Coder Social home page Coder Social logo

eoshub-ios's Introduction

EOSHub

Welcome to EOS Hub ­ Easy access to the EOS network.

EOSHUB is a mobile platform that delivers benefits of EOS to people. Despite many advantages, but access to EOS blockchain network was too difficult for the ordinary user.

EOSHub is the easiest and safest way to help users to access various EOS features like Tokens, Vote, Resource management, Trading RAM etc.

It also prevents security threats caused by hackers and a user's unconscious actions.

EOSHub uses easy biometrics authentication rather than long, complicate and vulnerable private key. You can do everything you need to do on EOS blockchain with EOSHub.

Our vision is to spread out limitless possibilities of EOS blockchain to everyone.

Wallet features

EOS Account manager

  • Creating an EOS account
  • Importing own private key.
  • Multiple EOS accounts manager.
  • Favorite accounts list.

Token manager

  • Managing all tokens inherited from personal EOS account.
  • Automatic retrieving stared tokens*(e.g. PDR, IQ, HORUS … )*.
  • Simple browsing and adding new tokens.

Easy Transaction

  • Sending and receiving EOS including available tokens you have.
  • Transaction history.

Versatile resources manager

  • Staking CPU and network resources.
  • Buy and sell RAM with details of your purchase.
  • Automatically returns EOS after 72 hours after unstaking.

BP voting.

  • Participate in BP voting with stake EOS.

Airgrab.

  • Supports airgrab feature. (available soon)

Smart contract

  • Manually execute smart contracts. (available soon)

ICO platform. (available soon)

  • EOSHUB wants to be a decentralized ICO platform for all EOS lovers. At EOSHub ICO company can promote their coins and company's technology. and user's can collect information from EOSHub community and also particiapte in ICO directly.

Security.

Cold wallet

  • EOSHub can sign on its own. So when signing a transaction, your private key or wallet password is not exposed to the network.

iCloud KeyChain

  • The imported private key is stored in the iCloud Keychain as a strong encryption algorithm.
  • By using iCloud Keychain, you can be free from the loss of mobile phones and you can get powerful Apple security features that have never been hacked.

Biometic supports (Face ID, Touch ID)

  • Sign requires biometic authentication for all transactions that require it.

Secure enclave supports

  • How about keeping the private key in the hardware when you create a new EOS account? The Secure Enclave is Apple's powerful security technology that allows you to protect a private key in a secret place of hardware. The Secure Enclave blocks private key access without a user's permission like hacker threats or unconsious mistakes. Because Apple's security hardware enables you to sign a private key without loading on a memory area. Recently the EOS block one adds this security feature for Mac in v1.1.0. EOSHub is the first mobile app in the world supports the Secure Enclave function for iOS.

EOSHub.inc

eoshub-ios's People

Contributors

eoshubio avatar kein-s avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar

Forkers

hurnjoolee xungwoo pittcho hong-jihyung jude-kim wahello beethovensfist supersuber tabathap kybru91

eoshub-ios's Issues

Updates for Maximum EOS account security

New updates for maximum EOS account security

  • Recently, the number of EOS account steal attempts is growing dramatically. So EOSHub team prepared enhanced security options for EOS wallet users.
  • Main idea of EOS hacking is stealing Owner key from the user’s system(Smartphone, Cloud, PC etc.)
  • Normally, hackers send tokens to a designated account immediately when they succeed to get the Owner key from a user. Furthermore, Hackers change the owner key of the victim's account to get full control of the hacked account. Sometimes they do ‘Unstake’ all resources to exploit property.
  • EOSHub team suggests very important updates to protect user’s EOS accounts.

1. Storing Owner key in Secure Enclave

Latest iOS has a feature which works like hardware key wallet. That’s called Secure Enclave- SE technology. EOSHub is the only one EOS mobile wallet supporting SE. A user may enable SE in the Keypairs button.

The Secure Enclave is a hardware-based key manager that’s isolated from the main processor to provide an extra layer of security. When you store a private key in the Secure Enclave, you never actually handle the key, making it difficult for the key to become compromised. Instead, you instruct the Secure Enclave to create the key, securely store it, and perform operations with it. You receive only the output of these operations, such as encrypted data or a cryptographic signature verification outcome.

The benefits of the Secure Enclave are balanced against a few restrictions. In particular, the Secure Enclave:
• Is a hardware feature of the Apple A7 or later A-series processor. Only iOS devices with one of these processors or a MacBook Pro with the Touch Bar and Touch ID support this feature.
• Stores only 256-bit elliptic curve private keys. These keys can only be used for creating and verifying cryptographic signatures, or for elliptic curve Diffie-Hellman key exchange (and by extension, symmetric encryption).
• Can’t import preexisting keys. You must create keys directly inside the Secure Enclave. Not having a mechanism to transfer key data into or out of the Secure Enclave is fundamental to its security.

How to protect EOS ‘Owner key’ and ‘Private key’ by storing in SE.

  • Users may change his ‘Owner key’ to store important keys in ‘Secure enclave’ area
  • ‘Secure Enclave’ is H/W block of latest iPhone. It stores very important keys in like a ‘Private key’ in key pair in H/W and it never exposed to outside. So that no one can access your Keys.
  • If a hacker steals your active key and unstakes your resources, User can simply change his Active key by Owner key to protect tokens in the account.

2. Secure transfer smart contract

Now, EOSHub user may set a limit of the withdrawal amount. EOSHub implements a special smart-contract to protect personal properties. The smart-contract works like ordinary token exchanges.

  • Implementing one-day withdrawal limitation setting.
  • Account owner may set his withdrawal allowance of each day by using Smart-contract in EOSHub. * EOSHub adds new ‘Limit’ permission and save its key in Secure Encalve area upon a user’s request.
  • Anonymous hackers can’t send tokens to designated account illegally more than user set limitation amount.
  • Important Notice) User should buy enough RAM to enable this smart-contract limitation feature. It is EOS blockchain requirement.

3. Security level indicator (GUI)

Depending on your security defense level, Indicators will show up in a wallet detail.

  • 3 Levels of security indicator.

Export private key support

  • It is not possible to export a private key from a secure enclave. But I think that the private key stored in the iCloud Keychain should be backed up. So I will add the feature to export private key after biometic authentication.

Resource update bug

There is a bug where the resource display is not immediately visible after ram sale.

memory leak in create ecdsa_sig function

Also, I think the code you pointed to from eoshub-ios is leaky -- d2i_ECDSA_SIG() returns a newly allocated ECDSA_SIG which will leak the ECDSA_SIG you create on line 503

Enhanced wallet list

  • It is difficult to pull the list and update it when there are many accounts in the wallet view.
  • Add a refresh button for each wallet.
  • Add a brief view mode.

Anonymous login

For those users who would like to log in anonymously, EOSHub decided that anonymous login was required

License

Please, provide software license info into your code repo.
Is it Apache 2.0?

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.