You are viewing a single comment's thread from:

RE: LeoInfra Onboarding Report | 300+ Active Hive Lite Accounts Onboarded and Counting

in LeoFinance6 months ago

How secure is LeoInfra from a user perspective?

Since you store private keys on behalf of your user, it would be great to get some insights!

Do you encrypt them with a secret, which only the user has access to (which would make your solution great, since only the user can decrypt it)?
Or do you encrypt them with a secret, which leofinance has access to, or just store them offchain?

Posted Using LeoFinance Beta

Sort:  

They’re encrypted and only the user can decrypt via the wallet UI + confirming with their Lite account onboard method.

Lite accounts are similar to web2 accounts in that the user doesn’t outright own the account. Only once they download their keys do they truly live on web3.

Our goal is to add better prompts to encourage users to decrypt their keys and store them securely - especially when certain criteria are met. I.e. user has X value of funds staked and thus has more risk.

Good question! Thanks for dropping in

Posted Using LeoFinance Beta

That's truly end-2-end encryption - light accounts done right.

Amazing solution, thanks for those insights!

Posted Using LeoFinance Beta

🦁

Posted Using LeoFinance Beta

good job