[ANN] Paytunia Bitcoin wallet released today! - page 2.

davout

legendary

Activity: 1372

Merit: 1008

1davout

Quote from: Stephen Gornick on April 13, 2012, 12:40:45 PM

When using the website wallet and clicking Receive I do get a little box with a QR code. It tells me I need to click the QR code for it to copy the Bitcoin address to the clipboard.

I'm a select text, copy and paste kind of guy.

Couldn't it simply display the public bitcoin address as well, to serve all rather than forcing users to adopt to this fancier method?

Granted, check it out and tell me what you think about it

Quote from: Stephen Gornick on April 13, 2012, 12:40:45 PM

[Update: Not only that, couldn't clicking on the QR code (and/or the bitcoin address if you add that ) use the BIP 21 format? bitcoin:12ab34C1P7tY6e4nKYDNe4nKYWhe4nKYt
- http://en.bitcoin.it/wiki/BIP_0021 ]

Good catch! I really want to implement it properly though, with optional amount, label etc... So it won't happen right now, but definitely soon!

Stephen Gornick

legendary

Activity: 2506

Merit: 1010

When using the website wallet and clicking Receive I do get a little box with a QR code. It tells me I need to click the QR code for it to copy the Bitcoin address to the clipboard.

I'm a select text, copy and paste kind of guy.

Couldn't it simply display the public bitcoin address as well, to serve all rather than forcing users to adopt to this fancier method?

[Update: Not only that, couldn't clicking on the QR code (and/or the bitcoin address if you add that ) use the BIP 21 format? bitcoin:12ab34C1P7tY6e4nKYDNe4nKYWhe4nKYt
- http://en.bitcoin.it/wiki/BIP_0021 ]

davout

legendary

Activity: 1372

Merit: 1008

1davout

Thank you all for your great feedback!

Soon we'll be posting on our blog about the future of Paytunia and its place in the Bitcoin ecosystem.
We'll use this as an opportunity to address some of the concerns that have been expressed here.

Stay tuned!

Boussac

legendary

Activity: 1221

Merit: 1025

e-ducat.fr

Quote from: Koekiemonster on April 05, 2012, 11:54:23 AM

Requested bèta! We need a good iOS wallet!

We plan on sending the iOS invitations Tuesday.
To those of you who requested the iOS beta (through a Paytunia support ticket), thanks for your patience Wink

rjk

sr. member

Activity: 448

Merit: 250

1ngldh

Quote from: Boussac on April 08, 2012, 12:08:37 PM

@jan

Please, let people decide wether they prefer secure hosted keys or on-board mobile keys: the risk profiles of each solution are different but none can be said better than the other in absolute terms.

Most people aren't even aware of the difference, let alone the risk. Always good to have both perspectives available.

Boussac

legendary

Activity: 1221

Merit: 1025

e-ducat.fr

@jan

Please, let people decide wether they prefer secure hosted keys or on-board mobile keys: the risk profiles of each solution are different but none can be said better than the other in absolute terms.

R-

full member

Activity: 238

Merit: 100

Pasta

Hi,
Do you have an idea of when the iOS App might get approval?

Thanks
Robert

Stephen Gornick

legendary

Activity: 2506

Merit: 1010

Quote from: Jan on April 07, 2012, 09:23:32 AM

So what you are saying is that when I have a android/iphone that is reset to factory defaults and I then insert a sim card from some carrier, then the carrier can get control of my phone.

Does your phone automatically get updated?

If so, someone else has the ability to control your phone.

Jan

legendary

Activity: 1043

Merit: 1002

Quote from: ?? on ??

Quote from: Jan on April 06, 2012, 03:44:31 AM

My android device is certainly not managed by my carrier. My carrier provides access to their network but can do nothing on my phone. My carrier has no software running on my device, and the worst thing they can do is not providing access to their network. They have the same power over my device that my ISP has over my desktop computer. Nothing.
You cannot compare M-pesa with Bitcoin.

If that's the case (i.e. they may have access and you don't even realize it), then you're an exception.
Most people have a phone where the carrier has exceptionally deep access to the device.

It continues to amaze me how paranoid people are on this forum.
So what you are saying is that when I have a android/iphone that is reset to factory defaults and I then insert a sim card from some carrier, then the carrier can get control of my phone. You cannot be serious. Guys, bring out your tinfoil hats.

R-

full member

Activity: 238

Merit: 100

Pasta

Looking forward to testing this.

Grami

newbie

Activity: 39

Merit: 0

Quote from: davout on April 05, 2012, 02:28:48 PM

Quote from: Grami on April 05, 2012, 02:13:56 PM

I need iOS betta app. Can you send invite?

Please open a support ticket from your account.

I did it yesterday, but have not receive any invite.

Jan

legendary

Activity: 1043

Merit: 1002

Quote from: Stephen Gornick on April 05, 2012, 08:29:22 PM

Quote from: minimalB on April 05, 2012, 06:53:20 PM

I believe keeping keys private / locally is HUGE!

I had replied to another thread but that hasn't had any response there so I'm reposting it here as it applies to this thread as well (well, it applies to most every mobile app which can spend bitcoins):

Quote from: Stephen Gornick on March 29, 2012, 06:28:36 PM

What I am concerned with is "the Linode problem". All these mobiles are managed devices. They can be fully controlled by someone other than the owner of the device. Yes, they are managed by the carrier but possibly that carrier has people that cannot be trusted or, just as bad, has people who don't maintain secure systems themselves such as what reportedly is what happened at Linode.

The importance is thiis. An attack that defrauds M-Pesa's customers en mass means Safaricom figures out at some point that there's a problem, halts all affected systems to prevent further losses, and in the end eats some, most or all of the customer's losses. A similar attack through the managed services of the mobile network to steal bitcoins from mobiles means just that the individual mobile user alone loses out. Just like how Linode disavowed any responsibility to Slush, Bitcoinica, etc. for the tens of thousands of bitcoins lost, Safaricom would likely maintain the same position.

So, this is a fundamental question -- is the practice of storing bitcoin private keys on the mobile something that exposes it to too much risk to where it shouldn't even be considered? i.e., bitcoin apps for mobile need to be under the same model that mobile banking (like M-Pesa) uses?

My android device is certainly not managed by my carrier. My carrier provides access to their network but can do nothing on my phone. My carrier has no software running on my device, and the worst thing they can do is not providing access to their network. They have the same power over my device that my ISP has over my desktop computer. Nothing.
You cannot compare M-pesa with Bitcoin.

weex

legendary

Activity: 1102

Merit: 1014

This is a bit OT for Paytunia but to address Stephen's concern, I would take a practical approach and compare the threat to others of using a mobile device that is effectively under the control of an untrusted party. I would recommend only storing spending money on your mobile...enough to get you through a few days. This can be analogized to the amount of cash a reasonable person might like to carry with them.

Compare the stolen bitcoins problem with the importance of the email accounts we access from our mobile phones. An email account can often be used to reset passwords on 10s of services that might be of more long-term importance than the $50-100 worth of coins on a phone. Just trying to put it in perspective...

Also, I guess we should not ignore that it's much easier to turn 1000 or 100,000 phones with bitcoin into money than that many email accounts. So maybe carry a bit less and reload more often?

Stephen Gornick

legendary

Activity: 2506

Merit: 1010

Quote from: minimalB on April 05, 2012, 06:53:20 PM

I believe keeping keys private / locally is HUGE!

I had replied to another thread but that hasn't had any response there so I'm reposting it here as it applies to this thread as well (well, it applies to most every mobile app which can spend bitcoins):

Quote from: Stephen Gornick on March 29, 2012, 06:28:36 PM

What I am concerned with is "the Linode problem". All these mobiles are managed devices. They can be fully controlled by someone other than the owner of the device. Yes, they are managed by the carrier but possibly that carrier has people that cannot be trusted or, just as bad, has people who don't maintain secure systems themselves such as what reportedly is what happened at Linode.

The importance is thiis. An attack that defrauds M-Pesa's customers en mass means Safaricom figures out at some point that there's a problem, halts all affected systems to prevent further losses, and in the end eats some, most or all of the customer's losses. A similar attack through the managed services of the mobile network to steal bitcoins from mobiles means just that the individual mobile user alone loses out. Just like how Linode disavowed any responsibility to Slush, Bitcoinica, etc. for the tens of thousands of bitcoins lost, Safaricom would likely maintain the same position.

So, this is a fundamental question -- is the practice of storing bitcoin private keys on the mobile something that exposes it to too much risk to where it shouldn't even be considered? i.e., bitcoin apps for mobile need to be under the same model that mobile banking (like M-Pesa) uses?

minimalB

donator

Activity: 674

Merit: 523

Quote from: davout on April 05, 2012, 03:16:35 PM

Be my guest, name one that has an iOS version. Yep, that's what I thought

blockchain wallet is pretty neat and gives you control of your private keys
https://www.blockchain.info/wallet/iphone-app

I believe keeping keys private / locally is HUGE!

kwukduck

legendary

Activity: 1937

Merit: 1001

My coins belong on my phone, nowhere else

But nice initiative for new users.

Jan

legendary

Activity: 1043

Merit: 1002

Quote from: davout on April 05, 2012, 03:16:35 PM

Quote from: Jan on April 05, 2012, 02:51:53 PM

Beautiful design is not everything.

My bad, I forgot to mention that the code is beautiful too.

Quote from: Jan on April 05, 2012, 02:51:53 PM

Isn't this a Bitcoin bank?

Not really, we're full reserve and we don't lend out money with interests.
We do, however, keep money safe and provide services to our customers, which we think is a good thing.

Quote from: Jan on April 05, 2012, 02:51:53 PM

We should not forget what happened with Mybitcoin. What prevents Paytunia from running away with my money?

- We're nothing like mybitcoin, first of all Paytunia is beautiful like you said Cheesy

.
- Secondly it's run by a registered and liable French company, my name and the ones of my associates are pretty much public if you care to search a little bit.
- Finally it wouldn't make sense to rip a few users out of their money and pass on the opportunity to be an important player in the Bitcoin world.

Quote from: Jan on April 05, 2012, 02:51:53 PM

There are alternative mobile Bitcoin wallets out there that are just as light weight and fast, the main difference being that your private key is not stored centrally.

Be my guest, name one that has an iOS version. Yep, that's what I thought

It has been shown that you can make a light-weight and fast Bitcoin client where you do not give away your private keys.
Since you have the resources to develop clients for multiple platforms, how come you didn't choose to let your users be in control of their keys?
In doing so your customers would be a lot safer against a disgrunted employee, or a successful hacker.

evoorhees

legendary

Activity: 1008

Merit: 1023

Democracy is the original 51% attack

Quote from: Jan on April 05, 2012, 02:51:53 PM

Beautiful design is not everything.
Isn't this a Bitcoin bank? We should not forget what happened with Mybitcoin. What prevents Paytunia from running away with my money?

True, beautiful design is not everything. But it's about damn time some bitcoin services finally had it.

What prevents any company from running away with your money (bitcoin related or otherwise)? Even before launching, Paytunia and the people behind it are much more credible. Skepticism is healthy, so just don't keep tons of money somewhere you're not sure of.

evoorhees

legendary

Activity: 1008

Merit: 1023

Democracy is the original 51% attack

Quote from: ?? on ??

It says it can't be installed on my Samsung Galaxy S2 ... :\

That's weird, I'm using it on my Galaxy S2 without issue.

davout

legendary

Activity: 1372

Merit: 1008

1davout

Quote from: Jan on April 05, 2012, 02:51:53 PM

Beautiful design is not everything.

My bad, I forgot to mention that the code is beautiful too.

Quote from: Jan on April 05, 2012, 02:51:53 PM

Isn't this a Bitcoin bank?

Not really, we're full reserve and we don't lend out money with interests.
We do, however, keep money safe and provide services to our customers, which we think is a good thing.

Quote from: Jan on April 05, 2012, 02:51:53 PM

We should not forget what happened with Mybitcoin. What prevents Paytunia from running away with my money?

- We're nothing like mybitcoin, first of all Paytunia is beautiful like you said Cheesy

.
- Secondly it's run by a registered and liable French company, my name and the ones of my associates are pretty much public if you care to search a little bit.
- Finally it wouldn't make sense to rip a few users out of their money and pass on the opportunity to be an important player in the Bitcoin world.

Quote from: Jan on April 05, 2012, 02:51:53 PM

There are alternative mobile Bitcoin wallets out there that are just as light weight and fast, the main difference being that your private key is not stored centrally.

Be my guest, name one that has an iOS version. Yep, that's what I thought

Topic: [ANN] Paytunia Bitcoin wallet released today! - page 2. (Read 9348 times)