Learn About JIL

Seed phrases were a clever early answer to a hard problem. They are also a poor long-term answer for mainstream digital sovereignty. Here is why - and what JIL Wallet uses instead.

One Phrase Doing Too Many Jobs

Seed phrases were designed at a time when self-custody meant a small population of technical users protecting a small population of digital assets. They worked for that population. The model has not aged well as the user base has broadened.

A twelve- or twenty-four-word seed phrase is asked to do three jobs at once: it is the single point of compromise (whoever has it can drain the wallet), the single point of failure (if it is lost, the assets are typically gone), and the single point of recovery (it is the only way back in). When one piece of information has to satisfy all three properties simultaneously, the model has no safety margin.

What Actually Happens to Seed Phrases

In practice, users write seed phrases on paper, save them to a phone, store them in a password manager, photograph them, or back them up to cloud storage. Each of those steps is a potential exposure point. The seed phrase becomes only as secure as the weakest step a real human takes when trying to keep it safe.

Phishing remains the most common path to compromise. A user is tricked into entering the phrase into a fake interface. By the time they realize, the assets are already gone. Because the seed phrase is the single point of compromise, there is no second factor that could have stopped the loss.

The Loss Problem

Loss is the other half of the problem. If the seed phrase is forgotten, destroyed, or unrecoverable, the assets behind it are typically permanently inaccessible. Recovery options that depend on a third party reintroduce custodial risk - the thing self-custody was supposed to avoid in the first place.

The MPC Alternative

JIL Wallet uses multi-party computation to remove the seed phrase as the single point of compromise. Signing authority is distributed across multiple shares. No single share can move value alone. Even if one share is exposed - by phishing, by a screenshot, by a misconfigured backup - the wallet is not drained, because the additional shares required to authorize a transaction are still under the user's control.

This is combined with modern authentication: passkeys, biometrics, and hardware-backed key storage where device support allows. The result is a security model that does not demand a fragile twelve-word secret be perfectly protected for the rest of the user's life.

Recovery Without Custodial Surrender

Recovery is the part where most non-seed-phrase wallets compromise. Many give users a guided recovery path that ends with a custodian holding enough material to restore access - which means the custodian could also access the assets directly. JIL Wallet is designed so recovery pathways do not require the user to surrender self-custody. Losing a device does not mean losing access. Choosing to recover does not mean choosing to give up sovereignty.