The Solution
Relai replaced its existing methods with Keyless. Unlike FaceID or other local-level checks, Keyless uses the cloud and sits within the Relai app. It doesn’t assume that the device owner is the account owner. Instead, Keyless authenticates two key factors in less than a second:
The user’s face – matched against the original face set up during enrollment.
The user’s device – ensuring it’s the same or a trusted device from enrollment.
Crucially, Keyless does this in a privacy-preserving manner – as it does not store biometric data anywhere, neither on the cloud or the device.
Keyless now secures critical touchpoints within the Relai app:
Login
Users log in by simply looking at the camera, without any PIN needed for authentication.
Step-up actions
Making sure only the real account can delete their account and change personal details.
Account recovery
Before viewing their seed phrase, users authenticate biometrically. If someone else has access to the phone or email, they still can’t recover the account.
Login
Users log in by simply looking at the camera, without any PIN needed for authentication.
Step-up actions
Making sure only the real account can delete their account and change personal details.
Account recovery
Before viewing their seed phrase, users authenticate biometrically. If someone else has access to the phone or email, they still can’t recover the account.