Wallets are becoming the Web3 portals as a DeFi dashboard for asset swaps and investments, a NFT gallery for collectible editorials and auctions, or a DAO townsquare for governance votes or payrolls.
Harmony's mission is to scale trust and create a radically fair economy. Below are $13M grants and bounties for building the frontends, web3 and web2 integrations, and security of our wallets. Let's help millions of people create wealth in harmony.
💍 ONE Bot for All (Generative) AI on Telegram ☎️
Can you access ALL possible AI models, agents, characters, services… as ONE bot in a harmonious interface that already has 1 billion users? How about Pay-per-Use rather than $20 monthly subscriptions for each of the hundreds of automation, intelligence, personalization… yet to come?
blog.s.country
Telegram Wallets: On-device keys, Web3 bots
Direct messages with Telegram handle 🤖 @1WalletBot at t.me/1WalletBot to create wallets, sign transactions, or check portfolio – replacing 🦊 browser extension MetaMask, 📒 hardware ledgers, 🙈 on-device authentications (phone messages, email addresses, browser clients, one-time-password authenticators), and 🔑 server-side passwords + passkeys. Fully on-device key generation, storage and signing via pure Javascript; hence, non-custodial but protected by Telegram’s phone-number login and second-factor passwords.
harmony.one
Non-custodial Wallet as Telegram Bot
Telegram Bot SMS Wallet uses SMS Wallet under the hood, but offers significantly improved user experience and a chatbot interaction option, by leveraging Telegram account, bot infrastructure, and bot web app.
a.h.country
We are funding projects with task bounties, hackathon prizes, seed investments, or even fully DAOs; we offer grants for launching a new product, porting an exisiting product from other chains, or marketing campaigns with cross-chain partners. See the following document for our full guideline:
Zi Wang (Timeless Founder): Social Wallet for NFT Moments
Cryptology ePrint Archive: Report 2021/715 - Hours of Horus: Keyless Cryptocurrency Wallets
Hours of Horus: Keyless Cryptocurrency Wallets
eprint.iacr.org
Introduction to 1Wallet
⚡ WHY
Billions of users can earn 10% or more annual returns with crypto assets. But they must stop worrying about seed phrases, device loss, email phishing, phone hijacking... We can secure everyone’s financial future against password breaches, software bugs, platform malware and exchange hacks.
👩👩👧👦 WHOM
Global consumers with just a few thousand dollars and no technical background.
💎 WHAT
A digital wallet for crypto assets, investment and identity. Consumers can buy crypto assets via credit cards, then trade between multiple platforms. They can earn fixed-rate interests or actively invest for higher returns. Their profiles can hold digital arts or custom domain names.
🤯 MAGIC
- Earn 20% annual interests for the first million users.
- No emails, SMS, passwords or government documents necessary.
- Seamless between assets from Bitcoin, Ethereum or any networks.
🔨 HOW
- Many staking protocols offer 10% yields, lending protocols offer 10%, and liquidity pools offer 20%.
- Assets and keys are secured on blockchain; only need Google Authenticator and social recovery.
- Harmony supports non-custodial and trustless transactions in 2 seconds and at less than $0.01 fees.
💪 WHO
Ph.D.s, ex-Google developers, formal verification as security audit, top branding agency, builders of billion user products.
🔥 WHERE
The Future of Money is already here but unevenly distributed. Decades of cryptography, best research in production.
🚀 WHEN
Product launch and hackathon in 2021 Q3 with 1000 users, then 10k users in Q4 with each wallet holding $1000, video campaign and 20% deposit return in 2022 Q1.
💡 Terms
- Social recovery: friends or other devices unlock funds for you if you lose access to your wallet.
- Non-custodial: no network, software, developers, government or even Harmony control your fund.
Decentralized Basic Income
Is 20% basic income sustainable? Create wealth in a decentralized way? Prof Hakwan Lau and Harmony has published a full research paper "Decentralized Basic Income: Creating Wealth with On-Chain Staking and Fixed-Rate Protocols".
Decentralized Basic Income: Creating Wealth with On-Chain Staking and Fixed-Rate Protocols
In this review, we evaluate the mechanisms behind the decentralized finance protocols for generating stable, passive income. Currently, such savings interest rates can be as high as 20% annually, payable in traditional currency values such as US dollars. Therefore, one can benefit from the growth of the cryptocurrency markets, with minimal exposure to their volatility risks.
arxiv.org
Our thesis is that cross-chain network staking gives 10-15%, lending marketplaces gives 5%-20%, fixed-income protocols gives 5%-10%. Underlying innovations: blockchains that scale to billions, radical markets with small epoches, social experiments on wealth.
Sam Altman (of Y Combinator and WorldCoin) says: it's "Moore's Law for everything: AI, capitalism; people entrusted to use the money however they needed or wanted. For better education, healthcare, housing, starting a company; technology to create more wealth, policy to fairly distribute it"
Radical social change? Follow #startsmall by Jack Doresey: $4.4B open fund & $418M disbursed across 230 projects in 15 months on google spreadsheet. For covid, social justice, girl’s health and education, universal basic income. Why transparency, why now?
Future is already here on Terra. See "Debt-free yield: Proof-of-Stake. Libor rate for DeFi money markets" & Delphi Digital. Can staking derivatives Lido, stablecoins liquity, fixed income barn bridge... all become cross-chain?
Wealth is beyond dollars: basic living standard for Lin Jin's "creator economy" & Jesse Walden's "ownership economy" is more than a fixed-rate earn. Let's put consumer price index, anonymous bounties, self-assessed salary, retroactive funding... on-chain?
And, beyond universal basic income: robot automation, deception economy, self-sovereign identity... for the radical future we are already living in. How do you value trust, autonomy and privacy? Read our 85-page "Day ONE" Magazine.
Hackathon – On-Chain with Wallet Security
One key theme of our recent hackathon is on-chain social wallets and keyless security. The 4 tracks — Frontends, Web3, Web2, Security — emphasize the consumer experience of delighting the users without worrying about blockchain technology or custody. Wallets are becoming the Web3 portals as a DeFi dashboard for asset swaps and investments, a NFT gallery for collectible editorials and auctions, or a DAO townsquare for governance votes or payrolls. Our hackathon encourages seamless onboarding and incentivized education for smart contract wallets; builders can start from our audited prototypes featuring authenticator-based security and on-chain account recovery.
Composing Web3 contracts and integrating Web2 components is the crossing of the chasm for daily uses. Our wallets should work as a mobile or even wearable client. They can also curate crypto and domain names, work activity and reputations, or even virtual and life moments. Furthermore, the wallets can link your identity on Twitter as social clout, Github as work prowess, or Linkedin as tailored profiles. At this hackathon, cryptography or security researchers can extend our authentication to multiple factors, verify implementations with formal methods, or prototype based on our latest research papers.
Track 6: On-Chain Wallet - "Web3"
On-Chain with Wallet Security Track 6 - Web3. Curate crypto names + reputations + moments, as DeFi dashboard + NFT gallery + DAO townsquare Note: to qualify for prizes, project submissions in this category must build upon 1Wallet or SmartVault. The second hackathon theme is On-Chain with our social wallets and keyless security.
talk.harmony.one
Wallet DAO – Fearless wallet for everyone
#ONEwalletDAO is one of our key DAO initiatives with the mission “fearless wallet & wealth for everyone”. Let's bring “creating wealth in harmony” and the adoption of social wallets! In particular, this DAO will educate — through powerful storytelling and visual media — on wallet security based on one-time-password (like Google’s and iOS’s) authenticators as well as social recovery with friends, family or bots as guardians. Like fearless concurrency in Rust programming, consumers should self-custody assets, identities, collectibles or governance, without worrying about hardware theft, password loss, or platform hacks.
- Security: promote social recovery & one-time-password authenticators for on-chain fund
- Impacts: create basic income & wealth from fixed-rate or high-yield investments
- Adoption: open millions to self-custody assets & collectibles without hardware, password or hack
Impacts for the first hundreds of million users can come in the form of basic income, fixed-rate savings, and curated high-yield investments. Blockchain projects are the epicenter of innovations on finance and marketplaces, drawing in enormous investment and returns; blockchain networks are rewarding stakers for transaction validations and platform security, handing out more than 10% annual return; blockchain lending products are facilitating billion dollars of liquidity every month, some liquidity pools rewarding more than 20% in short-term returns. Information is now free for 5 billion people and mobile phones are affordable for 3 billion; our collective goals should be financial wealth and social impacts for every one of us.
ONE Wallet
1wallet.crazy.one
Release Wallet graphs, upgradable wallet, domain names, address book, and other improvements · polymorpher/one-wallet
For more information, see issues: #78 #76 #75 1wallets can now be back linked and forward linked, forming a graph. A 1wallet will forward all assets to the forward-linked address. A 1wallet can control and issue command to any 1wallet at any back linked address, provided the back linked address made corresponding forward link.
github.com
Security Goals
ONE Wallet is designed with these goals in mind for security:
Social (people)
- Resilient. Funds are recoverable through time locks and multiple safety nets. No single point of failure such as thefts, cracks, loss, censorship or coercions is catastrophic.
- Sufficient. All steps are well defined without delegating to hardware devices or seed phrases in safety boxes. Users do not need any passwords or rely on biometrics.
- Anonymous. An account is a fresh cryptographic hash, not tied to existing systems or real-world identity. Derived paths support multiple public keys to protect privacy.
Smart (code)
- Composable. One-time or low-entropy passwords are useful for small funds. Multiple authentications can independently boost protection thresholds against brute-force.
- On-chain. A decentralized network with high stakes and fast finality validates all transactions. Its platform has sustainable incentives and open governance to evolve.
- Programmable. Operations can call third-party contracts, store history of states, or upgrade its code. Complex applications may use oracles of time, locations and events.
Hard (math)
- Self-Sovereign. No third parties, government documents, designated guardians, backup servers or hardware enclaves are necessary. Users have full custody and self control.
- Air-Gapped. Key-loggers and man-in-the-middle attacks are minimized. The full parameters of transactions are easy to verify and approve without cables or cameras.
- Verified. Trusted are only open source and hardened cryptography. Formal verification, through logical frameworks, assures end-to-end security beyond tests and audits.
Client Security · polymorpher/one-wallet Wiki
As noted in https://github.com/polymorpher/one-wallet/issues/5, in ONE Wallet v0.1 the authenticator cannot provide security protection if the client is compromised. A compromised client means the information stored on the client is leaked to a malicious third-party. In the current setup, the third-party may use these leaked information to easily reverse engineer (by brute force) the proof needed to perform an unauthorized transfer from ONE Wallet.
github.com
Cryptology ePrint Archive: Report 2021/715 - Hours of Horus: Keyless Cryptocurrency Wallets
Hours of Horus: Keyless Cryptocurrency Wallets
eprint.iacr.org
Make a link for OTP auth generation on https://dan.hersam.com/tools/gen-qr-code.php, or try these samples:
otpauth://totp/one1jfl24ndhmahl3h50puq78767tdd6rsqkq38ycf?secret=JBSWY3DPEHPK3PXP&issuer=1&digits=8&period=10
otpauth-migration://offline?data=CjsKFKqjT2jQHY5syBOK6+uDHiMILHqREhREZWdyZWUgU3RhaXJzIENyZWRpdBoHSGFybW9ueSABKAEwAhABGAEgAA==
No need to save your account name or account address elsewhere. For recovery or export of accounts, just lookup Google Authenticator on your mobile phone: the vendor label is simply "1", and the full account address is in the text field after choosing the menus "..." for Setting (on the top right of the screen) and "Edit".
Bounties
There may be conflicts, tradeoffs or impracticality of the goals above. Here's our rule of thumb:
- Toward validating our innovation with 10k users (each with $100 assets), focus on these three goals: sufficient, resilient and composable.
- Toward adopting our product with 1m users (each with $1k assets), differentiate with these three goals: on-chain, self-sovereign and air-gapped
Harmony ONE integration with Argent smart contract wallet · Issue #31 · harmony-one/bounties
You can't perform that action at this time. You signed in with another tab or window. You signed out in another tab or window. Reload to refresh your session. Reload to refresh your session.
github.com
Integrate Account Abstraction Implementation as in EIP-2938 · Issue #35 · harmony-one/bounties
You can't perform that action at this time. You signed in with another tab or window. You signed out in another tab or window. Reload to refresh your session. Reload to refresh your session.
github.com
Reading
Why we need wide adoption of social recovery wallets
There have been many solutions proposed over the years: paper wallets, hardware wallets, and my own one-time favorite: multisig wallets. And indeed they have led to significant improvements in security. However, these solutions have all suffered from various defects - sometimes providing far less extra protection against theft and loss than is actually needed, sometimes being cumbersome and difficult to use leading to very low adoption, and sometimes both.
vitalik.ca
Argent's 10 Security Secrets (& 2 bonus treats)
Traditionally in crypto if someone has access to your private key they can take everything you own. It's game over. This is why people go to (often insane) lengths to secure it - from engraving their seed phrase to storing it in a nuclear bunker.
www.argent.xyz
/w=640,quality=90,fit=scale-down)
Vivo Pay: A Zero Knowledge Payment System
Crypto hasn't reached the mainstream yet. A lot of people are talking about it, and may have even used an exchange like Coinbase, but the number of users using blockchain is still extremely small. Starling Protocol and Harmony One have teamed up to create Vivo Pay, the easiest to use crypto payment system on the market.
medium.com
Protecting Yourself and Your Funds
(Source: @Jennicide) One of the safest and easiest ways to store your ETH, Tokens, ETC, BTC, and many other coins is via a Ledger Nano S or Trezor. Both are hardware wallets. Both work with MyCrypto.com and both cost less than $100.
support.mycrypto.com
K vs. Coq as Language Verification Frameworks (Part 1 of 3)
Musab A. Alturki and Brandon Moore Formally verifying programs, like verifying smart contracts in blockchain systems or verifying airplane flight controllers in embedded devices, is a powerful technique for assuring correctness and increasing reliability of systems. In this context, the question of "Why use K as opposed to Coq?"
runtimeverification.com
Security
Security Best Practises
thedailyape.notion.site
2023 Development
github.com
github.com
Cassiopeia: Practical On-Chain Witness Encryption
eprint.iacr.org
Telegram Wallets: On-device keys, Web3 bots
Direct messages with Telegram handle 🤖 @1WalletBot at t.me/1WalletBot to create wallets, sign transactions, or check portfolio – replacing 🦊 browser extension MetaMask, 📒 hardware ledgers, 🙈 on-device authentications (phone messages, email addresses, browser clients, one-time-password authenticators), and 🔑 server-side passwords + passkeys. Fully on-device key generation, storage and signing via pure Javascript; hence, non-custodial but protected by Telegram’s phone-number login and second-factor passwords.
harmony.one
GitHub - ArtemKolodko/telegram-wallet-web-app
Contribute to ArtemKolodko/telegram-wallet-web-app development by creating an account on GitHub.
github.com