-
Notifications
You must be signed in to change notification settings - Fork 15
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
PIN for sending funds or launching app #8
Comments
I think it's definitely a feature we would like to have at some point. The challenge is just, to have a good recovery process in case the user forgets the PIN. This will definitely happen frequently and unless we have a good answer for that, I don't want to lead users down a path where they end up locking themselves out. I think Multibit reported, that forgotten passwords is the biggest source of lost coins as far as they can tell. A recent Mycelium review says: "Forget your PIN and there's no recovery unless you rooted your phone." and Mycelium answering: "Indeed, this is the most common cause of complaints. Be careful.". One solution could be to require a backup before the user can set a PIN. That would only leave users, that forget both the PIN and the password for their encrypted backup. Still possible I suppose, but maybe beyond the limit of a reasonable fail-safe. |
But a backup (on Android) requires some encryption, and thus a passphrase. Without it, how are you going to transfer your backup off the device? |
I think requiring the user to make a wallet backup before being allowed to set a PIN is very reasonable. Something also to think about is the way Mycelium does backups. They generate a random passphrase which basically requires the user to write it down rather than using one from their memory. One could argue that may make it less likely that they will "forget" it. |
Indeed, Mycelium does some interesting stuff with PDF backups.
Was this in reply to what I wrote? I'm not arguing for backups without encryption/password - I agree that it's necessary to safely transfer backups around. |
Well you said you'd like to require a backup before the user can set a PIN. Anyway, obviously you meant it different. |
Aw, I see - yeah, I meant requiring the user to go through the standard backup process first, including picking a password and all that. |
It'd be nice to have an option to set a PIN to authorize the release of funds from your Hive wallet, or, alternatively to even open the app.
The text was updated successfully, but these errors were encountered: