In an insightful interview with SafetyDetectives, Nick Neuman, CEO of Casa, delved deep into the world of cryptocurrency security and self-custody. Casa specializes in offering a range of self-custody solutions for crypto assets, enabling users to hold their private keys and adding multiple layers of security to prevent loss or theft. Unlike traditional single-key crypto wallets, Casa provides a multi-key model, distributing keys across various devices to make it virtually impossible to compromise or lose more than one key at a time. Neuman also discussed the importance of vigilant management of wallet permissions in the burgeoning field of decentralized finance (DeFi), as well as the vital role of private keys as the “key to the kingdom” in cryptocurrency.
Can you discuss your background and current role at Casa?
I’m the CEO and a co-founder of Casa. Before that, I was also the company’s Head of Product, and I’ve led the launch of every product we’ve built. In the past, I also worked as a Product Manager at mobile airport ordering app Grab. Before entering the startup world, I was an Associate at a private equity investment firm called The Sterling Group, and an Analyst at the investment banking firm Lazard.
The early Casa team realized that private keys are a critical technology to give people control over the things that matter most to them: their money, identity, communications, and personal data. However, while private keys give people full control over things like digital money, they can be difficult to use, and one mistake can be catastrophic. If you lose a key that secures your bitcoin, you lose all of that money.
We realized that if bitcoin was ever going to be adopted on a large scale, we needed a highly secure, proven, and beautifully designed product that allows users to hold their keys without having to worry about security — and this is how Casa was born.
What are the main services offered by Casa?
Casa offers a full range of self-custody solutions, allowing users to take control of their cryptocurrency, hold their private keys, and safely withdraw their crypto from exchanges. Notably, the self-custody part means that Casa has no control over users’ private keys — unlike centralized custodians.
At the same time, Casa offers users peace of mind when it comes to securing their assets. Compared to the most basic way of self-custody — where people manage their private keys all by themselves and could lose their crypto forever by losing them or having them stolen — Casa offers a number of safeguards that can be used to both secure and restore digital assets.
With most crypto wallets, you have one key that protects your funds – if you lose that key, you’ve lost everything. With Casa, you have multiple keys protecting your funds, and you only need some of them to access your money. That means you can lose a key without losing your money. Further, these keys are stored in separate places/devices, so compromising or losing more than one key at a time is incredibly difficult. Casa’s model provides greater security than single hardware wallets, mobile phone wallets, browser extensions, and custodians – while keeping control in the hands of our members.
Additionally, Casa’s shared accounts and inheritance planning services also help people safeguard their digital assets for generations, with a seamless account transition to someone they trust.
Can you briefly explain what a private key is and its role in cryptocurrency security?
Simply put, a private key — often viewed as a seed phrase in the crypto world — is like a password to your digital assets stored on a blockchain. In Bitcoin’s case, for example, a private key can be in the form of 24 words in a strict order, generated from a 2,048-word pool. A private key gives its holder full control over crypto assets stored at a specific address on-chain. This makes it literally the “key to the kingdom” – and it’s incredibly important to protect it well.
What primary methods are used to securely generate and manage private keys? Are there any best practices that users should follow?
Broadly speaking, the most secure way to store crypto is via so-called “cold” wallets that aren’t connected to the Internet in any way, so hackers can’t compromise them. Meanwhile, one of the least secure ways to store your digital assets is with centralized custodians like crypto exchanges. Apart from intentional and clearly malicious fraud (like what happened at FTX), even the biggest centralized platforms — like BlockFi or Voyager, for example — could simply collapse, locking up user funds in bankruptcy proceedings for years.
While centralized custodians sometimes offer more convenience, the rule “not your keys, not your coins” was widely popularized for a reason. If you trust a third party with your private key, there is a constant risk of losing your crypto.
With the rise of decentralized finance (DeFi) platforms, users often need to grant certain permissions to their wallets. How can users securely manage these permissions to minimize potential risks?
Always pay attention to every permission request. External solutions like MetaMask, for example, will always display a list of permission descriptions a decentralized app may ask for, so users must always carefully read them before accepting. If you’re not sure what a particular permission means, it is best to research it further before accepting. It’s also a good idea to periodically go through your permissions and revoke apps you aren’t using anymore.
What advice would you give to individuals who are new to the world of cryptocurrencies and are looking to ensure the security of their private keys and investments?
Don’t trust your private keys to third-party custodians and always do your own research. There are great companies out there, Casa being one of them, that can help you secure your keys. Don’t give up that fundamental right to controlling your money. Not your keys, not your coins!