Wallets
This is some text inside of a div block.
Security
This is some text inside of a div block.
Key management
This is some text inside of a div block.
Blog posts
This is some text inside of a div block.
go back
Cubist partners with Ava Labs to power Core seedless wallet
A simple Web2-like wallet experience without trading off security
December 15, 2023
written by
We’re thrilled to announce that we’ve partnered with Ava Labs to power their new Core seedless wallet—launching today across Bitcoin, Avalanche C/X/P chains, Avalanche Subnets, Ethereum, and every other EVM chain! We’re incredibly proud that our key management infrastructure, <a href="/cubesigner-hardware-backed-wallet-as-a-service-for-non-custodial-end-user-wallets" target="_blank">CubeSigner</a>, has transformed Core into a truly first-of-its-kind Web3 wallet: a familiar, Web2-like experience (think social logins and no seed phrases!) across all of a user’s devices, without trading off security.<br>
<br>
## How’s that possible?<br>
<br>
- **Make it impossible for anyone to see (or steal) private keys:** Keys are never stored on any user’s personal device and are never exposed in memory, because CubeSigner creates wallets and signs transactions inside remote secure hardware.<br>
- **Make sure users can access their wallet across devices:** CubeSigner’s secure remote signing allows users to safely access their wallet across multiple devices. Even if users lose their password or device, they can recover their accounts using existing social logins and authentication factors like Passkeys, TOTP (e.g., Google Authenticator), and YubiKeys.<br>
- **Make sure that only the user can log into their account:** By offering simple integration with reputable social login providers and authentication factors, CubeSigner helps Core protect users from phishing: in order to gain access to someone’s account, an attacker must compromise a user’s login credentials as well as their other factors.<br>
- **Make sure the user (and only the user!) can export their keys:** Recent SIM swapping hacks have shown how exports, if implemented unsafely, can expose keys to attackers. To make sure that exports are only possible for a key’s real owner, we designed CubeSigner’s export protocol to involve waiting periods and extra authentication factors.<br>
<br>
Cubist is committed to raising the bar for Web3 security, and Core's launch is just the start of proving that security doesn’t have to cost convenience.<br>
<br>
Read more about the security model that CubeSigner is enabling for Core in <a href="https://medium.com/@CoreApp/core-seed-abstraction-technical-overview-3d56887d4a00" target="_blank">Core's Technical Overview</a>.
<br>
Read more
What's embedded in your embedded wallet?
Here are the four questions to ask before choosing your embedded wallet provider. If you want to keep your users’ keys safe—and keep yourself safe from key custody risk—read on.
May 6, 2024
Cubist joins the Allora Network as a node operator
As a node operator, Cubist is supporting Allora’s mission by operating a validator to secure the Allora chain and a Reputer to rate the performance of the ML models delivered by Allora Workers.
April 15, 2024
Slashing risks you need to think about when restaking
A proper anti-slashing setup mitigates these risks on AVSes which have designed their protocols to be anti-slashable, but this doesn’t mean just firing up an instance of Web3Signer.
March 28, 2024