What Is Carabaas?
Carabaas is a self-custody platform for digital assets by CEX.IO.
You deploy a custody infrastructure for your company or your clients. You define the approval rules, control every transaction, and keep full independence. Carabaas provides the MPC technology, blockchain connectivity, and operational tooling — you run the custody.
A complete private key is never instantiated — not in memory, not on disk, not in transit. This is a mathematical property of the MPC protocol, not a policy control.
How It Works
Carabaas is supplied as SaaS infrastructure that enables you to operate your own custody. You, not Carabaas, are the custodian.
- Your cosigner runs on your infrastructure and participates in MPC signing with your share
- No transaction can happen without your cosigner's participation and your approval
- Carabaas cannot access, move, or block your funds
- You receive an escrowed seed backup for full independence from the provider
Self-Custody vs Traditional Custody
| Aspect | Traditional Custody | Carabaas |
|---|---|---|
| Signing control | Third party controls signing | You control signing; no complete credential exists |
| Single point of failure | Custodian compromise = loss | No single party can reconstruct a key |
| Transaction authority | Custodian executes | Your governance, your approvers, your rules |
| Vendor lock-in | Locked to custodian | Per-vault recovery or escrowed seed backup |
| Regulatory posture | You depend on custodian | You are the regulated entity |
| Audit visibility | Limited to custodian's reports | Full visibility: logs, monitoring, exports |
Five Layers of Control
Control is enforced at multiple independent layers. Compromise of one does not bypass the others.
| Layer | What It Does |
|---|---|
| Cryptographic | 2-of-2 MPC threshold — no transaction without your cosigner |
| Governance | M-of-N quorum approval — configurable per vault |
| Organizational | Role-based access — initiators cannot approve their own transactions |
| Operational | Seal/unseal lifecycle — cosigner is inert until designated unsealers activate it |
| Recovery | Per-vault recovery + escrowed seed backup — full independence without provider |
Provider Independence
Your control over assets does not depend on Carabaas remaining available. If Carabaas becomes unavailable — for any reason — you use the recovery layer to regain full unilateral signing capability. This is a cryptographic mechanism, not a contractual promise.
Who Is It For
Corporate treasury — secure company crypto holdings with approval workflows, fund segregation, and comprehensive reporting.
Client funds custody — run custody for your clients with segregated vaults, deposit addresses, and withdrawal processing under your control.
Fintech infrastructure — power your product with self-controlled wallet infrastructure. Integrate via API and keep custody in-house.
Regulated entities — CASPs, exchanges, payment processors, and banks that need demonstrable key ownership, audit trails, and exit strategies for MiCA, DORA, and other frameworks.