Comment sécuriser votre portefeuille de crypto-monnaies sur Starknet – Le guide simple pour trouver la solution parfaite
TL;DR – Comment sécuriser votre portefeuille de crypto-monnaies
- Pour une sécurité optimale combinée à une interface utilisateur transparente, optez pour le Hardware Signer.
- Si vous n’utilisez Braavos que sur un ordinateur portable, le Passkey Signer est votre meilleur choix.
- Pour votre compte de dépôt à long terme, utilisez le multi-signataire. Il offre une plus grande sécurité que le Hardware Signer et le Passkey Signer.
- Pour les groupes, les équipes ou les DAO qui gèrent une trésorerie ou des contrats intelligents, le compte multi-propriétaire est la solution idéale.
Des millions de dollars en crypto-monnaies sont volés chaque année, laissant les gens dévastés, sans argent dans leur portefeuille. Pourquoi ? En effet, ils sont victimes d’attaques de phishing et de logiciels malveillants.
Jusqu’à présent, les technologies de sécurité de base fournies par les premiers portefeuilles de crypto-monnaie n’offraient qu’une protection limitée. Mais aujourd’hui, grâce à l’abstraction comptable, les portefeuilles de contrats intelligents changent la donne. Avec ce type de portefeuille, il devient presque impossible pour les pirates de mener à bien des attaques de phishing et de logiciels malveillants.
Découvrez les 5 niveaux de sécurité offerts par Braavos pour sécuriser vos crypto-monnaies, allant de 1$ à des millions de dollars.
Solutions de sécurité : tableau comparatif
Voici un tableau comparatif des 5 niveaux de protection que vous pouvez activer dans votre portefeuille Braavos. Pour obtenir des informations détaillées sur chaque niveau, continuez à lire.
Il vous protège contre | Pour qui ? | Quel est le montant ? | Quand l’utiliser ? | |
Signature de phrase mnémonique | Accès de base non autorisé | Utilisateurs individuels de téléphones mobiles et d’ordinateurs de bureau | Monnaie de poche | Pour les tests |
Signature Passkey | Hameçonnage + logiciels malveillants | Utilisateurs individuels | Une perte douloureuse | Défaut |
Signature Matériel | Hameçonnage + logiciels malveillants | Utilisateurs individuels de téléphones mobiles | Une réserve importante | Défaut |
Signataire multiple | Hameçonnage + logiciels malveillants + agresseurs | Particuliers fortunés utilisateurs de téléphones portables et d’ordinateurs de bureau | L’argent qui change la vie | Compte Hodl avec une sécurité maximale |
Multi-Owner-Account | Phishing + logiciels malveillants + agresseurs + gestion de fonds avec d’autres propriétaires | Particuliers très fortunés ou, équipes/DAO trésorerie et développeurs | L’empire économique | Usage professionnel |
Level 1: Seed Signer
Level 1 is the Seed Signer.
At this level, you have one factor of authentication: « something you know. » This refers to your seed phrase. This level of protection is the most common in crypto, offered by all traditional crypto wallets.
Your protection is as high as the security you apply to your 12 or 24-word seed phrase. If your seed phrase is written on your laptop or phone, which are connected to the internet, an attacker can easily find it, create a new wallet, import the seed phrase, and transfer all assets to their own wallet. It is recommended to store your seed phrase completely offline, meaning you write it on a piece of paper and store it in a very safe place.
Generally speaking, using the Seed Signer is not recommended due to its relatively low level of protection. Let’s explore how to secure your crypto wallet on a solid foundation.
Level 2: 2FA Passkey Signer
Moving on to level 2: the Passkey Signer.
With the Passkey Signer, you have two factors of authentication: « something you have » (your laptop) and « something you are/know » (your face/fingerprint or device login).
It essentially eliminates the need for your seed phrase by creating your private key in your computer’s security module or the cloud depending on your Passkey settings in your browser. The Passkey Signer, if unable to recognize your face or fingerprint, will prompt you for your device login password for ease of use. This ensures the advantage of the Passkey Signer is its convenience, similar to when you use your bank card on a website and the Passkey confirms your identity with a facial scan or fingerprint.
By protecting your funds from malware and phishing, the Passkey Signer lets you conduct transactions with peace of mind, knowing you’re protected against common online threats.
It is important to note that modern operating systems and browsers support syncing passkeys, increasing convenience at the cost of encrypting your keys and sending them to the cloud. For enhanced security, you can disable this in your Chrome settings, for example, by turning off the option to « Use Passkey across your Apple devices. »
Next, let’s explore level 3 of security: the Hardware Signer.
Level 3: 2FA Hardware Signer
With the Hardware Signer, you have true two-factor authentication: « something you have » (your phone) and « something you are » (face or fingerprint).
Unlike the Passkey Signer, this system generates and stores your keys within your mobile device’s dedicated security chip, ensuring they never leave your device.
The security chip is specifically designed to authorize transactions only after successful biometric ID verification, providing a higher level of security compared to traditional methods.
However, it’s crucial to remember the importance of your seed phrase. In situations where your phone is bricked, lost, or stolen, the seed phrase becomes an indispensable recovery tool, allowing you to regain access to your account by issuing a time-delayed transaction request to remove your Hardware Signer. This methodology offers a perfect balance between employing advanced security measures and ensuring your digital assets are always accessible and recoverable, no matter the circumstances.
The Hardware Signer keeps your funds safe even if your seed phrase is compromised, effectively protecting you from malware and phishing attacks. To demonstrate its security, we intentionally leaked the seed phrase of a wallet protected by the Hardware Signer, containing $150,000, without any breach.
You have the option to enable both the 2FA Hardware Signer and the 2FA Passkey Signer on an account without needing the 3FA Multi Signer. This means you can sign transactions using either your Passkey Signer on your laptop or your Hardware Signer on your mobile device. Only one signature is required.
Level 4: 3FA Multi-Signer
Advancing to the most secure authentication method for individuals: the Multi-Signer, which represents level 4 in terms of security.
The Multi-Signer combines the Seed Signer’s « something you know » or the Passkey Signer with the Hardware Signer’s « something you have » and « something you are. »
In addition to safeguarding against malware and phishing attacks, it also protects you from being robbed on the street—a level of security reminiscent of James Bond. For an attacker to access your funds, they would need to:
- Steal your phone.
- Steal your laptop that contains the Passkey or access your Seed Phrase (on a browser extension).
- Coerce you into providing your biometric authentication, such as your 3D face or fingerprint.
What could be more secure than the Multi-Signer?
Level 5: ∞FA Multi-Owner Account
Level 5 security: the Braavos Multi-Owner Account.
This account acts as a next-gen multisig account with each signer authenticated by up to three factors. It requires a predefined m out of n owners to sign a transaction, making it a truly multi-owner account.
For example, setting up a multi-owner account with 3 co-founders and a 3 out of 3 signers threshold means each transaction needs all three of you to sign for it to proceed.
Why is it more secure than other multisig wallets on the market? Because each owner has the option to use either a seed signer, a passkey signer, a hardware signer, or a multi-signer. In addition, the MOA pays for its own gas fees and seamlessly connects to any dApp like any other account on the network.
Indeed, it’s that impressive. This means you and your co-founders can each opt for a three-factor authentication system: three seed phrases, three phones, and three different biometric identifiers, totaling nine factors of authentication.
Should you designate one of the owners as a multi-account owner, it creates an exponential number of authentication factors. The Multi-Owner Account shields you from every single type of attack imaginable. The only scenario it doesn’t protect against is a nuclear bomb capable of annihilating the Earth. But, realistically, no technology exists that can safeguard against that anyway. 😁
Now that you’ve learned how to secure your crypto wallet, it is time to act! Download Braavos now to secure your funds with the best security on the market.