CAIRL/keys
MFA authenticator and key management
Store TOTP seeds, manage MFA across accounts, and generate one-time codes from a single control surface.
What it does
Keys is the identity-context module for managing MFA credentials. Instead of treating second factors as disposable setup steps spread across unrelated accounts, Keys gives the person one place to manage the credentials they depend on.
That includes storing TOTP seeds, generating one-time codes, and organizing MFA operations without leaving the CAIRL identity surface. The result is operational control for the user without creating a new exposure path for the relying party.
For CAIRL, Keys also reinforces the broader architecture: identity is something the user carries and controls, while external systems receive the assurance they need from the governed boundary around it.
Key capabilities
TOTP storage
Keep authenticator secrets in the identity context instead of scattering them across devices and ad hoc tools.
Code generation
Generate one-time passwords from the same interface used to manage the account inventory.
Account management
Organize multiple MFA entries and update them as services change or rotate credentials.
Identity-context control
Treat MFA as part of the user's controlled identity layer rather than a disconnected utility.
Ready when you are
Move from explanation to implementation.
CAIRL is built to let users control identity and let platforms trust the result. Choose the next step that matches the surface you are building.