Last updated 7 months ago
Arbitrary message/data signing is important part of Web3 ecosystem and it is mainly used to verify the ownership of the wallet connected to a dApp. This feature is currently missing on Trezor + Ledger
We will implement support for message signing in Trezor + Ledger firmware and JS integration layer. We will integrate this functionality also in cardano-hw-cli tool used mainly by SPOs and power-users
This is the total amount allocated to Message signing for Trezor and Ledger (CIP-8, CIP30). 4 out of 5 milestones are completed.
1/5
Trezor offchain message signing integration
Cost: âł 75,000
Delivery: Month 2 - Dec 2023
2/5
Ledger offchain message signing integration
Cost: âł 81,000
Delivery: Month 3 - Jan 2024
3/5
Cardano-hw-cli integration
Cost: âł 32,708
Delivery: Month 4 - Feb 2024
4/5
External security audit for Ledger integration
Cost: âł 43,091
Delivery: Month 5 - Mar 2024
5/5
Ledger & Trezor release
Cost: âł 40,906
Delivery: Month 6 - Apr 2024
-
The project will be fully open source.
More and more dApps require users to sign some messages with their wallet. This is done for different purposes, the most common purpose is to validate that the user owns a secret key to the injected public key (when performing actions such as log in to dApp, prove ownership of address, asset, stake key, governance voting etc). This feature was long missing on HW wallets which blocks HW wallets users from using some popular Cardano dApps and we would like to fix it.
Many dApps developers were shy of implementing message signing functionality to their dApps because this was not supported by HW wallets in the past.
Here are a few examples of Cardano apps currently using message signing:
Looking at the Ethereum ecosystem, we may expect widespread use of message signing for different purposes in the future.Â
We will implement the signData endpoint (as described in https://cips.cardano.org/cips/cip30/#apisigndataaddraddresspayloadbytespromisedatasignature) for Ledger and Trezor devices (we may not be able to do it for Nano S due to memory constraints) and in cardano-hw-cli.
Details: COSE_Sign1 (with the only allowed context "Signature1"), with support for hashed payload and also non-hashed payload with a limit on payload length (to be still determined, depending on Ledger and Trezor capabilities). No COSE encryption.
This proposal will enable HW wallet users to use core web3 functionality which is becoming more and more used on Cardano blockchain and we can expect many more dapps will be using message signing in the future.
HW wallet users will be able to use dApps that are using message signing.
We will inform all popular dApps that use message signing about the possibility to enable message signing for HW users. This should be easy to enable for dApps as most of the work will be done by the integration libraries.
Vacuumlabs has been developing both Ledger and Trezor Cardano integrations since 2018. Alongside this, we developed numerous other Ledger integrations.
Message signing released on Trezor and Ledger.
Milestone 1 - Trezor integration
Milestone 2 - Ledger integration
Milestone 3 - External security audit for Ledger
Milestone 4 - Cardano-hw-cli integration
Milestone 5 - Trezor release
Milestone 6 - Ledger release
Milestone 1 - Trezor integration
Milestone 2 - Ledger integration
Milestone 3 - External security audit for Ledger
Milestone 4 - Cardano-hw-cli integration
Milestone 5 - Trezor release
Milestone 6 - Ledger release
Milestone 1 - Trezor integration - 78810.3
Milestone 2 - Ledger integration - 88082.1
Milestone 3 - External security audit for Ledger - 54545
Milestone 4 - Cardano-hw-cli integration - 21816
Milestone 5 - Trezor release - 13907.7
Milestone 6 - Ledger release - 15543.9
Costs for HW wallet firmware development were calculated based on $1000 per man-day of work. This is mainly because very specific skills are required by the engineers delivering this work and it is on par with other companies providing HW wallet development services. The cost for external audit is set based on our past experience with these audits, as we already received quotes for several different codebases.
NB: Monthly reporting was deprecated from January 2024 and replaced fully by the Milestones Program framework. Learn more here
Martin Simonovic - PM
Jan Mazak - Engineer (Ledger)
Gabriek Kerekes - Engineer (Trezor)