: There is some abnormal activity with your withdrawals. Please click HERE to verify your identity in order to resume your account withdrawal function."

https://www.binance.com/en/support/articles/360002673851-How-to-Unlock-an-Account
https://www.binance.com/en/support/articles/360038583951-How-to-Resume-the-Withdrawal-Function

Thank you sir. We love what we do!  

Send me PM your BNB address (bsc network) and I'll send you the policy for the test.

If you don’t have the Binance Chain extension installed in your browser, you can download the extension here:
https://addons.mozilla.org/en-US/firefox/addon/binance-chain/?src=search
https://chrome.google.com/webstore/detail/binance-chain-wallet/fhbohimaelbohpjbbldcngcnapndodjp

Why should I make things complex where there are easy solutions? For me, I write a notebook where I am marinating all of my crypto wallets and exchange account credentials. So the event of my death my family members will be able to recover the left funds. I wrote everything including wallet seed, second password, and 2FA. So there shouldn't be an issue during the recovery of the funds. Besides that, I have mentioned a trusted person's name and mobile number on my notebook who is familiar with crypto and could help to recover the funds.

I don't think we have to use any third-party service for the next generation in case of my death. I don't see any issue maintain a notebook like this.

You'll find it hard to make a crypto enthusiast entrust an exchange and another 3rd party for the inheritance. We are aware of scams and we are aware also that sons and daughters (siblings) can fight over what you left. If you don't want them to quarrel with each other, you would probably just let them learn cryptocurrency as early as possible and give them equally while I'm still alive.

I admire your persistence. You've been in crypto space for years. I don't know how much you've achieved-- probably not much-- but you're still here developing new products.

Personally, I'd rather risk writing down my complete login details on a piece of paper and keep it somewhere accessible only to me. The moment I'm gone, my family members would definitely go through all I've left and find out that I own certain amounts of crypto in various exchanges and other wallets.

As to your new product, on my end, can I cancel a policy and replace it with another one? How? Also, what if the policy holder would try to withdraw the funds even if I am still alive, although offline for a few months?

I wont never entrust off my funds on any service or wallets that promised out those kind of features.Im not really just too confident on doing that.
Much better if i do just simply tell them about my keys and talking about the basics on accessing those coins.

I would definitely do this one and i do consider this much safer.

No problem and you don't need to re-publish as you can just move it.
Just scroll to the bottom of the page and click on move topic and then select one of the topics I suggested before Service Announcements or Service Discussion.




It is interesting solution in case of lost 2fa but I am not so sure your system is bug free and there are some people who may try to abuse this in some way.
Problem is that whitelisted IP and address are just optional as I understand., and when something is optional people tend not to use it so often.

How to use the withdrawal address whitelist function

When you enable the withdrawal address whitelist function, your account can only withdraw to the addresses in the whitelist.

https://www.binance.com/en/support/faq/1d08944f103b4fc78d3519913b600086

We have written many times that users be sure to include a whitelist. The policy will not be generated if you do not check the corresponding checkbox.

The recipient of funds does not need to worry about keeping a static IP address. The policy can be used from any device with any IP address. Before creating a policy, the owner of the Binance account in the whitelist enters the static IP address of the KeycoSafe server. We will make sure that this address never changes.

If the policy is stolen, the attacker will need to somehow change the recipient's address in the policy. This cannot be done without decrypting the policy, which can only be done on the keyco server. The policy is protected by RSA encryption with a 4096-bit key. The attacker will also need to change the recipient's address in the exchange whitelist, and for this he will need access to your Binance account. Considering the above, we believe that there is no point in stealing and trying to decrypt the policy, because you will not be able to withdraw coins to any wallet other than the one specified in the policy (taking into account the observance of the recommendations described on the keyco.io website).

We don't need to store any information (API keys, recipient address, etc.). All this information is encrypted in the policy itself and is not stored in any logs, databases, etc. When using the policy, this information is decrypted, funds are withdrawn to the recipient's wallet, and the information is immediately deleted. It makes no sense for us to save the user's API keys in order to steal funds, since no one (including us) will be able to withdraw funds to a wallet other than the wallet specified in the whitelist of the exchange.

We plan to introduce policies with deferred use, for example, one year after creation or with an indication of the start date of the policy. Thus, the heir will not be able to use the policy until this date. Or you can use any other services for deferred messages, emails, SMS.

I apologize if I made a mistake with the section. I tried to move the topic, but I don't know how. Do I need to re-publish it?

Everything is correct. The funds on the exchange are not your funds. But, we and many traders trade on the exchange, and we are looking for a solution for the safe and easy transfer of funds to our relatives who do not understand crypto. Or you can forget / lose access to your account, email, 2fa ...

During the testing period, we connected BNB to the BSC network with a fixed amount of 0.01BNB and USDT (ERC20) with an amount of 40USDT. In the near future, we will connect other coins with the selected policy amount.

Lol! Another scam in the making! How do we ensure that you guys don't store the policy number that you generate? You need to have database to match with whenever the person inherited the policy enters that to your system!

I still prefer the old way! Get your will done and mark your private key into a legally sealed envelope and get in registered in the local court. That means, the envelope will be opened in presence of an attorney and by the person who is legally inheriting it. That's safer!

1. As said, this is not the best place to advertise your project, hence you should move the topic.
2. What stops you from conveniently log/store the information you get before (API keys) or after (policy number) encrypting it? If you want to tell about IP blacklist, read 4.
3. What stops the trusted person use the policy number and withdraw - sooner or later - those funds like he would have the API keys himself? (excepting IP)
4. From what I see the only security measure would be that the Binance account API keys work only with a small list of IPs. I don't have experience with the API keys, but I don't expect "the next generation" will be able to enter from the exact whitelisted IP. Most households have dynamic IP, hence the Binance account will have to allow IP ranges or everything (if that's possible), hence allowing the funds get stolen (see [2] and [3]).

Am I missing / misunderstood something?

If you are advertising your business then you should move this topic from Legal section to Service Announcements or Service Discussion.
Keeping Bitcoin on exchange you are not really holding your Bitcoin but you are trusting Binance to hold private keys for you, and if they go bust or if governments close them you will lose everything with or without your keyco policy number.

It is however very important to educate your family members about this and I would suggest writing instructions with backup phrase placed in tamper evident bags or envelopes, and this should be easy to understand and opened after death.
I would never keep many coins on Binance or any other ticking bomb exchange.
Not your keys, not your bitcoin.

I also noticed you are not even supporting Bitcoin with keyco when creating policy, but only BNB and USDT as I understand...
You also lose everything in case someone gets your policy number and you don't have whitelisted address or IP restrictions.

There are a number of ways that investors can pass on their crypto to the next generation, but each method requires some decision-making and planning, as well as some general knowledge of how crypto works.

If you keep funds on exchanges, things are a bit more complicated.

Is Cryptocurrency Inheritable? Yes, Here is How it Works.
You or your loved ones will receive your funds from exchange safely and securely.

KeycoSafe - withdrawal service from owner's wallet on Binance.com to a trusted person's wallet WITHOUT giving them any passwords to accounts, emails, 2FA, API key or any other data.

Generate your Policy Number and give it to a trusted person.

We never store your API key and policy number. We don't have any of your account information including logins or passwords. All data is encrypted in the policy.

Try it now, it's FREE
https://keyco.io/