Closed Vasily2K closed 1 year ago
stacks-foundation
commented
1 year ago 👋 @Vasily2K Thanks for your application! We will do a pre-review and let you know if we have any immediate questions. In the mean time please refer to our review schedule here for a detailed timeline and response dates. Best, Will
Scarlett-Web3
commented
1 year ago I think you have an interesting project. If you haven't already gone through the Stacks Web3 Startup Lab, I would like to invite you to apply. Here's a 5-minute read on how we can help you turn your startup idea into an investment-ready startup: www.web3startuplab.io
If you are interested, you can apply through the "Apply Now" button.
Feel free to ping me on email: scarlett@stacks.ac
will-corcoran
commented
1 year ago Hello @Vasily2K
Thank you for the application and for your patience with the grant review process. We did a thorough review of all of the applications (each application received an average of 6 reviews from members of the Grants Review Committee). However, after much consideration, we decided not to fund any of the Cohort 19 grant applications as we did not feel they aligned with critical priorities core to the development of the Stacks blockchain.
We invite you to please read this blog post we authored to help elaborate on the reasoning behind this decision and clarify the current mission of the Grants Program.
Thanks in advance, Will Stacks Foundation Grants Program Manager
APPLICANT
Type: Direct Application
Email: shilovvasya99@gmail.com
Discord: VasilyS_2K#4769
Twitter:
Stacks Forum:
GRANT BASICS
Grant Name: Tookey - security protocol
Total Budget: 25,000
Total Duration: 480
Grant Type: Open Source Dev 1st time Grantees
Grant Track: Stacks Developer Experience
Grant Goal: Create New Technology
Grant Audience: End Users (Institutional)
Specific Audience: Developers DAOs, Web3, DeFi, and Collectible platforms.
Grant Team: Aler Denisov: https://github.com/alerdenisov
Previous Grants:
Ecosystem Programs:
GRANT MISSION, IMPACT, RISKS & REFERENCE
Grant Mission: Cybersecurity is at the forefront of many Web3 CEOs' minds as the necessity to secure their businesses grows, investors' and users' assets.
Current private key administration experience is absolutely off: Management of access is the complex and unhandled issue of many Web3 projects. Automation of execution requires disclosure of private keys inside a semi-trusted environment, driving weak security. Access control on smart contracts is limited by on-chain data and brings additional complexity and execution costs
We suspect the issue is identified in three aspects: First! Proper security against compromise of the private key severely restricts projects and reveals numerous business operations unfeasible. Second! Standard approaches usually provide a low level of security. At their own risk, most projects distribute keys to high-ranking managers for sole control, which can lead to loss of funds or private key compromisation. Third! Multisig is a terrific approach to boost security, but the complexity of gathering those signatures and the algorithms for interacting with multisig keys cause challenges and limitations that most projects and users cannot tolerate.
In our opinion, three characteristics must be included in a management solution: -Allow third-party access to the wallet (partners, staff, and even servers), but explicitly limit the potential modes of engagement. -Compatible with various execution contexts and should not be firmly bound to a certain blockchain or wallet. -The solution must be non-custodial; the risk of compromise of control as a result of an unethical service provider is too terrific.
We solved the problem by meeting all three requirements, now keys can be exchanged with Tookey and are no longer secret, but remain secure and protected. By making private keys divisible, sharable, and pluggable, we reframed the concept of private key access and security, also ensures that a single key can be utilized in multiple scenarios.
Grant Impact: Success will be measured based on the number of protocol integrations by enterprises, and their feedback. In the nearest future, our team strives to reduce the overall amount of crypto thefts associated with compromised private keys, in our opinion this will be the most rewarding moment.
Grant Risks: The team encountered various challenges while working on this project, including the requirement that MVP fulfill all existing asset management and protection criteria, be simple to implement in any given protocol and be cost-effective. The technology is already there; the major problem for the Tookey team is to create and frame a new-era Web3 cyber security solution within a limited budget. By connecting more protocols, we will be able to adapt Tookey to a broader variety of demands while mastering functionality and introducing new from-the-box capabilities for enterprise clients such as DAO and escrow setup administration. Stack's finest assistance will be technological implementation guidance, so we can produce the best solution for the team while providing the most value to ecosystem patrons.
Support Link: The pitch deck materials and a video presentation of Tookey's implementation for the web3 project on the Polygon network may be found at the following URL. The Tookey code base is available at: https://github.com/tookey-io
GRANT ROADMAP & DELIVERABLES
MILESTONE 1:
Deliverable: Network integration into Tookey Signer (Signer - mobile application for generating a distributed key and generating a signature)
MILESTONE 2:
Deliverable: Creation of a library for developers that enables the use of Tookey in project management.
FINAL DELIVERABLE
Deliverable: Network integration in Tookey Signer & Developers library creation.