Back to motions
Treasury Proposal#67 >> Council Motion#255
Executed

#255 Hardware signer and key storage Kampela: Milestones 1&2

Proposer:
GLVe...F7wj
 
in Treasury
13th Jan '21

This is proposal for Milestones 1&2.

DOT/EUR exchange rate calculated as 7.3481 by EMA7 (EMA with 168 period frame) by Kraken

Our team proposes to design an open source hardware storage for dotsama ecosystem.

Please see complete proposal on Skiff

Project name is Kampela, Finnish word for flounder fish. The device is envisioned as flat card mostly consisting of e-paper screen and few controls (and it allows keys to stay safely in depth).

Kampela is a hardware version of Parity Signer. It is a small card-shaped device (ideally comparable to a credit card form factor, to be carried in a wallet when needed) that accepts data through unidirectional NFC port and shows output on a monochrome electronic paper screen. It has cryptographic strongbox with elliptic curves supported by Substrate — which only stores private keys (after initial import) and performs all signing operations on-chip.

Kampela is designed to be a comparatively low-cost (below €100, in contrast to €500+ for a Signer-compatible smartphone) single-purpose device, which would only support a single seed phrase per unit, operated via a drastically simplified user interface. However, it would have all the security features of Parity Signer: a full-featured SURI account derivation system, transactions preview, metadata updates, logging.

As something that supports the same QR code output formats as Signer, it would be able to drop-in replace Signer when providing signatures back to a mobile/desktop wallet. The only challenge would be in transforming the current QR-driven input format of Signer into a suitable NFC payload. Alongside with native support in some apps (which would require software modification) this can also be achieved with a tiny “translator” app for a regular (online, not necessary trusted — one’s usual daily driver) mobile phone: it would snap a QR code with the transaction details and (statelessly, without any extra features or complicated UI) transform that into an NFC payload.

Kampela is a natural (and long-discussed) extension of Parity Signer to leverage the most out of modern hardware-based crypto chips and drastically reduce Signer’s attack surface: no mobile OS, not extra platform features, no unexpected communication methods or airplane mode to take care of.

Kampela is not a wallet! It is a signing tool, it is not able to track on-chain balances, validate things over chain-provided information or generate transactions on itself.

The scope of this proposal does not include actual production, but does result in all preliminary development required for production. Hopefully, many assembly shops would rush in to compete with us and each other!

This proposal was prevoiusly posted in Discussions

Edit: Milestone 1 report

Edit: Milestone 2 report

Show More

Expert Image
No Expert Review Available!An Expert adds their valuable review for this post!An expert? Add your Review!

Council Votes

Gvyf...gjKX
Aye
DaCS...Liax
Aye
DWUA...TJ1j
Aye
JKoS...GNC3
Aye
EGVQ...5eYo
Aye
DMF8...MSXU
Aye
Gth5...s5m5
Aye
HSNB...GiQN
Aye
Hjui...vtis
Aye
J9nD...8yuK
Aye
Please Log In to comment

Discover similar proposals


Empty Icon

No Active Proposals