Subscribe
Sign in
Start new thread
All
AirGap.it
p/airgap-it
Be your own bank with secure, practical Crypto transactions
Visit Product
Andreas Gassmann

AirGap Crypto Wallet — Secure your crypto using an air-gapped setup with 2 devices

1

AirGap is a secure mobile wallet with 2 apps. The AirGap Vault allows you to securely generate and store private keys and should be installed on a phone with no connectivity. The AirGap Wallet app is installed on your everyday-phone. You can use it to check your portfolio and initiate transactions, which then need to be signed with the Vault app.

Replies
Best
Andreas Gassmann
Maker
Hello Product Hunt! I'm one of the developers of AirGap and we are proud to announce the release of our 2 apps, which are available for Android and iOS. We believe that if someone wants to be their own bank and take over the responsibility of securely managing his funds, a secure but easy to use solution is needed. That's why we built AirGap. With our 2 device approach, secure key handling becomes more secure, while still being easy to use for the user. AirGap covers security on three layers: - Advanced secret generation using additional sources of entropy (audio, video, accelerometer and touch) - Social secret recovery using Shamir's secret sharing - Two-device approach, leveraging the mobile application sandbox and permission system, as well as the biometrically secured enclave (Touch ID, Face ID, Fingerprint) While security and user experience often result in a trade-off decision between one or the other, we've spent a lot of effort to achieve what we call "accessible security". We believe that security alone isn't enough if it is not easy to use for the average user.
 So how does our 2-app system work?

 To get the highest security, the AirGap Vault application is installed on a dedicated device, which will never be connected to any network again. The app is used to generate a secure secret, which will then be stored inside the devices' secure enclave and needs biometric authentication every time it is accessed. This secret never leaves the device it was generated on (except for your paper-backup).

 The AirGap Wallet application can be installed on your everyday phone. With this app you can check your portfolio and manage your wallets, which will be imported from the Vault app using secure, one-way communication with QR codes. The AirGap wallet only deals with publicly available information. To send funds, you have to do the following steps: 1. Create a new transaction including address, amount, and fee inside AirGap Wallet 2. A QR code with the transaction details is generated 3. Scan the QR code with AirGap Vault 4. Unlock your private key with you password and biometric authentication to sign the transaction in AirGap Vault 5. The signed transaction will be displayed in a QR code 6. Scan the QR code with AirGap Wallet and broadcast it to the network 
If you only want to manage smaller amounts, you can of course install both apps on the same phone. Then the communication between the apps is done over app-switching. This is still more secure than regular wallets, because the AirGap Vault app does not have any network permissions (Android only). 
AirGap is completely open source and built as a hybrid app with the Ionic Framework. This means that you can also use it as a web-app in your browser (preferably an offline and air-gapped computer or Raspberry Pi). We currently support Bitcoin, Ethereum and Aeternity, but we are planning to support many more in the future.

 Please feel free to ask us anything, challenge our ideas or help us make our app better by submitting a pull request :).

 Cheers!