Bitcoin Forum
January 22, 2018, 07:09:58 PM *
News: Electrum users must upgrade to 3.0.5 if they haven't already. More info.
 
   Home   Help Search Donate Login Register  
Poll
Question: Should all projects use 2FA to secure users wallets on their own computers?
Yes
No
Users that get hacked deserve to lose their money
I'm too poor to get robbed
What's 2FA?

Pages: [1]
  Print  
Author Topic: Decentralized 2FA Wallet Services  (Read 1271 times)
This is a self-moderated topic. If you do not want to be moderated by the person who started this topic, create a new topic.
coins101
Legendary
*
Offline Offline

Activity: 1414



View Profile
September 19, 2016, 05:12:30 PM
 #1

New decentralized 2FA services for wallets are now a reality.  

One project has deployed 2FA and I think every project should implement this new feature.




New features:
-multiple windows for trading on bittrex
-2FA via Google Authenticator
-Key management
-HD addresses
-Block explorer



Let's face it, this stuff is important and the developers need to keep the software updated so that everyone benefits. It might need a bounty to encourage the developers to keep improving the service on an open source basis so everyone else benefits.

Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
bathrobehero
Legendary
*
Offline Offline

Activity: 1414


ICO? Not even once.


View Profile
September 19, 2016, 05:48:27 PM
 #2

2FA in every wallet would be amazing!

But then again I fail to see how 2FA could be implemented in a bruteforce-resistant and more importantly decentralized manner.

RIP Bittrex
European Central Bank
Legendary
*
Offline Offline

Activity: 854



View Profile
September 19, 2016, 07:18:46 PM
 #3

it's a cool idea but I've had a lot of problems with 2fa over the years, that's with sms, email and authenticators. the only way I cured the problems was by contacting the centralized services I was using them with and getting them to sort them out. this ain't gonna have the same option I assume.

       ▀
   ▄▄▄   ▄▀
   ███ ▄▄▄▄  ██
       ████
    ▄  ▀▀▀▀
▄▄
      ██    ▀▀
██▄█▄▄▄████████
▄▄▄▄▄▄▄▄▀▀███▀▀▀
██████████████████
████▄▀▄▀▄▀███▀▀▀▀▀
████▄▀▄▀▄▀███ ▀
████▄▀▄▀▄▀████████
▀█████████████████
]
,CoinPayments,
█████
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████
█████
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████
█████
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████ ██
█████
vtr99
Legendary
*
Offline Offline

Activity: 1200

Never compromise your standards!


View Profile
September 19, 2016, 07:51:14 PM
 #4

Definitely not something I would want in a wallet. I wouldn't want to have to have my phone with me every time I wanted to make a transfer.
It is fairly easy to secure your own wallet, since it doesn't reside on someone else's web site.

I do think it is an important feature for exchanges, and online accounts since this is where most people lose their coins.
coins101
Legendary
*
Offline Offline

Activity: 1414



View Profile
September 19, 2016, 08:07:28 PM
 #5

Definitely not something I would want in a wallet. I wouldn't want to have to have my phone with me every time I wanted to make a transfer.
It is fairly easy to secure your own wallet, since it doesn't reside on someone else's web site.

I do think it is an important feature for exchanges, and online accounts since this is where most people lose their coins.

Sure.

What about this guy:

Quote
Hello guys. Really sad day, I had 40 BTCs in my PC's Wallet and tonight they flight. Don't know what happened, the PC was offline yesterday night so I guess that somebody must have copied it and emptied yesterday, it had a lot of different addresses because of changes and all were emptied, so I'm pretty sure I was keylogged and my wallet copied.
This is the hacking transaction:
https://blockchain.info/tx/343d79c2917ad16911b435dfe67d5ac71920ad635a77ed67de324689cb38f557
All those addresses are from my wallet, main one is 1JXCsUGCoeiqACgxTRBDLB6wgRz31XiHaE , has coins from March 2013.
I know that I've been stupid and that I should have had that on a cold storage, lesson learned.

https://www.reddit.com/r/Bitcoin/comments/2og50r/im_devastated_got_hacked_and_lost_405_btcs_please/

coins101
Legendary
*
Offline Offline

Activity: 1414



View Profile
September 19, 2016, 08:15:41 PM
 #6

How about this guy:

What sort of wallet was he using? Was it online wallet like blockchain.info?

keylogger on his computer, they got just about everything he had.

BadAss.Sx
Legendary
*
Offline Offline

Activity: 1330


Bulletproof VPS/VPN/Email @ BadAss.Sx


View Profile WWW
September 19, 2016, 08:30:28 PM
 #7

Implement it please

Need BadAss Bulletproof VPS or Bulletproof VPN or why not just mail safe with Safe-Mail. We care about your privacy.
jabo38
Legendary
*
Offline Offline

Activity: 1162


mining is so 2012-2013


View Profile WWW
September 19, 2016, 08:38:36 PM
 #8

Using 2FA on a centralized website is very important in case your passwords are compromised.

Using it on a wallet, which should already have a good password and all important actions happening client side is redundant.

NEM      Faucet      Slack Invite      Easy API’s      Light Wallet      Amazing White Paper       Supernodes     Telegram Invite     Mijin 
coins101
Legendary
*
Offline Offline

Activity: 1414



View Profile
September 19, 2016, 09:22:57 PM
 #9

Implement it please

It's already been implemented and its working great on VTR.

We need other projects to figure out a way to get the devs of VTR to help them implement it on their own coins.

dadon
Hero Member
*****
Offline Offline

Activity: 854



View Profile
September 19, 2016, 10:18:54 PM
 #10

Implement it please

It's already been implemented and its working great on VTR.

We need other projects to figure out a way to get the devs of VTR to help them implement it on their own coins.
It's an attack vector like i said when you suggested it in the SDC thread.
remembering to encrypt your wallet.dat with a decent password, 20+ characters upper and lower, symbols etc plus a good antivirus on your computer or even better a cheap computer just for your crypto is much better then this.
If you fail to do the above it's like failing to take the keys of of you cars ignition, It's your fault.

SHADOW
███████████████
██████████████████
████████████████████
██████████████████████
████████████████████████
████████████████████████
████████████████████████
████████████████████████
████████████████████████
████████████████████████
████████████████████████
██████████████████████
████████████████████
██████████████████
███████████████
.

.

.

.

╔══SHADOW.HOME.PAGE
╠═SHADOW.FORUM
SHADOW.WIKI
spartak_t
Legendary
*
Offline Offline

Activity: 1428


@FAILCommunity


View Profile WWW
September 19, 2016, 10:22:20 PM
 #11

We need other projects to figure out a way to get the devs of VTR to help them implement it on their own coins.

You should know that 2FA is closed source... and kinda expensive.

coins101
Legendary
*
Offline Offline

Activity: 1414



View Profile
September 28, 2016, 08:02:38 PM
 #12

So far nearly 70% want two factor added to wallets

coins101
Legendary
*
Offline Offline

Activity: 1414



View Profile
September 30, 2016, 11:30:36 AM
 #13

3% don't know what two factor is?

OK, we've found our security issue.

Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!