Stellar Federation Service with Account Payment Notification Service

ankurp

Stellar Federated Service provides an easy way to send money to anyone using a memorizable ID instead of a cryptic Stellar ID. I have created a Stellar Federated Service beginning of this year that I open sourced and I run under https://stellarfed.org

This service unlike others uses email address in the federated addresses. So an example of a valid federated address on StellarFed is ankurpatel@me.com*stellarfed.org
URL: https://stellarfed.org/u/ankurpatel@me.com

Using this I created a Stellar network watcher to look for payment transactions to Stellar accounts that have an associated Federated ID and email users of the transaction on that account. Since I have the email in the Federated ID I can send them an email and users can opt out of the email if they only want a Federation service.

I would appreciate feedback on the website and this account watcher feature.

For the next phase of this project I am considering allowing users to send payment to users who do not have a Stellar Account. If I want to send lumens to my friends who do not have an account I can just send it to myfriend@gmail.com*stellarfed.org and it will generate a Stellar account on the fly and the payment will go to that. My service will then email that user at myfriend@gmail.com which is the email of my friend and they will get the email with the Secret Key that they can use to view their account or transfer money to another Stellar account they own. Let me know what people think of this service as well.

Thanks,
Ankur

MisterTicot

Hi,

I think this idea is very interesting, as it could be a very good way to welcome new users in the network. This would be great to implement it somehow.

However, I have to be critic with your current proposal because this doesn't respect user security:
- email are not a safe medium to transmit private keys because they may get recorded at various levels and are often transmitted in plain text
- your system should not know user private keys

It seems preferable to do it good from the start, rather than implement an insecure design that would then need to be replaced with a better one.

It would take some further thinking, but the first idea that come to mind would be to send a link to a page were the recipient can enter a public key to wich you would send the funds. You could partner with some safe wallet service or eventually offer an option of which one to choose to generate the account. I would be up offering such a service with Stellar Authenticator.

You could also provide your own authenticator/wallet service and manage it this way. Anyway, please remember that private keys should never be shared over multiple services and misleading users to do so is paving the way for future drama. I know most are doing it somehow (Stellar Foundation first ^⁾ and this seems to be accepted. Still, it's not very careful of the people that give us their confidence.

ankurp

Thanks MisterTicot for the feedback and I agree that sending private key via email will be insecure. Instead I have a strategy where I would just email a link which contains a token in the email generated using a public key pair and this links takes the user to stellarfed website with the token passed as query param. If token is valid, they would then be asked to enter a phone number and be sent a code via Text message to enter on website to get the private key visible on the website. At this point the private key is removed from the server and user is warned to say it otherwise the lumens would be lost. Using Twilio or similar service phone number can be verified so that it is not a VoIP and only send text message to those users who have a mobile phone service. We would store the mobile number in case a confirmation is needed to whom this payment was sent to.

Thanks Cajga for the feedback. I will try to implement the protocol you suggested once I am done with this stage in the project.

Cajga

It is good to see more federation services as that would lead to better products in a long term.
Have you thought about to support DKIF:
1) https://galactictalk.org/d/789-domainkeys-identified-federation-dkif
2) https://lumenbox.org/dkif-explained/

Would be nice if more and more federation services/wallets would implement DKIF so federation would be more secure.

ankurp

Hello Internet. I have just implemented a feature that will let you send Stellar Lumens to anyone using just their email even if they do not have a Stellar Public or Private key created already. Using the StellarFed.org federated server now you can send lumens to your friend simply by typing their email address followed by *stellarfed.org

If they do not have a federated account created on stellarfed.org already then it will generate a public and private key which will be kept secure via encryption and it will watch the Stellar network to see if an account is created (by receiving stellar lumens) for that newly generated public key. Once account is created in the stellar network it will send an email to the email specified in the Federated email ID with a link containing an encrypted token that can only reveal the Public and Private key on the StellarFed.org website after which it is removed from the system. User is warned to write it down otherwise it will be lost forever. All of this is over SSL so it is encrypted and secure.

I am going to write a blog post and update the StellarFed.org website on how this would work with step by step screenshots.

MisterTicot

ankurp It looks like an interesting solution!

I would advice to delete data only on user confirmation though, as browser window may close inadvertently (crash, empty battery, cats... ) Or a new user may need an additional delay to figure out what is happening to him {^{_^}.}

ankurp

This would make is a great service to send someone few lumens as gift or to get them started with a Stellar Account from which they can transfer the funds to their main Stellar Account.

ankurp

Good Point. I may delete when they press reveal on the site which can prevent it from deleting on first view.

MisterTicot

ankurp Can't you use a button like "I saved it"?

ankurp

I have updated the page to add a Reveal button with confirmation dialog. Only after confirming the account is deleted.

ankurp

Below are screenshot of a fake account in local.

https://user-images.githubusercontent.com/498669/45005344-ca744800-afc0-11e8-82f2-b49f92d68c59.png

https://user-images.githubusercontent.com/498669/45005342-ca744800-afc0-11e8-8a29-5c4ac9e57b72.png

https://user-images.githubusercontent.com/498669/45005343-ca744800-afc0-11e8-836c-2fab6d02231c.png

Sanjay

Great!
This project could help new users get in easily.