Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Proposal for Recovery Phrase Update and Self-Destruct Feature in MetaMask Wallet #11521

Open
9 tasks
TommyVersety opened this issue Oct 1, 2024 · 0 comments
Open
9 tasks

Proposal for Recovery Phrase Update and Self-Destruct Feature in MetaMask Wallet #11521

TommyVersety opened this issue Oct 1, 2024 · 0 comments
Labels
external-contributor

Comments

@TommyVersety
Copy link

TommyVersety commented Oct 1, 2024
edited
Loading

What is this about?

### Formal Issue Proposal for MetaMask Wallet Upgrade

**Title: Proposal for Recovery Phrase Update and Self-Destruct Feature in MetaMask Wallet_**_

Background

MetaMask is widely recognized as one of the leading cryptocurrency wallets, providing users with a secure means of managing their digital assets. However, as the landscape of online security continues to evolve, it is imperative that MetaMask enhances its features to better protect its users from potential threats.

Issue Description

Currently, once a recovery phrase is set, users cannot modify it. This limitation poses a significant risk, especially in the event of a suspected security compromise. Additionally, there is a lack of an immediate response mechanism for users who believe their wallets may have been compromised.

Proposal for Enhancement

  1. Change Recovery Phrase Feature:

    • Objective: Allow users to update their recovery phrase when they suspect their wallet or security has been compromised.
    • Implementation Consideration: Users would be prompted to go through a secure verification process before changing their recovery phrase to ensure that the request is legitimate.

  2. Self-Destruct Button:

    • Objective: Introduce a self-destruct feature that enables users to safely destroy their wallet and transfer funds to a new wallet in case of a security breach.
    • Implementation Consideration: This feature should include:
      • A user-friendly interface to initiate the self-destruct process.
      • A verification step to confirm the user’s identity.
      • An automated transfer of all funds to a new wallet address generated by the metamask wallet with zero(0) fees hence in terms clone the wallet. Here's a code sample of the new feature:

`const { ethers } = require("ethers");

// Function to generate a new wallet
function generateWallet() {
const wallet = ethers.Wallet.createRandom();
console.log("New Wallet Generated:");
console.log("Address:", wallet.address);
console.log("Private Key:", wallet.privateKey);
return wallet;
}

// Function to clone a wallet
function cloneWallet(originalWallet) {
const clonedWallet = new ethers.Wallet(originalWallet.privateKey);
console.log("Wallet Cloned:");
console.log("Cloned Address:", clonedWallet.address);
return clonedWallet;
}

// Function to destroy the original wallet
function destroyWallet(originalWallet, newWalletAddress) {
console.log("Destroying Original Wallet...");
// In a real scenario, you would implement fund transfer logic here
console.log(Transferring funds from ${originalWallet.address} to ${newWalletAddress});
console.log("Original wallet destroyed. Funds moved successfully.");
}

// Main flow
const originalWallet = generateWallet();
const clonedWallet = cloneWallet(originalWallet);
destroyWallet(originalWallet, clonedWallet.address);
`

Benefits

  • Enhanced Security: Allowing users to change their recovery phrase and enabling a self-destruct feature will significantly increase user confidence in the security of their assets.
  • User Control: These features empower users to take proactive measures in managing their digital security, ensuring that they can respond effectively to potential threats.
  • Community Trust: By addressing these security concerns, MetaMask can reinforce its position as a leader in the cryptocurrency space and enhance user trust in the platform.

Conclusion

As security threats continue to emerge, it is vital for MetaMask to adapt and provide users with more robust tools to protect their assets. The proposed features for changing the recovery phrase and implementing a self-destruct mechanism represent a significant step forward in safeguarding users' digital currencies.

I appreciate your consideration of this proposal and look forward to your response.

Sincerely,
mortysmith

Scenario

No response

Design

No response

Technical Details

No response

Threat Modeling Framework

No response

Acceptance Criteria

No response

Stakeholder review needed before the work gets merged

  • Engineering (needed in most cases)
  • Design
  • Product
  • QA (automation tests are required to pass before merging PRs but not all changes are covered by automation tests - please review if QA is needed beyond automation tests)
  • Security
  • Legal
  • Marketing
  • Management (please specify)
  • Other (please specify)

References

No response
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
external-contributor
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@metamaskbot @TommyVersety