diff --git a/src/domain/session/settings/KeyBackupViewModel.js b/src/domain/session/settings/KeyBackupViewModel.js
index 40dbfd73..56339a4e 100644
--- a/src/domain/session/settings/KeyBackupViewModel.js
+++ b/src/domain/session/settings/KeyBackupViewModel.js
@@ -88,6 +88,10 @@ export class KeyBackupViewModel extends ViewModel {
         return this._session.keyBackup.get()?.version;
     }
 
+    get isMasterKeyTrusted() {
+        return this._session.crossSigning?.isMasterKeyTrusted ?? false;
+    }
+
     get backupWriteStatus() {
         const keyBackup = this._session.keyBackup.get();
         if (!keyBackup) {
diff --git a/src/platform/web/ui/session/settings/KeyBackupSettingsView.js b/src/platform/web/ui/session/settings/KeyBackupSettingsView.js
index 3f8812c9..bd1eb4e8 100644
--- a/src/platform/web/ui/session/settings/KeyBackupSettingsView.js
+++ b/src/platform/web/ui/session/settings/KeyBackupSettingsView.js
@@ -53,6 +53,9 @@ export class KeyBackupSettingsView extends TemplateView {
                     default:
                         return null;
                 }
+            }),
+            t.if(vm => vm.isMasterKeyTrusted, t => {
+                return t.p("Cross-signing master key found and trusted.")
             })
         ]);
     }
diff --git a/src/platform/web/ui/session/settings/SettingsView.js b/src/platform/web/ui/session/settings/SettingsView.js
index 0d0d6941..aea1108a 100644
--- a/src/platform/web/ui/session/settings/SettingsView.js
+++ b/src/platform/web/ui/session/settings/SettingsView.js
@@ -49,7 +49,7 @@ export class SettingsView extends TemplateView {
             }, vm.i18n`Log out`)),
         );
         settingNodes.push(
-            t.h3("Key backup"),
+            t.h3("Key backup & security"),
             t.view(new KeyBackupSettingsView(vm.keyBackupViewModel))
         );