Entity Secret
The Entity Secret is a critical security feature designed to protect developer-controlled data. It uses a public-private key pair for encryption and decryption, ensuring that sensitive information remains secure. It acts as your secret password.
Our platform does not store the Entity Secret, and it is not recoverable if lost. Therefore, it is crucial to securely store this secret in a safe place.
Ensure that the Entity Secret is never exposed on the client side or in any public repositories. It should only be used in server-side code or secure environments to prevent unauthorized access to your wallets and transactions.
What is it used for?
The Entity Secret is used for:
- Encrypting and signing transactions with developer controlled wallets
- Signing transactions for sponsorships
How To Generate An Entity Secret
Follow these steps to create an Entity Secret:
- Access the Dashboard: Navigate to the Dashboard > Security section.
- Create a Key Pair: Click “Generate Key Pair” to create your Entity Secret.
- Public Key: Stored by UTXOS to encrypt your data.
- Private Key: You are responsible for securely storing this key, as it is required to decrypt your data through the SDK.
Best Practices
- Keep It Secure: Store your private key in a secure location, in your backend as a private environment variable
- Do Not Share: Never share your private key with anyone.
- Create a Backup: Create backups to prevent loss. UTXOS cannot recover lost private keys, so ensure you have a reliable backup strategy.