🦺 Web SDK Safety
Users who create wallets through the KryptoGO Web SDK will have their seed phrase and private key generated by KryptoGO.
This section is specifically about the security of KryptoGO’s Onboarding Web SDK. If you want to read about the safety measures of KryptoGO Wallet instead, refer to Security and Wallet Safety.
Glossary
| Term | Definition |
|---|---|
| Google Cloud Platform (GCP) | Cloud computing service provided by Google. |
| Key Management Service (KMS) | Cloud encryption key management service. |
| KryptoGO KMS Service | A service dedicated to interacting with the Key Management Service, separate from other services provided by KryptoGO. |
Creating a KryptoGO Account
When a user logs in for the first time through an application integrated with KryptoGO SDK, KryptoGO automatically creates an account for them.
Creating a Wallet
When a user, through an application integrated with the KryptoGO Web SDK, requests wallet creation, KryptoGO KMS Service generates a Seed Phrase and corresponding multi-chain wallet addresses. The seed phrase is then encrypted using Google Cloud Platform's Key Management Service and securely stored.
- The KryptoGO KMS Service features strict permission control, comprehensive audit logs, and functions independently from other KryptoGO services.
- If a user needs to retrieve his or her seed phrase, KryptoGO KMS Service decrypts the seed phrase and transmits it to the user's device using the Deffie Hellman Key Exchange algorithm.
- The Deffie Hellman Key Exchange algorithm safeguards against man-in-the-middle attacks, ensuring that even if TLS is compromised, the Seed Phrase remains secure.
- Each seed phrase can only be retrieved once and is deleted from the KMS subsequently.
Using the Wallet
KryptoGO Web SDK currently supports only those wallet operations that do not necessitate signing with the private key, such as viewing owned NFTs.
For transaction signing, a user must use KryptoGO Wallet and successfully log in to access the seed phrase and private key. The seed phrase and private keys will be deleted from KryptoGO KMS after a successful operation.
Wallet Backup and Restoration
Users with wallets generated by KryptoGO Web SDK are required to login to KryptoGO Wallet to obtain their seed phrase/private key. Following this, they can backup and restore their wallets as described by the process here.