Loading...
The Ethereum Foundation mentioned that 'Clear Signing' has been officially released, which can enhance user security and reduce the probability of being scammed. Simply put, Previously, it was blind signing, where users signed blindfolded and had no idea what they were signing. For example, when you sign transactions on Ethereum (such as authorization contracts, swaps, transfers), your wallet often pops up with a bunch of incomprehensible hexadecimal codes (just a string of garbled hex codes), and the vast majority of users have no way of knowing what they are. In this blind signing situation, users see a bunch of hexadecimal codes and don't know if it's actually transferring money to someone else? Or authorize a contract to take unlimited USDT from users? Or Swap exchange? Or should all malicious contracts be transferred to contract tokens? I can only sign blindfolded. What about the results? Scammers take advantage of this and create many 'fake authorizations', allowing users to accidentally transfer their money, resulting in accumulated losses of billions of dollars for the entire ecosystem. for example 1. Fake "Swap" page → Actually approved unlimited authorization; 2. "Sign to receive airdrop" → In fact, TransferFrom transfers user tokens; 3. "Connect Wallet" → Secretly Sign Malicious Transactions in the Backend Clear Signing is used to solve this problem. Transform 'incomprehensible' into 'understandable' to reduce the probability of users being deceived. The transaction content will be displayed directly to you in plain language, no longer just a bunch of code. For example, it will display to the user: Authorize 100 USDT to Uniswap contract Transferring 0.5 ETH to address 0x... (known exchange address) If it is a dangerous situation, it can also be seen that: Authorizing unlimited USDT to unknown contract 0xabc Transferring all NFT/tokens in the wallet to the unfamiliar address 0xdead thus, Users can easily understand what they are doing at a glance, whether to sign or not, and make their own decisions. At the same time, we are working on open standards (with ERC-7730 as the core) that anyone can use. In addition, to ensure the authenticity and reliability of these textual descriptions, a descriptor registry+verification mechanism (ERC-8176) has been established. At present, the lineup of participants is good: Zama, Cyfrin, Ledger, Trezor, MetaMask, WalletConnect, Fireblocks and other hardware wallets, software wallets, security teams and infrastructure work together, with Ethereum Foundation as the intermediary coordinator.