wallet + security

your wallet is your identity, your bank account, and your login — all in one.

$ praxis wallet

creation:

generate mnemonic ....................... BIP-39

encrypt private key ................. AES-256-GCM

store in browser ..................... IndexedDB

backup to server ..................... encrypted

recovery:

enter recovery phrase ................ 12 words

import wallet ........................ restored

account ready ........................ ✓

what is a wallet?

a cryptographic key pair that lives in your browser. it proves who you are without a username or email stored on a server. your wallet signs every action — following someone, posting, funding a project. it also holds your funds and credentials.

the embedded wallet

during sign-up, praxis generates a wallet in your browser using the BIP-39 standard (the same standard used by hardware wallets). this wallet is:

encrypted — your private key is locked with AES-256-GCM encryption derived from your password. it never leaves your browser unencrypted.
backed up — an encrypted copy is stored on the server so you can sign in from other devices. the server cannot decrypt it.
portable — export your recovery phrase and import it into any Ethereum wallet (MetaMask, Rainbow, etc.).

recovery phrase

during setup you download a 12-word recovery phrase. this is the master key to your account. with it you can:

restore your wallet if you forget your password
import your account into any standard Ethereum wallet
recover your identity, funds, and credentials

if you lose both your password and your recovery phrase, your account is gone forever. praxis cannot recover it. store the phrase offline.

cross-device sign-in

your encrypted wallet syncs across all *.ourpraxis.network subdomains and your custom domain automatically. a secure cookie handles cross-domain auth. sign in once, stay signed in everywhere.

biometric verification

if your device supports it (Touch ID, Face ID, fingerprint), enable biometric confirmation for transactions. purchases, funding, and publishing will require biometric approval. falls back to password confirmation on unsupported devices. enable in settings.

portability

your wallet is yours. in settings you can:

view your public Ethereum address
re-download your 12-word recovery phrase
export your raw private key

import your recovery phrase or private key into any standard wallet — MetaMask, Rabby, Rainbow, or any BIP-39 compatible app. your credentials and collection travel with your keys.

security summary

private key encrypted with AES-256-GCM, never transmitted unencrypted
server stores only the encrypted blob
recovery phrase generated client-side (BIP-39)
cross-domain sign-in via encrypted cookie
optional biometric gate on all transactions
wallet linking via cryptographic signature (no trust needed)