Account Security
We propose to integrate multiple authentication methods, including Google Authenticator to the account login process. Without compromising the privacy of players or leaving them susceptible to social engineering attacks, players will be able to scan a QR Code on their Google Authenticator app, and any subsequent logins will require a one-time passcode from the app.
Initially, players are able to interact with cloning facilities and the marketplace using MetaMask on Binance Smart Chain. To play the game without extra fees, players will need to sign up for an account in Monsta Infinite servers. The servers then handles the authentication process with a 2FA option.
Two-Factor Authentication (2FA)
Proposed Double Authentication Solution
Using the cryptographic signatures on a multisignature wallet, consensus from both the client and server side are needed to approve a transaction. The server acts as a middle man to verify the validity of 2FA authentication, and safekeep your game assets applicable within the sidechain. This way, in the event where either side has been compromised by a third party, the account assets stays safe.
In case of any potential server issues, users will be asked to keep a backup seed phrase of not only their wallet key but also for their 2FA server keys, to ensure that they can always access their assets. Further evaluation will be carried out to ensure the security features will strike a balance between account security, ownership and accessibility.
Last modified 1yr ago