# Fireblocks Embedded Wallet

**Fireblocks Embedded Wallets in TSI**

TSI leverages Fireblocks [Embedded Wallet](https://ncw-developers.fireblocks.com/docs/getting-started) (EW) to provide secure and user-controlled digital asset management. This technology empowers TSI users (borrowers, lenders, and liquidators) to maintain full control over their funds without relying on TSI as a custodian.

Key features of Fireblocks EW within TSI:

* **2-of-2 MPC Key Management:** TSI leverages Fireblocks' 2-of-2 Multi-Party Computation (MPC) signature scheme for enhanced security. This cryptographic technique requires two parties to collaborate on every transaction signature. One key share is stored on the user's device (web or mobile), and the other is secured within an Intel SGX-enabled server managed by Fireblocks. Intel SGX (Software Guard Extensions) provides a hardware-based trusted execution environment, isolating and protecting the key material from unauthorized access, even if the server itself is compromised. This 2-of-2 MPC approach eliminates the single point of failure, ensuring that neither TSI nor Fireblocks can unilaterally access user funds.
* **Simplified Key Management:** Users create a simple passphrase for key recovery, eliminating the need to manage complex seed phrases or mnemonics. This significantly improves the user experience.
* **Secure Transactions:** All transactions within TSI are secured by the MPC protocol, requiring both the user's and Fireblocks' signatures for execution. This prevents unauthorized access and enhances the overall security of the platform.
* **User Takeover Ability (full private key export):** TSI provides clients with the ability to export their full cryptographic keys by utilizing Fireblocks' [Full Key Takeover](https://ncw-developers.fireblocks.com/docs/full-key-takeover) mechanism. This "User Takeover" feature gives users complete control over their assets, allowing them to move their funds to other wallets or services if they choose. While this feature emphasizes user autonomy, users should exercise caution and understand the potential security implications of managing their keys independently.
* **Enhanced Security and Trust:** By using embedded wallets and the 2-of-2 MPC scheme, TSI addresses key concerns regarding regulation, business risk, and user trust. Users have greater confidence in the security of their assets because they control a key share. This also reduces business risk for TSI by not requiring them to act as a custodian.

In essence, the Fireblocks EW integration within TSI provides a secure, user-friendly, and non-custodial solution for managing digital assets, aligning with the highest security standards expected by institutional clients.

<figure><img src="/files/wA8ueWKCpv8JN69ZelHU" alt=""><figcaption><p>MPC Key Signature Flow</p></figcaption></figure>

Reference: <https://ncw-developers.fireblocks.com/docs/custodial-vs-non-custodial-wallet>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://tsi-docs.tkmatrix.com/overview/fireblocks-embedded-wallet.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.