mirror of
https://github.com/seigler/dash-docs
synced 2025-07-27 09:46:12 +00:00
Make no address reuse with change addresses a requirement for wallets
This commit is contained in:
Saivann
parent
8e38860808
commit
949c8a2ad6
2 changed files with 1 additions and 18 deletions
|
|
@ -700,6 +700,7 @@ Basic requirements:
|
||||||
- SSL certificate passes [Qualys SSL Labs SSL test](https://www.ssllabs.com/ssltest/)
|
- SSL certificate passes [Qualys SSL Labs SSL test](https://www.ssllabs.com/ssltest/)
|
||||||
- Website serving executable code or requiring authentication uses HSTS with a max-age of at least 180 days
|
- Website serving executable code or requiring authentication uses HSTS with a max-age of at least 180 days
|
||||||
- The identity of CEOs and/or developers is public
|
- The identity of CEOs and/or developers is public
|
||||||
|
- Avoid address reuse by using a new change address for each transaction
|
||||||
- If private keys or encryption keys are stored online:
|
- If private keys or encryption keys are stored online:
|
||||||
- Refuses weak passwords (short passwords and/or common passwords) used to secure access to any funds, or provides an aggressive account lock-out feature in response to failed login attempts along with a strict account recovery process.
|
- Refuses weak passwords (short passwords and/or common passwords) used to secure access to any funds, or provides an aggressive account lock-out feature in response to failed login attempts along with a strict account recovery process.
|
||||||
- If user has no access over its private keys:
|
- If user has no access over its private keys:
|
||||||
|
|
@ -725,7 +726,6 @@ Basic requirements:
|
||||||
Optional criterias (some could become requirements):
|
Optional criterias (some could become requirements):
|
||||||
|
|
||||||
- Received independent security audit(s)
|
- Received independent security audit(s)
|
||||||
- Avoid address reuse by using a new change address for each transaction
|
|
||||||
- Avoid address reuse by displaying a new receiving address for each transaction in the wallet UI
|
- Avoid address reuse by displaying a new receiving address for each transaction in the wallet UI
|
||||||
- Does not show "received from" Bitcoin addresses in the UI
|
- Does not show "received from" Bitcoin addresses in the UI
|
||||||
- Uses deterministic ECDSA nonces (RFC 6979)
|
- Uses deterministic ECDSA nonces (RFC 6979)
|
||||||
|
|
|
||||||
|
|
@ -502,23 +502,6 @@ wallets:
|
||||||
privacyaddressreuse: "checkpassprivacyaddressrotation"
|
privacyaddressreuse: "checkpassprivacyaddressrotation"
|
||||||
privacydisclosure: "checkfailprivacydisclosureaccount"
|
privacydisclosure: "checkfailprivacydisclosureaccount"
|
||||||
privacynetwork: "checkfailprivacynetworknosupporttor"
|
privacynetwork: "checkfailprivacynetworknosupporttor"
|
||||||
desktop:
|
|
||||||
text: "wallethive"
|
|
||||||
link: "http://mac.hivewallet.com/"
|
|
||||||
source: "https://github.com/hivewallet/hive-osx"
|
|
||||||
screenshot: "hivemac.png"
|
|
||||||
os:
|
|
||||||
- mac
|
|
||||||
check:
|
|
||||||
control: "checkgoodcontrolfull"
|
|
||||||
validation: "checkpassvalidationspvp2p"
|
|
||||||
transparency: "checkpasstransparencyopensource"
|
|
||||||
environment: "checkfailenvironmentdesktop"
|
|
||||||
privacy: "checkfailprivacyweak"
|
|
||||||
privacycheck:
|
|
||||||
privacyaddressreuse: "checkfailprivacyaddressrotation"
|
|
||||||
privacydisclosure: "checkfailprivacydisclosurespv"
|
|
||||||
privacynetwork: "checkpassprivacynetworksupporttorproxy"
|
|
||||||
web:
|
web:
|
||||||
text: "wallethive-web"
|
text: "wallethive-web"
|
||||||
link: "https://hivewallet.com/"
|
link: "https://hivewallet.com/"
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue