poztter.com
poztter.com / your recovery
Your recovery.
The single best decision you can make about your POZ record is to configure recovery before you need it. Survivorship makes recovery a feature, not a procedure. But it only works if you set it up.
the rule
A modification to your master zone is authorized when the signing keys within any one survivorship group have values summing to ≥100. If you've only defined one group, and that group becomes unable to sign — your hardware token is lost, your phone is destroyed — the record is permanently locked. There is no reset button. There is no customer support.
Configure at least two groups. One for daily use, one for recovery.
recovery patterns
family or friends
| Group | Key | Value |
|---|---|---|
| 1 | Hardware token (you) | 100 |
| 2 | Family member 1 | 40 |
| 2 | Family member 2 | 40 |
| 2 | Family member 3 | 40 |
Three trusted people, any of whom hold a key. Two together are not enough (40+40 = 80); all three are required (40+40+40 = 120). This prevents collusion by a minority while still being practical to assemble in a real emergency.
agency
| Group | Key | Value |
|---|---|---|
| 1 | Hardware token (you) | 100 |
| 2 | Recovery key (you, on backup media) | 50 |
| 2 | Agency key | 50 |
Your daily key, plus a recovery group requiring you and an agency. The agency can't act unilaterally. You can't be locked out — if the agency disappears, you still have your daily key, and you can rotate to a different agency before the next incident.
multiple agencies
| Group | Key | Value |
|---|---|---|
| 1 | Hardware token (you) | 100 |
| 2 | Recovery key (you) | 50 |
| 2 | Agency A | 50 |
| 3 | Recovery key (you) | 50 |
| 3 | Agency B | 50 |
You + Agency A, or You + Agency B. No single agency can lock you out. No agency can act without you. Two independent recovery paths.
where to keep recovery keys
- Family / friend keys on hardware tokens (YubiKey, etc.) handed over in person, with written instructions on how to use them only on your request.
- Agency keys with the agency. They never see your master key; they just hold one of the keys in your recovery group.
- Your own backup recovery key on something offline — a printed paper key in a safe deposit box, or a hardware token in a drawer at a parent's house.
test it
A recovery group you've never tested is a recovery group you don't have. Once a year — or whenever your circumstances change (move, marriage, job change, family change) — walk through the recovery procedure end to end with the people involved. Make sure their keys still work. Make sure they remember which file is the recovery key and how to load it. Make sure your instructions are clear enough that someone you trust could follow them on the worst day of your life.
coming soon · poztter.com agency keys
A planned service from poztter.com is to act as an optional agency in your recovery group. The properties: we hold one key, never the master key; recovery requires both you and us to sign; the policy for what counts as proof of identity to invoke recovery is published and verifiable. You're never dependent on us alone — and you can rotate us out at any time.