Live demo · AMD SEV-SNP enclave
Sign in with a passkey.
Keys live in silicon.
No password, no seed phrase, no custodian. Your passkey unlocks a wallet whose key shares only ever reconstruct inside an attested trusted execution environment — and every signature comes back with a verifiable receipt.
01
Passkey ceremony
WebAuthn in your browser — Touch ID, Windows Hello, or a security key.
UV ✓
02
Attested enclave signs
Quorum policy, single-use nonces, and EIP-712 pinning enforced inside SEV-SNP.
trusted ✓
03
Signed receipt
Every operation emits a receipt you can verify against the signer's published JWKS.
receipt ✓
Alpha — don't custody real value
The signer is open source — same code, fail-closed.
wallet-auth / webauthn
● tee-backed
passkeys are scoped to auth.rickydata.org · fresh wallet per registration
machine flow: POST /api/auth/service/token — see the tutorial