JoyID - A passwordless wallet

[NotATether]

after years of forcing everyone to use passwords (that are inevitably chosen to be insecure).

I wouldn't call a seed phrase insecure.

I wasn't talking about seed phrases, but about user credentials in general.

[LoyceV]

I wasn't talking about seed phrases, but about user credentials in general.

That's up to the user. On a phone, typing RX6d'}jmfjk$ly#d%_!ZOyKtZdKoA28TFnBVx_.O7,H&r,,Pm5 is quit annoying. With a password manager, it's easy and I'm absolutely sure nobody will ever brute-force it. At least it's not a black box, and the user can easily understand how it works. Unlike the biometric mumble jumble which I assume has a back door for Apple or even agencies.

[OmegaStarScream]

So it looks like Windows and Linux are now supported again[1]. But I'm not sure I like this implementation, because unlike how they had this before (do everything from the desktop), you would now still need to use your mobile device.

[1] https://x.com/joy_protocol/status/1815657980173689275

[Cricktor]

JoyID has now added the ability to export private keys as well as backing up the seedphrase. Neither options are something "required to do" when creating the wallet.

When it's not mandatory to backup the wallet's recovery details then there will be wallet users who don't do it and who will loose their coins if things go south. Postponing mandatory analog backup is simply irresponsible.

It's worth mentioning also, that the seed phrase will start with "joyid" as the first word, and can not be used on any other wallets.

And why do they use some non-standard seed phrase, assuming you mean with "seed phrase" the mnemonic recovery words?
Stupid design decisions, in my opinion.


If I get this right, the passkeys authentication binds this wallet to the website. So if the website ceases to exist, you're likely screwed, especially when the wallet alone doesn't function properly anymore without the website and because the recovery words are f*** non-standard.

[chesterutxo]

The "app" doesn't support Linux.

Unlike other wallets, this wallet uses passkeys. You don't need an email, a phone number, seedphrase, or any of that. See here for more info[3].
~
[3] https://joy.id/faqs

This link doesn't work anymore. The FAQ link on the site brings me to nervina.notion.site/JoyID-FAQ-EN-3950ff33403e4545aa3d6129f2725cdb.

When I read this:

Passkey is a next-generation authentication experience

I just see "mumble jumble" to make something sound better than it is.

It is based on the industry standard for account authentication

Wait. It just said it's "next-generation" and now it's "based on industry standard"? You can't have both!

I'll stick to my proven and trusted seed phrase and password!

I think JoyID is designed to lower the barriers for Web2 users to adopt wallets, driving mass adoption. However, this might not appeal to crypto veterans.

On the other hand, Passkey is widely recognized in the industry as a standard-based technology that offers a more secure and convenient sign-in experience. It is already used by major platforms like Coinbase, Binance, and OKX.