Exploring Web3 Wallet Security: What Recovery System Does the Ethereum Community Need?

Original Title: "DAOrayaki | What Kind of Social Recovery System Does the Ethereum Community Need?"
Authors: Vitalik, isthisanart
Compiled by: X[email protected], DAOrayaki

One of the greatest challenges in making cryptocurrencies and blockchain applications accessible to everyday users is security: How do we prevent users' funds from being lost or stolen? Loss and theft are serious issues, often costing innocent blockchain users thousands of dollars—sometimes even wiping out their entire net worth.

Over the years, numerous solutions have been proposed: paper wallets, hardware wallets, and my former favorite, multisignature wallets. These have significantly improved security. However, each solution has its flaws—some offer inadequate protection against theft or loss, others are cumbersome to use, leading to low adoption rates, and some suffer from both.

In early 2021, Vitalik Buterin proposed an alternative: social recovery wallets, a newer type of smart contract wallet. This concept was reiterated in his May 2022 article, Decentralized Society: Finding Web3’s Soul. Social recovery wallets promise high security and better usability, especially as Ethereum’s ecosystem shifts to rollup-based Layer 2 solutions, addressing two critical issues:

1. Dependence on centralized relayers
2. High transaction fees

This article explores:

• What social recovery wallets are
• Alternative use cases for social recovery systems
• User feedback

What Is a Social Recovery Wallet?

Social recovery systems work as follows:

1. Single Signing Key: Only one key is used to approve transactions.
2. Guardians: At least 3 (or more) guardians can collaborate to change the account’s signing key if the original is lost.
3. Delayed Key Changes: Adding/removing guardians requires a waiting period (typically 1–3 days).

In normal use, social recovery wallets function like traditional wallets, with transactions signed instantly. However, if the signing key is lost, the recovery process begins:

• The user contacts guardians, who sign a special transaction to update the wallet’s signing key.
• Guardians can approve recovery requests via a simple web interface (e.g., security.loopring.io).

Choosing Guardians

Common guardian options include:

• Other devices or paper backups owned by the user
• Trusted friends/family
• Institutions that verify identity via email, phone, or video call

Higher guardian counts (e.g., 7+) improve security, especially if your social circle includes Ethereum-savvy users. For less technical users, fewer but highly trusted guardians may suffice.

Privacy & Security Measures

To minimize risks:

• Guardians don’t need to know each other.
• Store hashed guardian addresses on-chain (not raw data).
• Use single-purpose addresses for recovery actions.

Diversify guardians across social circles (e.g., include one institutional guardian) to reduce collusion risks.

Alternative Use Cases for Social Recovery

Beyond wallet recovery, social recovery systems can:

• Backup sensitive data (e.g., encrypted files, identity documents).
• Enable anonymous recovery (e.g., Dark Crystal Web3’s MVP).

Dark Crystal Web3: A Case Study

This protocol allows recovery partners to assist without installing software, assuming they have an Ethereum wallet. Key features:

1. No memorization required (except the main wallet password).
2. Confidentiality: Backs up any secret (e.g., private keys).
3. Anonymity support for secret owners/recovery partners.

How It Works:

• A web-based dApp for guardians (using Web3 APIs).
• Offline software for secret owners (generates encrypted shares published to the blockchain).

👉 Learn more about Dark Crystal Web3’s design

What Kind of Social Recovery System Does Ethereum Need?

Based on user research (interviews with WalletConnect, MetaMask, Gnosis Safe, etc.), key insights include:

1. Cold Storage’s Limited Role

While cold storage (e.g., paper wallets) is secure, users rarely use it due to usability hurdles. Most prefer hot wallets for daily use, reserving cold storage for high-value assets.

2. Technical Literacy Matters

• 80% of surveyed users would use CLI tools if necessary.
• Phishing risks make downloadable apps preferable to web-based dApps for some.

3. Identity & Anonymity

• Most users have a "main Ethereum address" they won’t forget.
• Recovery partners’ anonymity is prioritized over secret owners’.

4. On-Chain vs. Centralized Storage

• High on-chain costs (e.g., $200+) deter users.
• Alternatives like Polygon or Gnosis Chain are favored.
• Some prefer hybrid (centralized + decentralized) solutions.

5. Roadmap Priorities

• Secure communication between secret owners/guardians is critical.
• Wallet-to-wallet encrypted messaging (e.g., for recovery alerts) is a sought-after feature.

FAQ

Q1: How many guardians are ideal?
A: 7+ for high security (if guardians are diverse and trustworthy); 3–5 for simplicity.

Q2: Can non-Ethereum users be guardians?
A: Yes, but they’ll need to create a wallet (e.g., via MetaMask) to participate.

Q3: What if guardians lose their keys?
A: Social recovery wallets allow replacing guardians (after a waiting period).

Q4: Are social recovery wallets incompatible with "crypto values"?
A: No—they embody constrained trust, aligning with crypto’s goal of minimizing (not eliminating) trust.

Q5: How does Dark Crystal Web3 ensure long-term recoverability?
A: By storing encrypted shares on-chain and allowing verifiable recovery tests.

👉 Explore secure wallet solutions

👉 Discover Ethereum’s Layer 2 advancements

References: