This is about the wallet trusting the application. If code on any page can tell the wallet to transfer funds to another address, this can be used as an attack vector presuming the attacker can persuade the user to load a page they control and then click to approve the transaction. How do we prevent this attack?
Lunie has a whitelist of page hosts. What does Metamask do? We can't easily maintain a whitelist because our apps load from arbitrary host names.
dboreham
commented
4 years ago
This is about the wallet trusting the application. If code on any page can tell the wallet to transfer funds to another address, this can be used as an attack vector presuming the attacker can persuade the user to load a page they control and then click to approve the transaction. How do we prevent this attack?
Lunie has a whitelist of page hosts. What does Metamask do? We can't easily maintain a whitelist because our apps load from arbitrary host names.
Task is to scope our trust model here.