QuStream Documentation

Appearance

Device Authorization & Security Alerts

Overview

The QuStream Encryption System features device-level authorization and real-time security monitoring to prevent unauthorized encryption key requests and fraudulent transactions.

Users can manage their devices, authentication settings, and security alerts via both the QuStream Authenticator App (mobile) and the QuStream Web Portal, ensuring seamless access across all platforms.

This mechanism ensures that only verified devices can interact with QuStream encryption services, protecting against account takeovers, phishing attacks, and compromised devices.

1️⃣ Linking Devices to a User ID

  • Each user registers with QuStream and receives a 12-word passphrase, which serves as their master authentication key.
  • Users can add multiple devices (phones, desktops, wallets) to their authorized device list.
  • Only authorized devices can request encryption keys or sign blockchain transactions.
  • Devices can be linked and managed through:
    🔹 The QuStream Authenticator App (iOS/Android)
    🔹 The QuStream Web Portal

Learn More → Authenticator App & ID Security

2️⃣ Adding & Removing Devices

🔸 New devices must be manually linked using the 12-word passphrase.
🔸 5-Minute Security Delay: After linking a new device, there is a mandatory 5-minute waiting period before it becomes active.
🔸 Instant Security Alert: Users receive a notification on their existing linked device(s) about the new device being added.
🔸 If an unauthorized device is detected, users can immediately reject or remove it before activation.

3️⃣ Changing or Choosing a New 12-Word Passphrase

🔹 Users can choose their own 12-word passphrase at the time of initial registration or opt for a randomly generated passphrase.
🔹 To change an existing passphrase, users must:

  • Authenticate with their current 12-word passphrase.
  • Select a new passphrase (must be 12 words).
  • Reauthorize all linked devices using the new passphrase.
    🔹 Once changed, the old passphrase becomes invalid and cannot be used for future recovery.

4️⃣ Security Model Against Passphrase Theft

🔸 The 12-word passphrase is the only recovery method—no email, phone number, or third-party recovery.
🔸 5-Minute Delay Protects Against Stolen Passphrases – If an attacker attempts to link a device using a stolen passphrase, the real owner gets notified and has time to block the action.
🔸 If both the passphrase and all linked devices are lost, there is no way to recover the account—ensuring true user control.

Why This Security Model Works?

No Centralized Recovery – Users fully control access to their accounts without reliance on third parties.
Prevents Instant Takeovers – The 5-minute delay ensures attackers cannot instantly gain access.
Maximum Security – Eliminates attack vectors such as SIM swapping, phishing, or password leaks.
Full User Autonomy – Users can create, update, and secure their encryption accounts without external dependencies.

Conclusion

The QuStream Device Authorization System prevents unauthorized encryption requests and ensures that only trusted devices can interact with the network. By integrating real-time alerts, fraud prevention, and a multi-device authentication model across web and mobile, QuStream offers one of the most secure identity verification systems for Web3 and quantum encryption services.

Next Steps