A new era for crypto security

Unprecedented protection for your cryptocurrency wallet

Itamar Lesuisse
Dec 21, 2018 · 9 min read
Image for post
Image for post
Argent: A new type of crypto wallet

May 2020: We have moved our blog (and the most recent version of this post) to https://www.argent.xyz/blog/a-new-era-for-crypto-security/

Argent is a new type of crypto wallet that offers ease of use AND security, unlike the previous generation of wallets.

Argent removes the headaches of seed phrases, gas prices and cryptic addresses. And it introduces the ability to lock & unlock your wallet, block fraudulent transactions and set a daily limit.

We hope it makes the decentralised web — the next era of the internet — accessible to everyone.

In this post I go into new details on our security model. I cover:

The post is much longer than usual because we take transparency seriously and hugely value your feedback and insights. So please get in touch on @argenthq or hello@argent.xyz.

How Argent helps you recover your wallet

When you acquire cryptocurrency the first question you face is: what’s an easy and safe way to hold it? Until now there hasn’t been an obvious answer.

The convenient option (at least at first glance) has been to leave your crypto with an exchange or custodian. But this has major problems. You’re not really the owner of your funds and you have to trust a company that might get hacked, steal from you or limit what you can do. Each of these happens all too often.

The alternative is to use a wallet that you control. But this has a major flaw: your access to it depends on writing down a seed phrase and keeping it safe. This is anachronistic, makes you worry (what if you lose it? what if someone else finds it?), and holds back adoption.

Argent offers a better way: the smart wallet.

Simple, seedless recovery

As we introduced in this post, we’ve got rid of seed phrases and made it much easier to recover your assets if you lose your phone, or get it stolen.

With Argent your assets are held in a smart contract on the blockchain. You control access to those assets via your phone, which holds your private key. If you lose your phone you can quickly recover your wallet on a new phone. This is possible because of Argent Guardians.

How Guardians help you recover your wallet

A Guardian is an account on the Ethereum blockchain that you give permission to help you recover your wallet and protect you from attacks. A Guardian never has access to your assets.

A Guardian account can be:

You can pick and choose any combination you like, including just sticking with one type (i.e. a few devices that you own).

Image for post
Image for post
Protect your wallet with Guardians

Recovery with Guardians is this easy:

Approving or cancelling a recovery requires a majority out of you and your Guardians. This is because it makes the system even more secure. How this works is that you and your Guardians can each sign an instruction to the smart contract, e.g. ‘Yes, this recovery attempt is legitimate’.

Now you’re protected from the risk of losing access to your funds. But that’s not all Argent protects you from.

How Argent protects you from theft

1) Phone-layer security

The aim of this layer is to prevent someone from logging in and draining your wallet. This layer alone puts us on par with world class banking apps.

We use all the available security features on iOS and Android, such as biometrics, keychain, and Secure Enclave, as well as a six-digit user pin code. The pin code helps to encrypt the private key (for those of you interested in cryptography: we use PBKDF2 and AES256 in Galois/Counter Mode).

But while these features should prevent the vast majority of attacks from happening, they’re not unique to Argent.

So what separates Argent from other wallets?

2) Smart contract-layer security

Argent uses smart contracts to provide the security features of the best modern banks — without the bank. The smart contracts are built on the Ethereum blockchain and cannot be tampered with, by us or anybody else.

Wallet locking

You can ask a Guardian to lock your wallet. The wallet can’t then make transactions. This is useful in case your phone is lost or stolen and you want to protect it beyond the phone-layer security.

When a Guardian locks a wallet, a 5-day security period starts. This gives you time to get a new phone and recover your wallet. (Locking doesn’t prevent recovery, for precisely this reason).

Any Guardian can unlock a wallet, including the one that originally locked it.

Daily transaction limits

Each wallet has a daily transaction limit, which you can change to whatever you like. Limits prevent an attacker from siphoning off your funds.

Transactions are totalled across tokens, and transactions over the limit are delayed for 24 hours. When the limit is hit you’re instantly sent an alert to review the transaction. You can then use the 24 hour delay to block it, if you want to, by locking your wallet.

If you’ve gone over your limit and don’t want to wait 24 hours for your transaction, you can use your Guardians to quickly approve it. A majority of Guardians is required. This is to prevent any risk from a compromised Guardian.

Changing a limit also has a 24 hour delay. This stops someone from gaining access to your phone, lifting the limit and stealing the funds before you have time to lock your wallet.

Image for post
Image for post

Trusted contacts

An attacker trying to steal your funds would send them to an address you don’t know — otherwise it would be obvious who the attacker is. Argent’s smart contracts therefore treat unknown addresses differently to known, trusted ones. Transactions to your trusted contacts don’t count towards your daily limit.

Changing Guardians

You can change your Guardians with just a couple of taps of the app. Changes take 24 hours to come into effect. The delay gives you time to prevent any unwanted changes by locking your wallet.

The only time there is no delay is when you first download Argent, then adding your first Guardian is immediate. This is to ensure you can benefit from the security they bring as soon as possible.

How does this security play out in practice?

I’ve lost my phone!

I left my phone unlocked with Argent open and an attacker gained access to it!

My Guardian has betrayed me or been hacked!

Someone has hacked my phone* and is trying to add Guardians until they control the majority!

*It is super, super difficult to crack an iPhone’s security — way beyond the capabilities of most criminals and even nation states.

I’m worried someone could try to fraudulently recover my wallet on their phone!

If an attacker downloaded Argent on their phone, entered your ENS (username) and tapped “Recover wallet” you would be safe. To succeed an attacker would have to:

My Guardian might not remember they need to help me

We’ve all got friends and family who can occasionally be a bit lazy. We’ve therefore made it super easy to be a Guardian.

An attacker has tricked my phone network into swapping my phone number onto their SIM!

The attacker can’t do anything with just your phone number.

Conclusion

The decentralised web offers a rare — maybe unique — opportunity to fundamentally rethink our digital future. It gives us the potential to build a new, fairer internet that puts people first. We hope Argent represents a step change in its usability and security.

We couldn’t be more excited about the coming months and look forward to hearing from you as we work together on perfecting the experience.

You can find us on Twitter @argentHQ, and at hello@argent.xyz.

Argent

Our blog has moved to: www.argent.xyz/blog

Medium is an open platform where 170 million readers come to find insightful and dynamic thinking. Here, expert and undiscovered voices alike dive into the heart of any topic and bring new ideas to the surface. Learn more

Follow the writers, publications, and topics that matter to you, and you’ll see them on your homepage and in your inbox. Explore

If you have a story to tell, knowledge to share, or a perspective to offer — welcome home. It’s easy and free to post your thinking on any topic. Write on Medium

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store