Web3Auth streamlines Web3 access by providing simple social logins, a customized wallet UI, enhanced security features, and non-custodial MPC wallet management. Web3Auth also creates a user-friendly and secure entry point for crypto-native and non-crypto users. WebAuth allows users to build wallets in seconds while keeping them secure, non-custodial, and seed phrase-free via multi-party computation (MPC) and account abstraction.

What is Web3Auth?

Web3Auth is a pluggable, embedded wallet technology that facilitates Web3 wallet integration and user onboarding. It supports OAuth-based logins on many platforms, allowing users to access Web3 applications using familiar authentication techniques in less than a minute. Users enjoy a smooth onboarding process while maintaining complete control over their non-custodial wallets, ensuring convenience and security. Web3Auth is not a wallet but a wallet architecture that can be used in any application. It creates customized authentication procedures for dApps and blockchain wallets, addressing user onboarding and key management issues.

Web3Auth uses multi-party computation (MPC) technology to handle the challenges of onboarding and key management. They replace seed phrases with straightforward social logins, allowing users to create non-custodial wallets with a single click. Two-factor wallets also allow users to recover their wallets without losing their private keys.

Web3Auth is built on a highly scalable architecture supporting millions of users. The architecture ensures global availability across many areas and consistent low-latency performance worldwide. Automatic horizontal scaling changes capacity based on demand, removing bottlenecks and assuring continuous service. Web3Auth’s distributed MPC architecture ensures security and stability, with zero downtime in three years of operation and an enterprise-grade infrastructure based on Kubernetes management for optimal speed.

Background of Web3Auth

Web3Auth, founded in 2019 and headquartered in Singapore, Central Region, Singapore, aims to simplify the user login experience for both mainstream and native Web3 users by combining OAuth logins (Google, Twitter, Discord) with existing key management solutions. Zhen Yu Yong is the co-founder and CEO of Web3Auth, has a background in finance and technology, and has worked for several notable firms. Zheu attended Singapore Management University and the University of Edinburgh, specializing in finance and computer science. He has worked as a researcher on off-chain scalability and created The Peace Bridge, a cross-chain bridge between Ethereum and Ethereum Classic. He also worked with Visa, the Ethereum Foundation, and JPMorgan Chase.

Web3Auth is funded by 23 investors. Hash CIB and Bitcoin.com are the newest investors. Web3Auth has raised financing in four stages. Their most recent funding was secured through a Series A round on January 12, 2022. Web3Auth raised $13.00 million in Series A funding on January 12, 2012, followed by a $2.00 million seed round on July 9, 2019. Notable investors in this fundraising round include Multicoin Capital, Coinbase Ventures, Binance Lab, Peak XV Partners (ex-Sequoia India), and Union Square Ventures.

Features of Web3Auth

Authentication Made Simple

Web3Auth allows developers to get their users started in seconds using familiar login techniques they now use. Users can sign in using Google, Twitter, GitHub, and other popular social accounts. Users can also log in without a password using email, SMS, authenticator apps, or passkeys. Web3Auth allows users to use their authentication while leveraging our secure wallet architecture.

Bank-grade security

Web3Auth offers enterprise-level protection for users’ digital assets with powerful MPC technology that distributes keys between numerous parties. Thanks to a distributed architecture that eliminates single points of failure and offers several backup alternatives for seamless recovery, users have complete control over their non-custodial wallets.

Built for Developers

Web3Auth is designed for developers who want to easily incorporate it into their app and interact with their existing authentication system. This feature requires no major migrations or infrastructure changes and allows for complete customization of the appearance and feel. This integration includes support for online, mobile, and gaming platforms.

Designed for Users

Web3Auth offers a simple way to access Web3 in under 60 seconds, requiring no crypto knowledge. Users have complete control over their wallets; account recovery is simple and reliable.

How Does Web3Auth Work?

Web3Auth serves as a wallet infrastructure, enhancing the flexibility and security of decentralized apps (dApps) and blockchain wallets. The Web3Auth SDK is located only on the user/application’s front-end client and manages interactions between OAuth providers and the Auth Network. The following graphic depicts the link between Web3Auth SDKs and integrating apps. It also displays the differences between the Web3Auth products, allowing for developer-friendly integration of this infrastructure.

Web3Auth’s Wallet Management Infrastructure improves security by distributing a user’s wallet across multiple key shares, preventing direct disclosure of seed phrases. These key shares establish a ‘web of trust’ that allows wallet management, like multi-factor account management. Users use OAuth logins, trusted devices, and other factors to manage their cryptographic key pairs. The private key, including our databases or participating nodes, is not stored anywhere in the Wallet Infrastructure system.

Users engage with the Web3Auth Auth Network to build a social login share, which generates keys using a 5/9 consensus algorithm. This design ensures that wallets remain non-custodial, meaning neither Web3Auth, social login providers, nor any other party with a key share may claim full ownership.

Web3Auth Products/Technologies

Web3Auth’s broad product suite includes everything from pre-onboarding to post-onboarding and authentication, allowing developers to create a streamlined end-to-end experience for their Web3 dApp/Wallet.

Plug-and-Play Embedded Wallet SDKs

Web3Auth’s Plug and Play (PnP) integration allows you to add a fully functional, secure, embedded wallet to your app with just four lines of code. Initialize the SDK, configure your settings, and you’re ready; we handle everything from authentication flows to wallet management in the background. PnP is available on all major platforms, including web, iOS, Android, React Native, Flutter, Unity, and Unreal, and offers full white-labeling options to match your brand. The result is a seamless, non-custodial wallet solution that works.

Web3Auth PnP uses a simple and safe authentication flow: When users attempt to log in, they are sent to auth.web3auth.io. The Web3Auth site manages the authentication procedure and redirects users to their preferred login provider (Google, Twitter, etc.). Following successful authentication, Web3Auth securely reconstructs the user’s private key. The user is referred back to the developer application using their application-specific key.

Features of Plug and Play (PnP)

• Instant Integration: Create a fully functional embedded wallet with just four lines of code.
• Non-Custodial Security: The enterprise-grade MPC wallet infrastructure ensures that user money is secure and self-custodial by default.
• Comprehensive Authentication: Comprehensive authentication includes support for social logins (Google, Twitter, etc.) and passwordless solutions such as SMS, email, authenticator apps, and passkeys. Extend your existing authorization system effortlessly.
• Native Account Abstraction: Integrated support for smart contract wallets and gasless transactions across chains.
• Complete Wallet Services: Our pre-built wallet UI components provide access to fiat onramps, token swaps, NFT displays, transaction histories, and other features.
• Wallet Discovery: Detect and connect to over 200 external wallets while keeping your embedded wallet as the primary option.
• WalletConnect Integration: Native WalletConnect support allows for smooth connectivity with the rest of the Web3 ecosystem.

Single Factor Authentication SDKs

Single Factor Auth (SFA) creates the most seamless Web3 onboarding experience by making it feel like Web2. Users can quickly enter your application using their existing social accounts or passwordless methods. At the same time, Web3Auth generates their wallet in the background. There is no redirection; everything happens within your application interface, making it feel natural and familiar to all Web2/Web3 users.

The authentication flow is straightforward and secure: When users connect using their preferred method (social login, email, biometrics, etc.), Web3Auth produces a wallet using Shamir’s Secret Sharing in the background. The private key is divided into shares, distributed across the Web3Auth Auth Network (via a 5/9 consensus process), and obtained from the user’s identity following authentication. The entire wallet is recreated within the application environment.

Features of Single Factor Auth SDKs

• Complete UI Control: Ability to create custom login interfaces and authentication flows that complement their brand identity.
• Direct Integration: Manage wallet infrastructure within the application with no external dependencies.
• No Redirects: With this feature, the developer can keep their users within the app; no external authentication sites are required.
• Multi-platform: Supports web, React Native, iOS, Android, and Flutter applications.
• Comprehensive Authentication: Comprehensive authentication includes support for social logins (Google, Twitter, etc.) and passwordless solutions such as SMS, email, authenticator apps, and passkeys. Extend the user’s existing authorization system effortlessly.
• Native Account Abstraction: Integrated support for smart contract wallets and gasless transactions across chains.
• Complete Wallet Services: Web3Auth pre-built wallet UI components provide access to fiat onramps, token swaps, NFT displays, transaction histories, and other features.
• WalletConnect Integration: Native WalletConnect support allows for smooth connectivity with the rest of the Web3 ecosystem.

MPC Core Kit

The Web3Auth MPC Core Kit is a strong multi-party computation (MPC)-based authentication system that uses the Threshold Signature Scheme (TSS). Unlike typical key-based authentication systems, MPC Core Kit does not recreate private keys, making it substantially more secure. The MPC Core Kit is intended for applications requiring advanced security and total control over their authentication flows. It gives the necessary tools and flexibility for developing advanced authentication systems while adhering to strict security standards.

Developers can utilize the Web3Auth MPC Core Kit to authenticate users and produce blockchain transaction signatures via distributed key sharing without reconstructing the private key. The SDK employs a 2-of-3 threshold signature system, in which key shares are allocated among:

• Auth Network Share: Auth Network Share is managed by Web3Auth’s decentralized Auth Network and accessible via OAuth providers such as Google, giving a similar authentication experience.
• Device Share: Data is securely saved on the user’s device, utilizing platform-specific security capabilities such as biometric authentication on mobile devices.
• Recovery Share: A backup share that can be kept on a secondary device, downloaded for offline storage, or created based on user input such as passwords or security questions.

Features of MPC Core Kit

• Uncompromised Security: The distributed MPC design ensures that private keys are never recreated, eliminating the chance of key compromise.
• Seamless Integration: Create end-to-end authentication flows within the application, with total UI/UX control.
• Enterprise-grade architecture: The non-custodial MPC wallet architecture, which includes automated recovery processes, provides optimum security and reliability.
• Flexible Authentication: The support for social logins, passwordless approaches, and current authentication systems enables a wide range of authentication alternatives.
• Developer-First Design: With direct integration capabilities and configurable interfaces, you can create sophisticated authentication flows consistent with your branding.

Relationship between Web3Auth SDK and Integrating dApp/Wallet

When a user logs in through a login provider such as Google, the app receives a JWT id_token. This JWT token is passed to the Web3Auth SDK’s login method. The Web3Auth SDK will then check the JWT token against the settings specified in the Web3Auth Dashboard and generate a private key in a self-custodial manner, resulting in simple onboarding for your user into the application.

Web3Auth for wallets

Web3Auth is intended to be integrated into wallets as a key management system. It provides a safe, user-specific cryptographic key provider that can be used to sign transactions and messages and perform other wallet activities.

As a wallet developer, you can concentrate on creating your unique UI and user experience. At the same time, Web3Auth handles the complexity of key generation, administration, and storage in the background. The wallet is a user-friendly interface for managing private keys and accounts, while Web3Auth powers the fundamental key infrastructure.

Web3Auth for dApps

Web3Auth allows dApps to design bespoke authentication and wallet flows, allowing them complete control over the user experience. Developers may create optimized flows according to your application’s requirements instead of depending on external wallets and sophisticated blockchain language that mislead users. Web3Auth allows developers to construct an integrated wallet from within their application.

Key Benefits

• Seamless User Experience: Familiar web2-style login routines, no blockchain expertise necessary
• Complete Brand Control: Customize the complete login experience to match your app.
• Built-in Embedded Wallet: Concentrate on app features. At the same time, we handle wallet management, which includes pre-built wallet UI, fiat on-ramps, and other wallet services.
• Multi-Chain Support: Our chain-agnostic architecture allows you to deploy your app on any blockchain.
• In-App Transactions: Allow users to engage with your app without leaving the interface.
• Flexible Integration: Select from inbuilt wallets or link to external ones.

Web3Auth Wallet Ecosystems

The Wallet Ecosystem is Web3Auth’s flagship integration for established Web3 communities, allowing users to transfer crypto assets from embedded wallets and smart accounts to other dApps in the ecosystem. This platform uses the Web3Auth framework to create wallets while allowing a set of applications to be networked and reach a more extensive user base. The Wallet Ecosystem integrates the user experience across several platforms.

SafeAuth Kit​

The SafeAuth Kit, developed with Safe, provides a disruptive solution to integrating easy onboarding via MPC on smart wallets inside an ecosystem, assuring compatibility with ERC-4337 and using interoperability principles. This solution uses Web3Auth’s MPC-powered accounts as the signer for these smart wallets, allowing for a simple onboarding and recovery process. It attempts to simplify the user experience by optimizing their contact with the blockchain and improving security and user autonomy.

Torus wallets​

EVM Torus Wallet

The Torus Wallet, Web3Auth’s in-house wallet, integrates with prominent platforms such as Opensea and 1inch to improve interoperability. The Torus Wallet, which includes features such as fiat on-ramp top-ups, wallet pre-generation, and swap functionality, intends to bring convenience and utility to the blockchain arena. This wallet demonstrates Web3Auth’s potential to streamline the user experience while retaining high levels of security and efficiency.

Solana Torus Wallet​

The Solana Torus Wallet is a modified version of the Torus Wallet designed exclusively for the Solana ecosystem. Designed to promote smooth integrations with top Solana platforms such as Magic Eden and Star Atlas, this wallet represents the Solana network’s key concepts of interoperability and ease of use.

XRPL Torus Wallet​

The XRPL Torus Wallet is a mobile-first solution designed specifically for the XRPL ecosystem, emphasizing practical token and NFT administration. This iteration of the Torus Wallet builds on the original platform’s merits while focusing on the specific requirements of the XRPL environment. It provides users with an intuitive and safe interface geared to the fast-paced world of XRPL, allowing them to conduct trades and engage with digital assets.

Web3Auth Competitors

Web3Auth is the simplest and most secure authentication solution for Web3 apps and wallets. Web3Auth delivers a familiar login experience to all users of dApps and wallets by aggregating OAuth (Google, Twitter, Discord) logins, various wallets, and existing key management solutions. Web3Auth may be integrated into an application with a few lines of code, allowing users to connect to any blockchain. Users can use web and mobile SDKs to alter the look and branding of their applications. Alternatively, entirely white label the application or website UI/UX and take control of it.

Alchemy is a blockchain infrastructure platform that provides a Web3Auth option for developers. It gives consumers a secure and trustworthy means to authenticate and interact with decentralized applications. Alchemy’s Web3Auth solution is built on OAuth 2.0, a popular authentication mechanism supporting Web3Signer. Alchemy provides a free subscription for up to 1,000 monthly active users. Apart from that, pricing is depending on a specific quote.

Magic is a developer SDK that uses an application to offer password-free Web3 onboarding (no seed phrases) and authentication via magic links (similar to Slack and Medium). Magic allows for lightning-fast, hardware-secured, passwordless login, Web3 onboarding, and access to over 20 blockchains with a few lines of code – even if users already have an authentication solution. Magic Auth may be used for basic Web2 user authentication or combined with over 20 blockchains to create a customized wallet UX for your dApp. Magic Auth offers three pricing plans: free (1000 MAUs), $0.05 for up to 5000 MAUs without unique branding, and $0.10 per MAU after 5000 users.

PicketAPI is a blockchain authentication platform that makes it simple and secure for users to authenticate to decentralized applications. PicketAPI’s Web3Auth solution is based on OpenID Connect, a popular authentication and authorization standard supporting Web3Signer. PicketAPI provides a free subscription for up to 10,000 monthly active users. Apart from that, pricing is depending on a specific quote.

Conclusion

Web3Auth transforms the concept of wallet-as-a-service architecture by providing a self-custodial solution that takes advantage of multi-party computing. Web3Auth addresses the difficulties of onboarding and key management by employing multi-party computation (MPC) technologies. They eliminate the need for seed phrases and instead feature user-friendly social logins that allow non-custodial wallets to be created with a single click. Furthermore, their two-factor wallets provide a seamless recovery process, allowing customers to restore access without jeopardizing their private keys.