Please go to our WIKI for instructions in how to build and use our product
This is a Digital Vault/Wallet designed to operate seamlessly on any PC or server. It is a versatile, multi-platform application that is compatible with Windows, Linux, and Mac operating systems. With its robust architecture, this wallet ensures secure and efficient management of Bitcoin transactions across different environments, making it an ideal choice for users seeking flexibility and reliability in their Bitcoin management.
In addition, we support a novel interactive backup process that enhances security and user experience. Furthermore, our wallet incorporates a custom Taproot algorithm that significantly reduces transaction fees for any K-of-N multisignature setup, making it many times cheaper than traditional multisignature mechanisms. This combination of advanced features ensures that users can enjoy both cutting-edge security and cost-efficiency in their Bitcoin transactions.
The wallet sopport the following Bitcoin standards:
- Brain Wallets (not recommended).
- Wallet Import Format (WIF) for legacy individual keys.
- Hierarchical Deterministic Wallets (BIP 32)
- Mnemonic code for generating deterministic keys (BIP 39)
- Multi-Account Hierarchy for Deterministic Wallets - Legacy Format of HD (BIP 44)
- Derivation scheme for P2WPKH-nested-in-P2SH based accounts (BIP 49)
- Derivation scheme for P2WPKH based accounts (BIP 84)
- Segregated Witness (BIP 141), (BIP 143) and (BIP 144)
- Bech32 segwit address implementation with error detection (BIP 163)
- Key Derivation for Single Key P2TR Outputs (BIP 86) ~ our default mode
- Validation of Taproot Scripts (BIP 341 and BIP 342)
- Multy spending paths (address and script)
- K of N multisignature (using Huffman TapTrees)
Our security measures employ well-known and highly trusted algorithms to ensure data protection:
- Password Hashing: User passwords are securely hashed using Argon2id, configured with a 128-bit salt, 6 degrees of parallelism, 10 iterations, and 640 MiB of memory. As a reference, OWASP recommends a minimum of 19 MiB of memory, 2 iterations, and 1 degree of parallelism.
- Master Key Management: Each user’s Master Key is deterministically generated using the BIP-39 standard (mnemonic-based key derivation). This Master Key is encrypted using AES-256-GCM with a randomly generated 256-bit AES key, which is derived from the user’s password hash (via Argon2id). A 128-bit authentication tag is included to ensure the integrity and authenticity of the encrypted Master Key.
- Data Encryption: Each piece of user data is encrypted using a unique, randomly generated 256-bit AES key. Encryption is performed using AES-GCM with a 128-bit authentication tag, providing strong confidentiality and ensuring that each data item is individually tamper-resistant.
- File Encryption: Large files (including those exceeding 2 GB) are encrypted using AES in CBC mode with PKCS7 padding. A new random 256-bit AES key and initialization vector (IV) are generated for each file. To ensure integrity and tamper detection, an HMAC is calculated for each encrypted block.
By integrating these advanced security features and leveraging the strength of the Bitcoin network, we provide our users with state-of-the-art tools to protect their privacy and secure their digital assets. Our commitment to security ensures that users can trust our solutions to keep their data safe and accessible only to them.