About web wallet and security

MisterTicot

Why not give the option to download the page and run the code from our owns computer/cellphone? With part of the site being downloaded from server but the critical part being stored locally.

The rational behind this:
- If everybody connect using secret seed on a website it's likely a good target (-> corrupt the code so that seeds are actually sent to attacker)
- If somehow the page get compromised there could be a lot of loss quickly
- Likewise, the solution I propose is vulnerable to false update, which can be mitigated by several means:
- The critical part of the code is merely storing the seed locally and transaction confirmation, so it's likely possible to design something that doesn't need further update, or very few. Which means for example release something good, stable, minimalist and modular enough so that anybody can integrate it.
- On smartphones/linux we can serve the code in secure ways (embedded in applications/packages GPG signed or so).
- Platforms should keeps the hard rule to always ensure backward compatibility, so users may not need to update all at the same time. This would widely reduce the impact of an attack as not every connection would be impacted.

I hope it makes sense to you, though I may miss something important as I'm by no means an expert in the field; So I wish to open the debate on this.

Somehow I feels that relying on online code to connect to wallets is a flawed design. At the end, it's again the same old idea about centralization being insecure by essence. Attacking one big target is generally less costly and more rewarding than a lot of little ones.

MisterTicot

Well actually now that I think about it update process can be made quite safe for everyone.

What it takes is a SHASUM of the update, put on 3 different location; Then the local page have a script to get and compare the three sum and flag the update same if it matches. The rational here is an attached is unlikely to get control over 3 locations at the same time.

MisterTicot

I'm surprised nobody take on this one given the recent events.

dime

Web wallets just seems like asking for trouble. It just doesn't seem like a good idea to ever be putting a private key into a web page, especially if the wallet holds a significant value.

Also, if users think web interfaces to wallets are normalized, it creates an environment which sets up crooks with opportunity for phishing attacks. Some sleazy group can quickly launch a new 'service', collect a batch of private keys and disappear just as quickly...

Torkus

This is absolutely important and it is our work as developers to build the tools that will make the Stellar ecosystem secure and easy to use. Never share your secret key with any site no matter how legit it looks.

sacarlson

I think the best solution we have as far as web wallets is to have them all support the Nano S. Ledger hardware wallet as the signer of the transaction. It's completely secure as far as I can tell and integrates very easily to any web wallet app. Several sites have already begun supporting this. The other option if you don't own or plan to buy a Nano ledger is to integrate a android app with QR-code to perform the final sign for the site operation. This is not as secure but may be more available for more people. I did some time ago write some code in ruby that would download the scripts for a web wallet and verify it's contents have not changed but I don't think that is a feasible solution as web pages do change and you never really know when it was changed by the author or hacker. Web wallets can be a bit more secure if hosted directly from github.com. From that point you can at least see what the last code changes were made and who made them before you trust to make use of it at that time. I've also experimented with having my_wallet and a branch of stellarterm to allow final signing of transactions by a more trusted URL site like stellar.org or others that are selectable by the user.

MisterTicot

sacarlson
Thank you for your ideas ?

rgtj

Good points! Maybe as a 'Progressive Web App' using Service Workers? See https://angular.io/guide/service-worker-intro .. This allows offline use with asset caching and integrity checks of the downloaded code, and control over how + when to prompt the user to download the updated version..

Interested in your feedback re: that kind of web wallet / authentication.

MisterTicot

Hey,

I went a bit through the documentation. Right now I can't tell about security because it needs carefully analysis to do so. However I can tell the potential look's interesting. Still I keep in mind more library code means more attack surface.

Just to let you know I wrote a design proposal in a try to find solutions to this security issue. It gathers several ideas that was floating around:

https://steemit.com/crypto/@mister.ticot/a-standardized-way-of-handling-stellar-transactions

I'm actually implementing it and my current goal is to share with you all the proof of concept around the end of the month.

You may not have much time to got through the reading, so basically what I'm doing is an authenticator that'll allow you to sign transactions (and nothing more). It's intended to be used by various services like wallet and exchanges and allow to use them without trust as they never need to give their seed. It'll be supported through a standardized url solution and hopefully will be easy to integrate.