Decentralized Seed Phrase Manager

[GENERAL] Name and surname of main applicant

Harun Mwangi

[GENERAL] Email address of main applicant

harunm28@gmail.com

Additional applicants

Chakravarti Raghavan

Jon Bauer

Demilade Jaiyeola (Demmy) 

Russel

Curtis Myers

[GENERAL] Please specify how many months you expect your project to last (from 2-12 months)

12

[GENERAL] Please indicate if your proposal has been auto-translated into English from another language.

No

[GENERAL] Does your project have any dependencies on other organizations, technical or otherwise?

No

[GENERAL] If YES, please describe what the dependency is and why you believe it is essential for your project’s delivery. If NO, please write “No dependencies.” .

No dependencies.

[GENERAL] Will your project’s output/s be fully open source?

Yes

[GENERAL] If NO, please describe which outputs are not going to be open source. If YES, please write “Project will be fully open source.”

The project will be fully open source.

[METADATA] Category of Proposal

dApp

[IMPACT] Please describe your proposed solution.

We propose a decentralized seed phrase manager. Using On-Chain Encrypted Storage, our solution provides a secure and convenient approach to seed phrase management. This addresses the security concerns of centralized seed phrase managers by storing seed phrases on a distributed network. it makes it much more difficult for a single entity to hack or compromise all the seed phrases. Furthermore, it offers security from password loss and seed phrase loss that would occur due to miss-typing, misplacing or theft giving users the security and the convenience of the blockchain.

 

How it works

Users will get the seed phrase of 12 or 24 words from the front end of a website. They can write it down or keep it like you would normally.

The application will then generate an encryption key using a Fernet encryption for instance by combining the seed phrase and any other information that only the wallet owner would know such as a hash of their Social Security or Passport number. This key should be kept safely. It can be stored in a centralized cloud storage account which has a relatively easy recovery method such as 2FA because it is not of much value to anyone by itself.

If hacked, the hacker would not know the seed phrase or any other data the user used to encrypt, hence the fernet key is useless to anyone other than the owner of the wallet.

 

Implementation

This project will use a parameterized smart contract on the Cardano Blockchain that will use the encryption key, hashed personal information and the seed phrase count as parameters. Each word will then be encrypted and stored as a Datum.

An example would be; If there are 12 words of a seed phrase, we will have 12 UTXOs created where each UTXO stores one encrypted word as Datum.

 

Recovery

In the unfortunate event that a user forgets their wallet password and is unable to retrieve their seed phrase for one or the other reason, they simply need their encrypted key and their private personal data to recover their seed phrase.

On the Cardano blockchain, they can redeem the encrypted keyword (basically the UTXO gets unlocked means they know that to be the encrypted key and they can decrypt it because they have the encryption key). Each UTXO is recovered in a similar manner. Technically the user need not unlock the funds but rather know it is their word.

We can measure the impact of our product from community adoption and feedback.

[IMPACT] How does your proposed solution address the challenge and what benefits will this bring to the Cardano ecosystem?

The proposed solution addressed the challenge of seed phrase management whether self-custody or centralized by relying on the benefits of Cardano's EUTXO model to store the seed phrase in a decentralized fashion as well as the use of Smart contracts to verify the validity of the owner of the seed phrases while recovering lost keys.

This product will make it onboarding users easier as the management of seed phrases is a cumbersome and sometimes stressful action.

It will further protect the assets of Cardano Web3 users by ensuring that they can always recover their seed phrases at will and makes it harder for their assets to be hacked especially due to centralised seed phrase managers being hacked or compromised.

More info on proposed solution: https://github.com/rchak007/decentralSeedRecover

[IMPACT] How do you intend to measure the success of your project?

We can measure the success of our product from community adoption and feedback.

This product will make it onboarding users easier as the management of seed phrases is a cumbersome and sometimes stressful action.

It will further protect the assets of Cardano Web3 users by ensuring that they can always recover their seed phrases at will and makes it harder for their assets to be hacked especially due to centralised seed phrase managers being hacked or compromised.

[IMPACT] Please describe your plans to share the outputs and results of your project?

We will open source the script validator including the architecture of the solution and the off-chain dApp.

How do you expect to use the results generated from the project in further research and development activities?

After completion, further research and development will require more funding to constantly improve the architecture to provide the best state-of-the-art implementation. Further research can also be done to do cross-chain implementation to extend the reach of Cardano solutions to other chains. 

[CAPABILITY/ FEASIBILITY] What is your capability to deliver your project with high levels of trust and accountability?

As students who are Emurgo certified Cardano Developer Professionals, and currently pursuing our Cardano Solutions Architect certificate, we are determined to deliver this project as a condition to attain our course completion.

Our team constitutes Cardano Solutions architect Developers with experience in Plutus, Plutarch, MeshJS and Lucid.

We also have teammates with traditional Web2 Skills such as Ios Development, Android and Web Development.

[CAPABILITY/ FEASIBILITY] What are the main goals for the project and how will you validate if your approach is feasible?

The main goal of this project is to enable users to be able to recover their seed phrases by creating a solution that is more trusted and secure than centralized seed-phrase managers and self-custody. Bringing a third solution that addresses the limits of both.

As part of our deliverables, we will provide a test suite, which will validate and confirm the recovery of the seed phrase.

[CAPABILITY/ FEASIBILITY] Please provide a detailed breakdown of your project’s milestones and each of the main tasks or activities to reach the milestone plus the expected timeline for the delivery.

Or project milestones will be as follows;

• Validate the project architecture - Two month
• Building the on-chain validation - Three months
• Building the off-chain code - Three months
• Front-end web development - Three months
• Document, license and publish - One month

[CAPABILITY/ FEASIBILITY] Please describe the deliverables, outputs and intended outcomes of each milestone.

Or project deliverables will be as follows;

• Validate the project architecture - A flow chart infographic of the project architecture.
• Building the on-chain validation - On-Chain Plutus (or similar technology) code that can retrieve encrypted seed phrases.
• Building the off-chain code - Off-Chain Lucid(or similar technology) code that can build and submit Cardano transactions.
• Front-end web development - A website interface to interact with the Off-Chain code.
• Document, license and publish - A publicly accessible GitHub repo published under a permissive license complete with documentation.

[RESOURCES & VALUE FOR MONEY] Please provide a detailed budget breakdown of the proposed work and resources.

Developer Salaries - 130,000 ADA

Six Developers at - 21,666 ADA per engineer

[RESOURCES & VALUE FOR MONEY] How does the cost of the project represent value for money for the Cardano ecosystem?

Each engineer will receive about $500 -$600 per month depending on the price fluctuation of ADA. Our team is distributed across the world.

Our team is distributed across the world and therefore average cost of living and price for engineering work is varied between members. At least two members reside in the USA but we also are representing Nigeria and Kenya, where engineering monthly income is still about twice what we are asking

[IMPORTANT NOTE] The Applicant agreed to Fund10 rules and also that data in the Submission Form and other data provided by the project team during the course of the project will be publicly available.

I Accept