-
Notifications
You must be signed in to change notification settings - Fork 55
add BitID support #367
Comments
Cool :) Here is a video of the BitID UX on the Bitcoin Android wallet : Some notes about BitID metada for wallet implementation : |
@mattatgit @weilu @jenbennings @haustraliaer @javgh @jsuder Need to research this and decide if this is something we are seriously considering implementing across all of the products. |
@EricLarch any thoughts on how BitID could work with a bip32(HD) wallet? |
It is just a question of convention about which branches to use as
|
I'm doing something simple today - any derivation containing 0xB11D in a branch is considered as a BitID address and skips the second factor check. In order to be compliant with the recent standards, I'd suggest to use BIP 43 and define 0xB11D purpose for BitID - then BitID addresses could be encoded as follows to avoid creating a very long path m / 0xB11D' / account' / IEEE 802.3 CRC 32 of website origin' / account sub index (for possible collisions) |
As far as I can tell, this hasn't really taken off so far. I don't remember seeing any further posts about it since the announcement. In fact, I've seen a competing solution announced by BitPay http://blog.bitpay.com/2014/07/01/bitauth-for-decentralized-authentication.html (which also doesn't seem to be implemented by anyone yet). I would leave this as an idea for the future for now. |
@EricLarch @btchip By the time BIP43 came out Hive's wallet part of the code was already stablized. We are currently using the default branch & accounts (m/0'/0 and m/0'/1) as specified in bip32. Is there any way we can make BitID work with the current keychain structure? |
Right now BitID is implemented only in Mycelium (beta version), Dark Wallet and BTChip. There are numerous contributions on the server side, but few from the wallet perspective. BitAuth is a different approach on the subjet, aiming to connected identities to wallets (BitID is just about proving you own an address, connected or not to a blockchain transaction depending on the context). |
@wellu the most transparent way would probably be to use a dedicated account for BitID (0xb11d), then iterate an index per new account created on any website. |
I'll think about this if it ever becomes a popular thing, I don't think it makes sense to waste time on this if it ends up never becoming anything more than a proof of concept. |
It's a bit of a chicken and egg problem - it's not going to be popular if no wallet supports it :) and it shouldn't be that long to implement if you already support message signing and URI callbacks. But talk is cheap and pull requests are better, I know. |
https://docs.google.com/presentation/d/19iODrgKsVigsA17csNF3HU75UG9eiI5Z6cX2OczvIsw/pub
https://github.com/bitid/bitid
http://bitid-demo.herokuapp.com/
The text was updated successfully, but these errors were encountered: