For the next Build Challenge, we want to build Booster, a mobile wallet built for Stellar using the best security out there. About Us We’re Sam and Will , a couple of security nerds that have been working in payments and fraud for many years at companies like Twitter and Lyft. We’re excited about the potential of Stellar, but thought there was room for a more secure mobile wallet combining great security with awesome usability.... so for the Build Challenge we’re going to try to make one ourselves! Features We’d love your help to figure out the right features -- below is what we’re thinking now, but plan to change plans based on feedback. Please help us out by taking this quick survey! Key Features Decentralized keys that you own -- we’ll encrypt your private keys in your phone, never touching our servers. Really smart, cutting edge multi-factor authentication features will keep your account secure. ATO protection features will prevent anyone from accessing your account even if they compromise your phone Slick, easy-to-use user experience to send money to other users, including your friends, without compromising security The mobile app is open sourced and shared with the community Stretch Goals Ability to send peer-to-peer payments without anchors. We’re excited about this build challenge prompt, and will do our best to ship it by the contest deadline. Optional backups to other forms of identity to enable smart account recovery. Post MVP Make it really easy to exchange crypto (BTC, ETH) for Lumens Support easier Lumens-to-fiat exchange Find your friends (e.g., your phone contacts) and easily send them anything on the Stellar network Please - We need your help! We want to make sure we’re working on something that supports the Stellar community, and is something people actually want. We’d love your feedback, perspective, and suggestions on what we should focus on. Here’s some ways to help: 1. Take this short survey 2. Join our slack 3. Comment below ? Thank you!

Booster, A Security-First Stellar Wallet

mikeyrf

Is it mobile only? Integration with Ledger would likely be great

Will

mikeyrf Thanks for the suggestion! Our thought is to first focus on the mobile side, but we'll take a look at non-mobile integrations as well.

Nero

@Will - sounds like a great idea! I'm a Sr. Product Manager as well, working in the payments space. Saw a post of this in the Stellar subreddit forum (https://www.reddit.com/r/Stellar/comments/8nqhat/ex_head_of_accounts_twitter_and_senior_product/) and just wanted to reach out and say great concept and good luck. Glad you have broken out your scope and included MVP and stretch goals - always good to see that; am sure your devs are happy when you do that on your features at Lyft. Looking forward to seeing how you guys progress.

Will

Nero Thank you for the kind words! We're trying to be realistic in building something do-able by the project deadline. Hopefully though we can under promise and over deliver ?

Nero

Will spoken like a veteran PM ?

elucidsoft

Instead of competing, if you guys need help let us know!

StellarGuard

Feel free to borrow ideas (or work with me!) from https://stellarguard.me around the security picture. In my (obviously biased) opinion all the client-side protections you can add are nothing without multisig.

Will

StellarGuard Thanks, appreciate it! We'll take a closer look...

Will

StellarGuard Thank you for the suggestion! Give us a bit to organize our thinking and would love to pick your brain a bit on the right security model and how multi-sig fits in. Is help@stellarguard.me the best email to use?

dzham

I'll have to second @StellarGuard, any kind of 2FA that's not multi-sig is just security theater.

I appreciate what you guys are looking at doing, but there are most likely 5-6 wallets (out of the 50+ we have) looking at doing the same thing. Collaborate?

Will

dzham I think we're aligned, but still researching how/when to integrate multi-sig in a way that makes sense. I think the use case for security depends on the amounts -- small wallets for new users exploring may not require it (e.g., sub 100 XLM) while larger stakes would need greater security like multi-sig, backup seeds/recovery process, etc. There are also some alternative features we're going to explore to detect/fight ATO in addition to multi-sig, not sure yet on order of operations.

Re: collaboration, it's a good question. To be honest, we're using the build challenge as a forcing function to get our hands dirty and learn more about Stellar. But setting that aside, I also think some competition here is good for the community, Stellar users will have more choice and it'll force all the wallets to be better when there's competition for users. I also think given the wallets we're seeing we think we can do some more novel/radical things in the future, just not sure about in time for the build challenge -- but we'll try! ?

StellarGuard

Will Yes, that email will work.

cryptobrant

We need a mobile wallet like this.
And please, also focus on design and UX and publish for iOS too!

Very interested in a slack invite ?