Search the Community
Showing results for tags 'web interface'.
Found 1 result
Minimum search term is 4 characters long. Can't find what you want? Click here for the custom google search instead.
To encourage early community feedback, I'd like to introduce you to the XRP Toolkit, project goals and roadmap. Background When looking for different options to conveniently adjust wallet settings, trade on the decentralized exchange and escrow XRP, I found a few pioneering web tools like The World Exchange and Bithomp. With a background in cybersecurity and secure software development, I found it unacceptable that very few were using security headers like HTTP strict transport security (https://tools.ietf.org/html/rfc6797) and DNS security extensions (https://tools.ietf.org/html/rfc4033). In other words, the developers are either unaware or simply not doing everything in their power to protect their users against e.g. man-in-the-middle, clickjacking, cross-site scripting and DNS spoofing attacks. You can verify what security headers your favourite exchange uses with e.g. securityheaders.com: You can verify if DNSSEC is properly setup for your favourite exchange with e.g. dnsviz.net: After reaching the conclusion that a more secure and user-friendly XRP ledger interface was needed, I began developing the XRP Toolkit with security as the highest priority followed by user-friendliness. A summary of security related design choices can be seen below: Client-side transaction signing, sensitive data never leaves the browser. Hardware wallet integrations, sensitive operations can be performed inside the hardware wallet itself. Published source code, for security and code reviews. Extensive server hardening with strict use of security headers. Compulsory HTTPS for all endpoints and enabled DNSSEC for all name servers. Hardware Wallet Integration Demo I recently published some early proof-of-concept code, showcasing how Ledger hardware wallets can be used to securely send XRP payments from browsers (https://gitlab.com/xrptoolkit/ledger-u2f-integration-demo), which was quickly picked up and covered by Hodor on the XRP community blog (https://xrpcommunity.blog/enjoy-your-summer-the-xrp-ledger-is-always-working/? Project Goals After releasing the demo application, I've continued to diligently develop the actual XRP Toolkit and setup three major project goals: 1. Accelerate XRP mainstream adoption, by releasing a secure and user-friendly web interface, providing convenient access to the full feature set of the XRP ledger. 2. Encourage learning and XRP ledger experimentation, by making the test net more accessible. 3. Enable multisignature coordination and high security use-cases, by implementing transaction notifications and hardware wallet support. GUI Mockup/Prototype Roadmap The XRP Toolkit is currently on schedule for a public beta release in Q3 (2018) and the roadmap to stable v1.0.0 and v2.0.0 is available at: https://gitlab.com/xrptoolkit/xrptoolkit-client Watch the GitLab repository to receive early updates and stay tuned for additional threads/posts by the XRPChat/Reddit users RareData and xrptoolkit.