Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

PIN for sending funds or launching app #8

Open
bolapara opened this issue Jul 5, 2014 · 6 comments
Open

PIN for sending funds or launching app #8

bolapara opened this issue Jul 5, 2014 · 6 comments

Comments

@bolapara
Copy link

bolapara commented Jul 5, 2014

It'd be nice to have an option to set a PIN to authorize the release of funds from your Hive wallet, or, alternatively to even open the app.

@javgh
Copy link
Member

javgh commented Jul 8, 2014

I think it's definitely a feature we would like to have at some point. The challenge is just, to have a good recovery process in case the user forgets the PIN. This will definitely happen frequently and unless we have a good answer for that, I don't want to lead users down a path where they end up locking themselves out.

I think Multibit reported, that forgotten passwords is the biggest source of lost coins as far as they can tell. A recent Mycelium review says: "Forget your PIN and there's no recovery unless you rooted your phone." and Mycelium answering: "Indeed, this is the most common cause of complaints. Be careful.".

One solution could be to require a backup before the user can set a PIN. That would only leave users, that forget both the PIN and the password for their encrypted backup. Still possible I suppose, but maybe beyond the limit of a reasonable fail-safe.

@schildbach
Copy link

But a backup (on Android) requires some encryption, and thus a passphrase. Without it, how are you going to transfer your backup off the device?

@bolapara
Copy link
Author

bolapara commented Jul 8, 2014

I think requiring the user to make a wallet backup before being allowed to set a PIN is very reasonable.

Something also to think about is the way Mycelium does backups. They generate a random passphrase which basically requires the user to write it down rather than using one from their memory. One could argue that may make it less likely that they will "forget" it.

@javgh
Copy link
Member

javgh commented Jul 8, 2014

Indeed, Mycelium does some interesting stuff with PDF backups.

But a backup (on Android) requires some encryption, and thus a passphrase. Without it, how are you going to transfer your backup off the device?

Was this in reply to what I wrote? I'm not arguing for backups without encryption/password - I agree that it's necessary to safely transfer backups around.

@schildbach
Copy link

Well you said you'd like to require a backup before the user can set a PIN. Anyway, obviously you meant it different.

@javgh
Copy link
Member

javgh commented Jul 8, 2014

Aw, I see - yeah, I meant requiring the user to go through the standard backup process first, including picking a password and all that.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

3 participants