.svg)
Seal is currently on
Mainnet
Seal data.
Manage access.
Cutting edge cryptography and onchain validation for sensitive data
Seal is Sui's programmable access control layer, enabling applications to encrypt data while enforcing access control policies onchain. Using Seal key servers and the Seal SDK, developers can secure data without building their own key management and authorization infrastructure, choosing from independent key servers, decentralized MPC-backed key servers, or hybrid trust configurations.
Core components of Seal
Seal key server for encryption and decryption
An identity, together with a master public key from a Seal key server, can encrypt any data. Seal supports independent key servers, decentralized MPC-backed key servers, and hybrid configurations. When a user requests access, authorized decryption key material is retrieved through the configured trust model and used to decrypt the data locally.
Onchain access policies
App-specific access policies on Sui authorize who can decrypt data, when, and under what conditions. These policies are flexible, updatable, and tailored to support dynamic access control.
Seal aggregator for MPC committees
For decentralized MPC-backed key servers, the Seal aggregator coordinates decryption requests across committee members and presents a single endpoint for applications. It simplifies integration while preserving the committee's distributed trust model.
Seal SDK for simple integration
An agent or app can use the Seal SDK to interact with a set of independent or decentralized MPC-backed key servers to perform encryption and decryption of its data. Integration is quick and doesn’t require custom tooling.
.svg)