Decentralizing keystore management: Solving the Quadrilemma of Security, UX, User acquisition and Configure-less Compatibility

Introduction

UWSI (Unified Wallet Security Interface) is a standardized trust-less framework of MPC{dot}Snap infrastructure suite to provide plug-n-play MPC functionality for the ecosystem wallets. UWSI opens up a way for users to utilize multiple wallets together to have stronger security than any hardware wallets while also maintaining configure-less compatibility with the whole ecosystem out of the box.

The Significance of Wallet Security

Recent wallet hacks demonstrate that the security of non-custodial wallets is not foolproof:

• Atomic Wallet Hack (2023)
• Slope Wallet Hack (2022)
• BitKeep Wallet Hack (2022)
• Trinity Wallet Hack (2020)
• Profanity Vanity Address Tool Vulnerability (2022)

Future zero-day exploits in crucial packages used by single-key wallets/extensions could lead to ecosystem-wide users’ loss of funds. The Polkadot ecosystem currently lacks MPC-based wallets/solutions, while EVM ecosystem is actively promoting them for their inherent security benefits.

Leveraging OLAF Protocol and existing work

The upcoming OLAF Protocol in the Polkadot ecosystem presents an opportunity for MPC{dot}Snap to utilize its full potential and provide an easier adoption path (SDK) for existing wallets. Paul Miller has also expressed interest in adding OLAF support to @noble/curves/sr25519 or @scure/sr25519 once it is released.

Planned Infrastructure Components

1. MPC.Snap: MPC engine (initiator), in-snap UI, ecosystem-wide support with network handler
2. DApp: Pairing engine with database handler, recovery mode, snap store
3. Mobile Apps and SDK: Android and iOS apps, modular SDK, MPC engine (listener), extrinsic visualizer
4. sr25519-tss-js and ed25519-tss-js packages: Split KeyGen/Signing/KeySharing/zkProofs, two-round FROST implementation for testing (to be replaced by OLAF)

MPC.Snap Tech Flow3423×2411 191 KB

Key Benefits of UWSI

1. Enhanced Security: Modular multi-device structure inherits better than hardware wallet security at no cost. Even if one of the keys gets exploited, the user won’t lose their funds.
2. Accessibility: Users can set up the MPC accounts across any two (or more) devices and can even continue using their favorite wallet once it integrates the plug-n-play SDK.
3. Seamless Ecosystem Compatibility: Unlike hardware wallets, substrate chains require no runtime modifications to leverage MPC{dot}Snap support for their users. Moreover, this can be used for any interaction with any pallets right out of the box. This solves a major problem where users who can afford hardware wallets, have to choose between security and compatibility.
4. User Acquisition: As the first MPC-based snap solution outside the EVM ecosystem, MPC{dot}Snap can attract attention from existing metamask snap and MPC enthusiasts.
5. Setting a Standard: UWSI’s success can set an example for other ecosystems to follow, benefiting end-users across the web3 industry while bringing indirect marketing benefits for Polkadot.
6. Boosting existing wallets: The UWSI framework encourages users to utilize multiple wallets, leading to shared users and growth for ecosystem wallets.

comparision3131×1080 106 KB

Usage flows:

1. One time pairing:
   

   

   Flow_12013×1125 386 KB

2. Seamless signing:
   

   

   Flow_22032×1195 404 KB

Target Audience

1. All Users (Primary): UWSI aims to make wallet security accessible to everyone without compromising on user experience. Users lose millions of dollars worth of crypto every year due to wallet hacks and key exploits. Expecting new people coming to web3 to follow all the ideal practices for account management is a bit of a ask! We want to remove that burden from their end without compromising on the UX for their seamless onboarding.
2. Wallets (Secondary): Ecosystem wallets play a crucial role in the adoption of the UWSI framework. The plug-and-play SDK allows wallets to become UWSI-compatible within hours.

Ethos and Vision

1. Accessible Wallet Security: Wallet security is a kind of privilege as hardware wallets are not available in every country and wherever they are available, they come with hefty compatibility & cost barriers especially for community members with small portfolios.
2. Leveraging Metamask’s UX: UWSI with snap architecture opens up a way for users to choose multiple wallets as secondary signer(s) with Metamask without the need of trusting any of them. Out of 100+ million of Metamask’s user base, over 1 million users are using snap for different use cases. MPC{dot}Snap will play a crucial role in attracting existing metamask/snap users to the Polkadot ecosystem while retaining the familiar UX and also introducing them to our ecosystem wallets.
3. Fostering Collaboration: Encourage collaboration and harmony between ecosystem wallets through shared users and collective marketing strategies for the betterment of the Polkadot ecosystem.
4. Simplified UX: Provide a simplified user experience akin to notification-based 2FA (e.g., Authy OneTouch) without the need for users to understand the complex underlying technology.

We believe that MPC{dot}Snap and the UWSI framework have the potential to revolutionize wallet security and user experience in the Polkadot ecosystem. With increasing security threats, what might look like a security preference/choice now can soon become a necessity! We look forward to collaborating with the community to bring this vision to life.