Backup and Recovery

This guide describes the baseline recovery flow for production.

Recommended flow

1. Create wallet and confirm signing works.
2. Generate recovery artifacts through the SDK backup flow.
3. Store artifacts in separate trust domains.
4. Perform a recovery drill on a clean test device.
5. Record evidence of successful restore and signing.

Operational rules

• Never treat backup outputs as developer test fixtures.
• Never co-locate all recovery factors in one system.
• Require explicit operator approval and logging for restore actions.

Validation checklist

• Recovery works without original device.
• Restored wallet can sign expected payload.
• Audit trail includes who restored, when, and why.