Parity Signer - Turn your smartphone into a hardware wallet

Parity Signer is a mobile application that turns a smartphone into a secure air-gapped wallet also called cold storage. It means that, once the app has been installed, users can create Ethereum accounts, sign transactions and transfer funds from and to these accounts without any sort of connectivity enabled on the device. Wifi, Mobile Network, Bluetooth can be shut down and even removed physically to ensure that the mobile phone containing these accounts will not be exposed to any online threat. Have a look at the tutorial on our wiki to learn how to use MyCrypto together with Parity Signer.

Any data transfer from or to the app will happen using QR code scanning. By doing so, the most sensitive piece of information, the private keys, will never leave the phone. The Parity Signer mobile app can be used to store any Ethereum account, this includes ETH, ETC as well as Ether from various testnets (Kovan, Ropsten...).

Device security

Parity Signer was built to be used offline. The mobile device used to run the app will hold valuable information that needs to be kept securely stored. It is therefore advised to:

• Get a separate mobile device.
• Make a factory reset.
• Enable full-disk encryption on the device, with a reasonable password (might not be on by default, for example for older Android devices).
• Do not use any kind of biometrics such as fingerprint or face recognition for device decryption/unlocking, as those may be less secure than regular passwords.
• Once the app has been installed, enable airplane mode and make sure to switch off Wifi, Bluetooth or any connection ability of the device.
• Only charge the phone on a power outlet that is never connected to the internet. Only charge the phone with the manufacturer's charging adapter. Do not charge the phone on public USB chargers.

Screenshots

Build it

Requirements

• node.js (tested on v8.4.0)
• yarn (tested on 1.6.0)
• rustup (tested on rustup 1.5.0 (92d0d1e9e 2017-06-24))
• rustc (tested on rustc 1.27.0 (3eda71b00 2018-06-19))
• cargo (tested on cargo 1.27.0 (1e95190e5 2018-05-27))
• android_ndk (tested on r13b)
• Xcode (only, for iOS, tested on Version 9.4.1 (9F2000))
• $NDK_HOME envarionment variable set to ndk home directory (eg. /usr/local/opt/android-ndk)
• $JAVA_HOME envarionment variable set to java home directory (eg. /Library/Java/JavaVirtualMachines/jdk1.8.0_60.jdk/Contents/Home)

Setup

• macOS

  ./setup_macos.sh
  
  echo "ndk.dir=$NDK_HOME" > android/local.properties
  echo "sdk.dir=$ANDROID_HOME" >> android/local.properties
  

• linux

  ./setup_linux.sh
  
  echo "ndk.dir=$NDK_HOME" > android/local.properties
  echo "sdk.dir=$ANDROID_HOME" >> android/local.properties
  

Usage

• iOS

  npm run ios
  

• Android

  npm run android
  

Test Parity Signer

For a quick test and to avoid the hurdle of creating an account, sending funds to it and finally create a transaction as described in the MyCrypto Tutorial), you can use a pre-funded account on Kovan Network. To get access to this account, you need to:

• Recover an account
• Select Kovan network and choose a name
• Use the recovery phrase: this is sparta you'll get the account address: 006E27B6A72E1f34C626762F3C4761547Aff1421
• Validate and accept the warning message
• Chose a pin code
• Scan this QR code to sign a transaction sending some Kovan Eth to the same account.

Corresponding data:

{
    "action": "signTransaction",
    "data": {
        "account": "006e27b6a72e1f34c626762f3c4761547aff1421",
        "rlp": "ea1584ee6b280082520894006e27b6a72e1f34c626762f3c4761547aff1421872386f26fc10000802a8080"
    }
}