Lockx provides a soulbound Lockbox non-fungible token (NFT) that is minted directly to your wallet and powered by a decentralized smart contract. Every Lockbox has the innate ability to wrap and secure Ethereum-based assets such as ETH, ERC-20s and ERC-721 tokens. Its non-fungible nature allows the smart contract to autonomously manage every Lockbox as its own unique account within its internal ledger, ensuring all secured assets are represented 1:1 without any loss of precision. Since the Lockbox NFT itself is soulbound (untransferable) after mint, your Lockbox, as well as its secured assets, remain locked within your wallet and can never be drained or moved without withdrawing the assets first.

Every Lockbox is minted with its own unique public signing key that independently signs authorization requests. Combined with token ownership gating, withdrawals require both wallet ownership and the separate EIP-712 signed message from the Lockbox's linked public key. If your wallet is compromised, attackers cannot access your Lockbox without its unique public key, giving you time to recover your assets to a fresh wallet in the event of a full private key or seed phrase compromise.

Lockx offers two key management options for your Lockbox signing key, a full self-custody option that enables you to use and manage your own Lockbox keys, as well as our proprietary key fraction technology that creates temporary Lockbox keys on-demand based off of your existing wallet signature. If you choose to create your Lockbox key through our key fraction system, we'll combine your unique wallet signature with a random key fraction that we encrypt and store. These two keys (your signature and our encrypted key) are combined together through HKDF-SHA-256 derivation with domain separation and context binding to derive your unique signing key to create your unique signing key for your Lockbox. After use, all keys are immediately discarded and removed from persistent memory, leaving behind only the two halves. We only store our individual key fraction which we encrypt with AES‑256‑GCM encryption and store within FIPS validated cryptographic modules. Even if our system is compromised, the attacker will only see encrypted cipher text which is practically impossible to crack. Even if they did manage to crack the encryption and receive the raw key fraction, it is still useless on its own without your wallet signature half, which can only be produced by you.

Lockx charges a one-time platform fee to mint your Lockbox, with no ongoing fees, withdrawal limits, or integrated tokenomics, offering two distinct key management approaches:

Self-Custody Keys (0.002 ETH / $9.99) - You provide your own Ethereum signing key during mint, while we maintain no reference to your key, placing full responsibility for key management and security with you.

Lockx key fraction (0.004 ETH / $19.99) - Our non-custodial key fraction technology uses a two-part system designed for convenience, where you provide your wallet signature and we generate an encrypted key fraction specific to your Lockbox. When you need to access your Lockbox, these two components are cryptographically combined to derive your unique signing key on-demand. This approach eliminates the need to manage additional keys since your existing wallet can recreate your signing keys at any time, while neither component works independently to maintain security.

We never store your wallet signatures or complete keys - only our encrypted key fraction. Your key fractions are protected using AES encryption within FIPS-verified Google Cloud cryptographic security modules, with automated backups removing risk of accidental deletion. We provide full seed phrase export functionality for signing keys created through our system, allowing you to take complete control of your keys and interact directly with your Lockbox outside of our platform at any time. All created signing keys are destroyed after each use leaving behind only encrypted key fractions. Even if our systems were compromised, attackers would need to break Google's enterprise-grade encryption to access the raw key fractions, which remains ultimately useless without your wallet signature.

All Lockboxes are protected by our key fraction-based Two Factor Authentication system. Decrypting your key fractions and recreating your signing keys requires mobile 2FA verification, where even your TOTP authentication secret is generated using our key fraction technology. Unlike traditional systems that store 2FA secrets on servers, we don't store complete authentication secrets anywhere.

To access your Lockbox, you must first recreate your 2FA secret using your wallet signature (similar to recreating your signing keys), then verify the generated code. This dual key fraction approach ensures that neither your signing keys nor your 2FA secrets can be accessed without your wallet signature, maintaining complete privacy since we cannot generate your 2FA codes even if we wanted to.

We do not require identity verification or compliance checks, relying instead on this cryptographic 2FA system that keeps your identity completely private while providing enterprise-grade security.

We are not another wallet provider. Instead, we operate as a security layer inside your existing wallet, providing a non-fungible Lockbox token that can be minted and owned by any wallet or self-custody solution. Traditional hardware wallets create vendor lock-in and sacrifice convenience, multisig wallets rely on overly complex signing infrastructure that may be overkill for personal use cases, and exchange-hosted wallets are prone to arbitrary account freezes, KYC enforcement, and identity doxing. Lockx Lockboxes use decentralized smart contract security features to secure your assets like token ownership-gated authorization, soulbound (non-transferable) properties, and multi-key verification - all without restricting or altering your underlying wallet. Each Lockbox maintains its own unique ledger through dedicated smart contract mappings, ensuring 1-to-1 non-fungible representation of your secured assets with no pooling or sharing of funds between users, while your Lockbox remains permanently locked within your wallet as permanent proof of ownership.

While we haven't completed a professional audit yet, we have implemented a comprehensive testing framework with over 837 tests across three categories: Hardhat unit testing (438 tests with 90.08% branch coverage), Foundry property-based testing (31 invariant tests with approximately 25 million randomized operations), and scenario validation (368 tests across 83 files covering edge cases, multi-user interactions, and attack vectors). This testing approach provides property validation through invariants, functional verification through unit tests, and real-world scenario coverage. The framework validates critical security properties including asset conservation, ownership uniqueness, signature nonce integrity, reentrancy protection, and swap safety mechanisms. It also handles fee-on-transfer tokens, direct ETH operations, array integrity, and complex multi-operation workflows. All tests pass with 100% success rate and are publicly available in our GitHub repository, meeting the ≥90% coverage target referenced in OpenZeppelin's audit readiness guide.