โ†‘
Table of contents

Gem Wallet Gem Wallet

Gem Wallet is a fully open source multichain mobile wallet with transparent revenue reporting. Built for iOS and Android with a focus on security and user sovereignty.

Platforms: on mobile.

Stage Progress

Stage 0

The wallet meets the minimum criteria for evaluation.

1/1 โœ…

The wallet's source code can be reviewed by the public.

1/1 โœ…
Stage 1

The wallet has made a minimal commitment to Ethereum values.

3/8 ๐ŸŸก

The wallet provides a basic level of security.

0/3 โŒ
  • Security audits โ€” The wallet has passed a security audit within the last year. โ”
  • The wallet supports hardware wallets from at least three manufacturers. โ”
  • Chain verification โ€” The wallet verifies the integrity of the L1 chain. โŒ

The wallet offers a minimal level of privacy to its users.

0/1 โŒ

The wallet does not lock the user in and lets the user remain in full control of their account.

1/2 ๐ŸŸก
  • Account portability โ€” The user can freely export their account to another wallet. โœ…
  • The wallet allows the user to use their own node when interacting with the L1 chain. โ”

The wallet's development process and internal workings are transparent to the user.

1/1 โœ…
  • Source code license โ€” The wallet is licensed under a Free and Open Source Software (FOSS) license. โœ…

The wallet is aligned with basic Ethereum ecosystem best practices for usability.

1/1 โœ…
  • Address resolution โ€” The wallet can send funds to human-readable Ethereum addresses. โœ…
  • Browser integration โ€” The wallet complies with web browser integration standards. โž–
Stage 2

The wallet has made a significant commitment to Ethereum values.

2/9 ๐ŸŸก

The wallet provides a strong level of security.

0/1 โ”
  • The wallet is part of a funded Bug Bounty program. โ”

The wallet collects no more information about its users by default than a web browser does.

0/2 โ”

The wallet does not lock the user in and lets the user remain in full control of their account.

0/2 โ”
  • Transaction inclusion โ€” The wallet can withdraw L2 funds to Ethereum L1 without relying on intermediaries. โ”
  • The wallet allows the user to use their own node when interacting with any chain. โ”

The wallet's development process and internal workings are transparent to the user.

2/2 โœ…
  • Funding โ€” The wallet's funding sources and revenue model are public and transparent. โœ…
  • Fee transparency โ€” The fees charged by the wallet are made transparent to the user at all times. โœ…

The wallet is aligned with advanced Ethereum ecosystem best practices for usability.

0/2 โŒ

Security
How secure is Gem Wallet?
๐Ÿ”’ Security๐Ÿ” Security audits [โ” UNRATED]๐Ÿšจ Scam prevention [โš ๏ธ PARTIAL] Some scam prevention features๐Ÿ™ˆ Chain verification [โŒ FAIL] No L1 chain state verification๐Ÿ” Transaction Legibility [โ” UNRATED]๐Ÿ— Hardware wallet support [โ” UNRATED]๐Ÿซ† Passkey implementation [โŒ FAIL] No passkey implementation๐Ÿ›Ÿ Account recovery [โ” UNRATED]

Attributes

Security audits
Has the wallet's source code been reviewed by security auditors?
UNRATED

  • Walletbeat's database does not have the necessary information on Gem Wallet to assess this question. Please help us by contributing your knowledge on our GitHub repository!

Why does this matter?

Wallets are high-stakes pieces of software that deal with sensitive user data and funds. To ensure that their code is secure, industry best practices involve regularly submitting the wallet's source code for audit by an independent security auditor. These companies specialize in reviewing source code with an eye for security vulnerabilities. They report their findings to the wallet's development team for consideration, pointing out both flaws and potential security improvements.

These security audits matter in order to ensure the wallet's source code is secure, and remains that way over time. Wallet development teams typically publish such audits so that wallet users can feel safer knowing that the wallet's source code was independently audited.

How is a wallet's security auditing track record evaluated?

Wallets are evaluated by their track record of published security audits.

Walletbeat examines the set of published security audits of the wallet. To qualify, a security audit must be publicly available, and must be from a security auditor that has a traceable corporate entity distinct from the wallet's own development team.

Security audits typically come with one or more security flaws found, categorized by level of severity. Definitions of severity vary across auditors, but generally anything "medium" or above is worth paying attention to.

A wallet gets a passing rating if it has been audited at least once within the last 365 days, and that all medium-or-higher severity flaws that were found across all audits (including older ones) are addressed.

Scam prevention
Does the wallet warn the user about potential scams?
PARTIAL
  • Gem Wallet warns the user about outgoing transactions to unknown addresses and transactions with potential scam contracts but not about connections to potential scam applications

    • Gem Wallet helps you stay safe when sending funds by warning you when sending funds to an address you have not sent or received funds from in the past.

      Source

      • gemwallet.com
        Gem Wallet warns users about outgoing transactions to unknown addresses.

    • Gem Wallet helps you stay safe when doing onchain transactions bychecking the contract or transaction data against a database of known scams. However, in doing so, it leaks your IP, your Ethereum address and the contract address to an external provider which can correlate them ahead of the transaction being submitted.

      Source

      • gemwallet.com
        Gem Wallet uses GoPlus and HashDit for security detection, providing malicious contract detection and transaction analysis.

    • Gem Wallet does not check URLs against known scam sites.

Why should I care?

Transactions in Ethereum are very difficult to reverse, and there is no shortage of scams. Wallets have a role to play in helping users avoid known scams ahead of the user making the transaction.

How is scam prevention evaluated?

Wallets are rated based on whether they alert the user about potential scams. This is measured along three scenarios: Does the wallet warn the user when...

  • Sending funds to an address the user has never previously sent or received funds from before
  • Interacting with a contract that is known to be a scam
  • Interacting with a contract that the user has never previously interacted with before
  • Interacting with a contract that has only recently been deployed onchain
  • Connecting to an app that is known to be a scam

For payments-focused wallets that do not support interacting with arbitrary contracts or external applications, only the payment scenario applies.

Note that wallets should only warn the user about such scenarios, not outright prevent the user from making such transactions, as preventing them entirely would limit the user's ability to have real sovereignty over their own wallet.

Wallets are also rated based on whether these warnings are implemented in a privacy-preserving manner. Specifically:

  • When sending funds, does the lookup for past interactions with that address unconditionally reveal the sender and recipient addresses to an external provider other than the wallet's default RPC provider for this chain?

    • Wallets can implement this feature in a privacy-preserving manner by maintaining a local set of known addresses.

  • When interacting with a contract, does the check whether that contract is known to be a scam reveal the user's IP address together with the contract address about to be interacted with?

    • This is a privacy leak similar to that of leaking the user's browsing history, as contract addresses are usually closely tied to the application being visited.
    • Wallets can implement this feature in a privacy-preserving manner by maintaining a local, frequently-updated cache of known-scam contract addresses.

  • When connecting to an application, does the check whether that application reveal the domain name or URL of the application being used?

    • If leaking full URLs, this is a privacy leak similar to that of leaking the user's browsing history.
    • If leaking domain names only, they must not be linkable to the user's IP address or Ethereum address.
    • Wallets can implement this feature in a privacy-preserving manner by maintaining a local, frequently-updated cache of known-scam contract URLs, or by looking up such a list based on a domain hash prefix like Safe Browsing.

What can Gem Wallet do about its scam prevention?

Gem Wallet should implement the following features:

  • Warning you when connecting to potential scam applications

Chain verification
Does the wallet verify the integrity of the chain(s) it interacts with?
FAIL

  • Gem Wallet does not verify the integrity of the Ethereum L1 blockchain when retrieving chain state or simulating transactions.

Why should I care?

"Trust but verify" is one of the foundational principles of blockchains. It refers to the ability for participants to verify that the chain data is valid when they interact with it.

Without such verification, users rely on trusted external providers to tell them what the state of the blockchain is, similar to the web2 trust model. This allows such external providers to trick wallet users into signing transactions that do not end up having the user's intended effect.

To avoid this, Ethereum was designed to be verifiable on commodity hardware. Using a light client, this verification is possible without having to download the entire blockchain.

How is chain verification evaluated?

Wallets are evaluated based on whether or not they integrate a light client for verification of Ethereum L1 state.

Note: Walletbeat currently only considers L1 chain state verification for this criterion, not L2s. This is because L2 state verification is still in its infancy. As L2 technology matures, Walletbeat will also start requiring wallets to verify L2 chain state.

What can Gem Wallet do about its chain verification?

Gem Wallet should integrate light client functionality to verify the integrity of Ethereum chain data.

Transaction Legibility
When signing a transaction, does the wallet show transaction details clearly?
UNRATED

  • Walletbeat's database does not have the necessary information on Gem Wallet to assess this question. Please help us by contributing your knowledge on our GitHub repository!

Why does this matter?

Transaction legibility is a critical security feature for wallets that allows users to verify transaction details directly on their wallet's screen/window before signing. This verification step is crucial for preventing attacks where malicious software might attempt to trick users into signing transactions with different parameters than what they intended.

Without this, users are at the mercy of the app they are interacting with sending them a bad transactions, either because they have a bug, were hacked, or are malicious. Without a signer being able to verify if their transaction is correct, user should not send such a transaction.

Full transaction legibility implementations ensure that all relevant transaction details (recipient address, amount, fees, etc.) are clearly displayed on the wallet screen, EIP-712 message hashes, and decoded calldata, allowing users to make informed decisions before authorizing transactions.

How is a wallet evaluated for clearly showing what users are signing?

Wallets are evaluated based on key aspects of transaction legibility, with different criteria for software and hardware wallets:

Calldata Decoding/Display: The wallet's ability to decode and display calldata for various transaction types, including:

  • Simple transfers
  • Token approvals
  • DeFi interactions
  • Complex nested transactions

Transaction Details Display: The wallet's ability to display essential transaction information:

  • Gas limit and/or gas price
  • Transaction nonce
  • Sender address (from)
  • Recipient address (to)
  • Chain/network identifier
  • Transaction value/amount

Software Wallet Specific Requirements: For software wallets, calldata must be displayed in multiple formats:

  • Raw hex format: Users can view the raw hexadecimal calldata
  • Formatted output: Users can view decoded, human-readable calldata
  • Copy to clipboard: Users can copy the calldata directly for verification

Hardware Wallet Specific Requirements: For hardware wallets, the signature/transaction information must be visible on the hardware wallet device itself. Any data shown on a software wallet component is ignored for hardware wallet ratings.

Hardware wallets must also provide data extraction methods to allow users to independently verify transaction data:

  • Visual display: Users can view the data on the hardware wallet screen
  • QR code: Users can scan a QR code displayed on the device to extract data
  • Hashes: Users can compare hashes displayed on the device to verify data

Rating Criteria:

For software wallets:

  • A wallet receives a passing rating if it displays calldata in all three formats (raw hex, formatted, copyable) and displays all essential transaction details.
  • A wallet receives a partial rating if it has some combination of these features, but not all at the full level.
  • A wallet receives a failing rating if it lacks calldata display capabilities or does not display essential transaction details.

For hardware wallets:

  • A wallet receives a passing rating if it supports decoding of complex nested transactions, displays all essential transaction details on the device, and provides comprehensive data extraction methods (QR codes and hashes, in addition to visual display).
  • A wallet receives a partial rating if it has some combination of these features (decoding support, transaction details display, or data extraction methods), but not all at the full level.
  • A wallet receives a failing rating if it lacks calldata decoding support, does not display essential transaction details on the device, and provides no effective data extraction methods.

Hardware wallet support
Does the wallet support connecting to hardware wallets?
UNRATED

  • Walletbeat's database does not have the necessary information on Gem Wallet to assess this question. Please help us by contributing your knowledge on our GitHub repository!

Why does this matter?

Hardware wallets are physical devices that store a user's private keys offline, providing an additional layer of security against online threats. By keeping private keys isolated from internet-connected devices, hardware wallets protect users from malware, phishing attacks, and other security vulnerabilities that could compromise their funds.

When a software wallet supports hardware wallets, users can enjoy the convenience and features of the software wallet while maintaining the security benefits of keeping their private keys offline. This combination offers the best of both worlds: a user-friendly interface with enhanced security.

How is a wallet's hardware wallet support evaluated?

Wallets are evaluated based on whether it is possible to use them in conjunction with any physically-separate hardware wallet. This means the software wallet must provide the same level of functionality as when not using a hardware wallet, and the private key must never leave the hardware wallet.

Wallets that require the use of a separate software component (e.g. WalletConnect to an external desktop application that does the actual interfacing with the hardware device) in order to use the hardware wallet get a partial rating. The need for this additional software component means the user has to do more work to get the hardware wallet working, which decreases the likelihood that users will actually do so in practice.

Passkey implementation
Does Gem Wallet use a secure and efficient passkey verification library?
FAIL
  • Gem Wallet either does not implement passkeys or does not use a recognized verification library for P256/R1 curve operations. Passkeys provide a more secure authentication method than traditional passwords, but proper implementation is crucial for security.

Why should I care?

Passkeys provide a secure and phishing-resistant way to authenticate users without relying on seed phrases. Using gas-efficient and well-audited libraries for verification is crucial both for security and cost-effectiveness.

P256 signature verification is computationally expensive on-chain, so using optimized libraries reduces transaction costs.

Some verification libraries have undergone multiple security audits while others may have fewer or no publicly available audits.

How is a wallet's passkey implementation evaluated?

Wallets are assessed based on the passkey verification library they use:

  1. Pass (Best): Using the most gas-efficient and well-audited library like:

  2. Partial: Using libraries that work but are less optimal:

  3. Fail: Not implementing passkeys or using a non-recognized library.

Wallets that don't support smart contract accounts or are hardware wallets are exempt from this rating.

What can Gem Wallet do to improve its passkey implementation?

Gem Wallet should implement passkeys using a well-audited verification library such as Smooth Crypto Lib 159K gas.

Account recovery
How easy does the wallet make it to recover your account?
UNRATED

  • Walletbeat's database does not have the necessary information on Gem Wallet to assess this question. Please help us by contributing your knowledge on our GitHub repository!

Why does this matter?

What if you forget your seed phrase?

Self-custody is difficult and complicated for most normal users, relative to typical web2 accounts which often feature easy account recovery features. Moreover, losing one's seed phrase can be a devastating and irrecoverable financial loss. Some users avoid self-custody due to this concern.

Guardian-based recovery (also known as "Social recovery") helps make self-custody safe and practical for everyday users. Properly implemented, this keeps users safer while still providing the self-sovereignty benefits of self-custody in the day-to-day.

How is account recovery evaluated?

Wallets are evaluated based on their implementation of guardian-based recovery.

To qualify, wallets must implement at least one form of guardian-based recovery. They must also ensure that whatever option the user picks (as allowed by the wallet's onboarding flow), all the following prongs are satisfied:

  • If the user loses access to their device (which can include both their wallet's software and their passkeys), can they still recover their account on a separate device?
  • If any single external provider goes out of business, can the user still recover their account?
  • If any single external provider is compromised or turns evil, can the user's account be taken over by that provider?

This attribute explicitly does not consider the scenario of the user's own self-custody key being compromised, as defenses against such scenarios are covered by a separate attribute in the Self-Sovereignty category.

Privacy
How well does Gem Wallet protect your privacy?
๐Ÿ˜Ž Privacy๐Ÿ”— Wallet address privacy [โ” UNRATED]๐Ÿ–‡ Multi-address privacy [โ” UNRATED]๐Ÿ“จ Private token transfers [โŒ FAIL] Private token transfers are not supported๐Ÿ App isolation [โ” UNRATED]

Attributes

Wallet address privacy
Is your wallet address linkable to other information about yourself?
UNRATED

  • Walletbeat's database does not have the necessary information on Gem Wallet to assess this question. Please help us by contributing your knowledge on our GitHub repository!

Why does this matter?
Your wallet address is unique and permanent, which makes it easy for applications and companies like Chainalysis to track your activity. In web-privacy terms, it is worse than cookies: wallet addresses are permanent, publicly visible, and can even be tracked across multiple devices and websites. The more personal information is linkable to your wallet address, the more effective such tracking can be. It is therefore important to use a wallet that protects your information from being linked to your wallet address.

How is wallet address privacy evaluated?

In order to qualify for a perfect rating on wallet address privacy, a wallet must not, by default, allow any external entity to link your wallet address to any personal information.

As Walletbeat only considers the wallet's default behavior, wallets may still choose to offer features that allow external providers to link wallet addresses with personal information, so long as this is done with explicit user opt-in.

To determine this, Walletbeat looks at the network requests made by wallets in their default configuration, and the contents of such requests. If a request contains the user's wallet address, we look at whether it also contains any other personal information, such as the user's name, pseudonym, email address, phone number, CEX account information, etc.

Additionally, if such a request is not proxied, then it inherently reveals the user's IP address and ties it with the user's wallet address, which is also personal information.

Multi-address privacy
Can your multiple wallet addresses be correlated with one another?
UNRATED

  • Walletbeat's database does not have the necessary information on Gem Wallet to assess this question. Please help us by contributing your knowledge on our GitHub repository!

Why does this matter?
You probably have more than one wallet address configured in your wallet, which you use for different purposes and perhaps as different identities. These wallet addresses all belong to you, but you would rather keep that fact private. It is therefore important to use a wallet that does not reveal that fact.

How is multi-address privacy evaluated?

Wallets are assessed based on whether an external provider can learn that two or more of the user's wallet addresses belong to the same user.

An external provider may learn of this correlation either through:

  • The wallet software explicitly sending this data (e.g. through analytics)
  • Requesting data about multiple wallet addresses in bulk, allowing the receiving endpoint to learn that all of these addresses belong to the same user. Similar correlations are also possible by IP and/or time-based correlation of requests that each contain one wallet address.

In order to prevent this information from being revealed, wallets can use a variety of strategies:

  • Wallets may offer the user to only have one active wallet address at a time, and only ever makes requests about the active wallet address. The user is expected to not change their active address often. The wallet should also ensure that any account-switching widget does not cause bulk/simultaneous requests about multiple addresses to the same endpoint, such as for refreshing balances. Note that this scheme, while simple to implement, is incompatible with stealth addresses. This is because stealth addresses inherently require the user to simultaneously manage a range of addresses.
  • Wallets may look up information about multiple addresses by splitting up the requests such that each request only contains one address, then sending these requests over different proxy circuits in a manner that staggers the requests over time. This ensures that the receiving endpoint cannot correlate addressed based on timing or IP address.
  • Wallets may distribute requests across multiple RPC endpoints owned by separate entities for each wallet address, preventing each entity from learning more than one wallet address.

Private token transfers
Can you send and receive tokens without revealing your transaction history to others?
FAIL

  • Gem Wallet does not support any type of private token transfers.

    This means all token transfers made using Gem Wallet are public information and are recorded forever. Therefore, Gem Wallet users should only make token transfers if they would also be comfortable with continuously publishing their bank account statement or payment app transaction history for all to see online, as their level of privacy would be similar.

As all token transfers will be recorded publicly onchain forever, Gem Wallet should only be used for transactions where privacy is not and will never be needed, such as public DAO treasury operations.

Gem Wallet should not be used for peer-to-peer transfers, and users should keep their addresses to themselves to avoid creating permanent associations between their public transactions and their personal identity.

Usage of Gem Wallet for conducting real-world transactions is especially not advisable, as it exposes the user to the risk of the merchant looking up their customer's balance and initiating a wrench attack on the user. This puts users of Gem Wallet at risk of physical and financial harm.

Why should I care?

Data posted on public blockchains like Ethereum is publicly available to everyone. This means that anyone can see your transaction history. You would not voluntarily post your bank statements or private purchase history online, yet this is what happens by default when transacting on public blockchains.

Many privacy solutions have emerged to solve this problem. However, to be actually usable by users, these solutions must be tightly integrated in wallets and easy to use. Walletbeat looks at whether wallets let users send, receive, and spend tokens privately by default.

How is token transfer privacy evaluated?

In order to get a passing rating, wallets must ensure that sending Ether or ERC-20 tokens to other addresses comes with privacy guarantees by default. In addition, they must ensure that users can receive and spend such tokens privately.

"Privately" here means that other than the wallet user, no single entity (including any external provider) can infer or reconstruct the user's transaction history.

Walletbeat currently recognizes the following privacy-preserving token transfer solutions:

What can Gem Wallet do about its token transfer privacy?

Gem Wallet should support some form of private token transfers, such as ERC-5564: Stealth Addresses, and should make this the primary way to perform token transfers. Public token transfers should either be hidden under a power-user-only menu, come with important user safety warnings, or deleted from the wallet's feature set.

App isolation
If you connect to an app, will it be able to learn your past activity from other apps by default?
UNRATED

  • Walletbeat's database does not have the necessary information on Gem Wallet to assess this question. Please help us by contributing your knowledge on our GitHub repository!

Why does this matter?

On the web, website A is not allowed to query your browsing history from website B by default. This ensures your browsing activity remains private across websites. This principle is enshrined in the HTTP protocol as the Same-Origin Policy: by default, each website has its own isolated data about a user, and may not obtain any other information without explicit consent.

In web3, address reuse allows app to correlate your usage and browsing history across other apps. While this can be a useful feature that enables easy composability, it is also an irreversible privacy problem and a regression from web2-level privacy.

For web3 to avoid perpetuating this privacy problem, users need to be able to control the amount of information each new app may learn about their past onchain history.

Maintaining per-app accounts creates complex fragmentation and UX issues which are difficult to abstract away from users. Nonetheless, address reuse creates an indelible data trail for users.

How is app isolation evaluated?

Wallets are assessed based on whether they make it easy for the user to create a distinct account for each new app they use, and whether this is the default choice.

When connecting to apps that the user previously connected to, the wallet must use the address(es) that were last used for this specific app.

Wallets that do not support connecting to apps are exempt from this attribute.

Self-sovereignty
How much control and ownership over your account does Gem Wallet give you?
๐Ÿฐ Self-sovereignty๐Ÿ  L1 provider independence [โ” UNRATED]๐Ÿงณ Account portability [โœ… PASS] Standards-compliant EOA with seed phrase๐Ÿ“ก Transaction inclusion [โ” UNRATED]๐Ÿชš Account unruggability [โ” UNRATED]

Attributes

L1 provider independence
Can you use the wallet without relying on its default provider for interacting with the L1 chain?
UNRATED

  • Walletbeat's database does not have the necessary information on Gem Wallet to assess this question. Please help us by contributing your knowledge on our GitHub repository!

Why does this matter?

Ethereum's design goes to painstaking lengths to ensure that users can run an Ethereum L1 node on commodity consumer-grade hardware and residential Internet connections, and use it for interacting with L1.

Running your own node gives you several important benefits:

  • Privacy: Because the wallet can work directly on your own hardware with no outside dependencies, the wallet can query chain data without revealing private details (wallet address, IP address, etc.) to an external RPC provider.
  • Integrity: Relying on an external RPC provider means that this provider may return incorrect data about the state of the chain, tricking you into signing a transaction that ends up having a different effect than intended. Your own L1 node will verify the integrity of the chain, so such attacks cannot occur when using a self-hosted node.
  • Censorship resistance: Because an L1 node may broadcast transactions into a shared mempool directly to other nodes in the network, your transactions are not censorable by an external RPC provider that would otherwise act as an intermediary.
  • No downtime: Because the L1 node is running on your own hardware, you are not at risk of losing funds or opportunities due to downtime from an external RPC provider.

However, these advantages only matter if wallet users can actually take advantage of them. Thus, wallets must allow users to use a self-hosted node for these benefits to be realized in practice, and must not critically depend on external services to perform basic L1 interactions such as balance lookups and sending tokens.

How is L1 provider independence evaluated?

In order to qualify for this attribute, wallets must:

  • Allow the user to configure the L1 RPC endpoint to a self-hosted node before any request is made to that endpoint.
  • Support basic functions (account creation/import, balance lookups, token transfers) using nothing but the self-hosted node (no external services, no non-Ethereum-API calls), and whether

Account portability
Are you locked into this wallet? Or can you permissionlessly import your Ethereum account into another wallet?
PASS

  • Gem Wallet generates EOA keys in a standards-compliant way:

    • BIP-39 for deriving a binary seed from a seed phrase.
    • BIP-32 for deterministic hierarchical key derivation from the binary seed.
    • BIP-44 as a standard when deriving hierarchical private keys.

    In addition, seed phrases are exportable so that they can be imported into other wallets. This ensures your account is portable and avoids lock-in.

Why does this matter?

Question: What if a wallet's dev team walked away or turned evil one day?

One of Ethereum's core promises as an Internet upgrade is to avoid the possibility for user lock-in of web2. This is achieved by ensuring accounts are permissionlessly portable across wallets.

Ensuring that accounts remain portable avoids wallets becoming lock-in vectors in web3. Permissionless account portability also keeps the wallet ecosystem healthy through open competition.

How is account portability evaluated?

Wallets are rated based on whether accounts created within can be exported out of the wallet and imported into another, without requiring permission from the exporter wallet provider.

For EOA wallets based on private keys, this is relatively straightforward to determine. However, for more complex situations such as multisig wallets, Walletbeat considers whether such wallets can be made fully self-custodial, and whether assets and tokens can be permissionlessly transferred out of the wallet.

Specifically:

  • EOA wallets are rated based on the exportability of their private key material, and on whether such private key material is derived using the following standards:

    • BIP-39 for deriving a binary seed from a seed phrase.
    • BIP-32 for deterministic hierarchical key derivation from the binary seed.
    • BIP-44 as a standard when deriving hierarchical private keys.

  • MPC wallets are rated based on whether the user has a sufficient shares of the underlying key to have full control over the wallet in a self-custodial manner. Additionally, there must be a way for the user to generate a transaction (Walletbeat uses a token transfer out of the wallet as the litmus transaction for this) without reliance on an external API or proprietary application. The combination of these factors ensures that the wallet remains self-custodial and that the account cannot be frozen in-place due to an uncooperative external provider.

  • ERC-4337: Account Abstraction for smart contract wallets (smart contract wallets) are rated based on the level of control the user has over their account according to the smart contract's control logic that the wallet uses. The user must be in control of who controls their account by default, and be able to permissionlessly create asset transfer transactions.
    Specifically, the rating considers:

    • Whether the user has the ability to change the cryptographic keys used to control the account in general, in a manner that does not involve relying on an external provider or proprietary software.
    • Whether the smart contract wallet's default configuration starts out with the user having self-custody of their account, for example by having a majority of the key shares in self-custody in a multisig wallet.
    • Whether the generation of a token transfer transaction requires relying on an external provider or proprietary software, even if the user has self-custody of all requisite cryptographic keys to sign such a transaction.

  • EIP-7702: Account Abstraction via smart contract authority delegation are not yet rated on account portability and will show up as "Unrated".

If a wallet supports multiple types of accounts, the rating for the account type it supports that is least portable takes precedence. This makes the final rating act as an effective "floor" across the account types the wallet supports.

If a wallet supports multiple types of accounts and all of them have the same level of portability, the account type that takes precedence is the one that the wallet offers the user to create by default.

Transaction inclusion
Can the wallet withdraw L2 funds to Ethereum L1 without relying on intermediaries?
UNRATED

  • Walletbeat's database does not have the necessary information on Gem Wallet to assess this question. Please help us by contributing your knowledge on our GitHub repository!

Why does this matter?

One of the core tenets of Ethereum is censorship resistance. This means that users must be able to reliably get transactions included onchain, without the ability for intermediaries to prevent this from happening.

This property is critical to ensure that all Ethereum participants are provided equal-opportunity, unfettered access to Ethereum, and to ensure that Ethereum is resilient to attackers that would want to prevent others from using Ethereum on such footing.

In order to uphold this property on Ethereum L2s, users must be able to force transactions to be included on L2 chains as well. Most L2s implement such functionality by allowing L2 transactions to be submitted on the L1, and enforcing that their sequencing logic must respect such L1 force-inclusion requests by including them on the L2 chain, typically within some fixed duration.

By verifying that the wallet supports L2 force-withdrawal transactions, this attribute verifies censorship resistance at both levels: L1 and L2.

How is transaction inclusion evaluated?

Wallets are rated based on whether users need to trust any intermediary in order to withdraw their funds from L2s.

This fundamentally requires two major features:

  • A wallet must support the creation of an L1 transaction which forces the L2 to withdraw user funds back to the L1. This message is typically posted as an L1 transaction which forces the L2 sequencing process to take it into account.
  • Since L2 force-withdrawal transactions require an L1 transaction, the wallet must also be able to get this transaction included without relying on an external service to broadcast this transaction for block inclusion. Therefore, the wallet must also support either participating in Ethereum's L1 gossip network, or (for environments that do not support this such as browser extension wallets) support broadcasting L1 transactions through a user's self-hosted Ethereum node.

With these two features in place, users can withdraw their L2 funds without trusting intermediaries.

Walletbeat currently only considers OP Stack chains and Arbitrum One for this evaluation, but more L2 chains may be added as support for force-withdrawal transaction becomes feasible for them.

Account unruggability
Can the wallet developer take over your account without your consent?
UNRATED

  • Walletbeat's database does not have the necessary information on Gem Wallet to assess this question. Please help us by contributing your knowledge on our GitHub repository!

Why does this matter?

The promise of crypto is to make your accounts and your funds truly yours. This is what is most commonly referred to when discussing "self-sovereignty".

The underlying property that makes an account truly yours is the inability for anyone other than yourself to act on your behalf or to take over your account without prior consent.

How is account unruggability evaluated?

Wallets are evaluated based on whether there is any mechanism by which any entity other than the user may sign or approve transactions on behalf of the user's account, or can transfer ownership of the account away from the user. This includes features like seed phrase backups where the wallet developer gets to learn the user's seed phrase, or other account recovery features that let the wallet developer unilaterally recover the user's account.

Fully-custodial wallets (i.e. wallets where the signing key material resides entirely on external services) are also not self-sovereign (aka ruggable) by definition.

Features that allow the user to pre-approve certain types of transactions ahead of time are treated as maintaining self-sovereignty, so long as the user controls their limits explicitly: time-bound, amount-bound, destination/purpose-bound, etc.

Transparency
How transparent and sustainable is Gem Wallet's development model?
๐Ÿ•ต Transparency๐Ÿ’– Source code license [โœ… PASS] Open source (GPL 3.0)๐Ÿ” Source visibility [โœ… PASS] Source code publicly available๐Ÿ’ฐ Funding [โœ… PASS] Transparent funding (Multiple sources)๐Ÿ’ธ Fee transparency [โœ… PASS] Comprehensive fee breakdown

Attributes

Source code license
Does the user have the ability to avoid lock-in and freely audit, modify, and redistribute the wallet's source code?
PASS

  • Gem Wallet is licensed under the GPL 3.0 license, a Free & Open-Source (FOSS) license.

Why does this matter?

Free & Open Source Software (FOSS) licensing allows a software project's source code to be freely used, modified and distributed. This allows better collaboration, more transparency into the software development practices that go into the project, and allows security researchers to more easily identify and report security vulnerabilities. In short, it turns software projects into public goods.

How is source code license evaluated?

Wallets are assessed based whether the license of their source code meets the Open Source Initiative's definition of open source.

Source visibility
Is the source code for the wallet visible to the public?
PASS

  • The source code for Gem Wallet is publicly viewable.

This allows its source code to be examined for security flaws and for Walletbeat to review how the wallet works.

Why does this matter?
When using a wallet, users are entrusting it to preserve their funds safely. This requires a high level of trust in the wallet's source code and in the wallet's development team. By making the wallet's source code visible to the public, its source code can be more easily inspected for security vulnerabilities and for potential malicious code. This improves the wallet's security and trustworthiness.

How is source visibility evaluated?
Wallets are assessed based on whether or not their source code is publicly visible, irrespective of the license of the source code.

Funding
How is the wallet's development team funded?
PASS

  • Gem Wallet is funded by self-funding, transparent fees.

    Source

    • dune.com
      Gem Wallet publishes transparent revenue data on Dune Analytics, showing all revenue sources and breakdowns.

Why does this matter?
Wallets are complex, high-stakes pieces of software. They must be maintained, regularly audited, and follow the continuous improvements in the ecosystem. This requires a reliable, transparent source of funding.

How is funding evaluated?

Wallets are assessed based on how sustainable, transparent, and user-aligned their funding mechanisms are.

Wallets are typically funded by one or more of the following methods:

  • Self-funding from developers
  • Seeking donations from users
  • Seeking grants from foundations
  • Venture capital funding
  • Charging fees on convenience functions (e.g. swapping and bridging tokens)
  • Governance tokens
  • Commemorative NFT sales

Walletbeat looks at each funding source of funding and verifies whether it is done transparently and in a user-aligned manner. In this context, "user alignment" refers to whether a source of funding grows as a function of the user's own goals, rather than being uncorrelated or anti-correlated. For example, funding acquired through hidden swap fees or governance token sales with undisclosed insider token allocations are not user-aligned. Funding acquired through transparent swap fees, user donations, or ecosystem grants are user-aligned.

In order to pass this criterion, wallets must have at least one source of funding, and all of their sources of funding must be transparent to users. Additionally, if the wallet is funded from multiple sources and some of these sources are not user-aligned, the public must be able to determine the proportion of each such funding source to the wallet's overall revenue. Depending on the funding mechanism, this can be done through publication of a revenue breakdown page, public regulatory filings, or token allocation and vesting disclosures.

Fee transparency
Does the wallet clearly display all transaction fees and their purpose?
PASS

  • Gem Wallet shows a complete breakdown of all transaction fees by default.

Why does this matter?

Fee transparency is crucial for users to understand the full cost of their transactions. Without clear fee information, users may be surprised by high transaction costs or hidden fees charged by the wallet.

Transparent fee disclosure helps users make informed decisions about when to transact and which wallet to use. It also builds trust between users and wallet providers by ensuring that all costs are clearly communicated upfront.

How is a wallet's fee transparency evaluated?

Wallets are evaluated based on how transparently they display transaction fees and transaction purposes to users.

A wallet receives a passing rating if it provides comprehensive fee information, including detailed breakdowns of network fees, clear disclosure of any additional wallet fees. Fees may be aggregated down to one number, but a breakdown must be available to the user within a single click.

A wallet receives a partial rating if it provides an aggregate fee but does not let the user get a detailed breakdown.

A wallet fails this attribute if it provides minimal or no fee information before transaction confirmation.

Various transaction types are tested: Ether and ERC-20 transfers on L1, built-in swaps or bridging transactions, DeFi transactions, private transactions if supported. If a wallet displays fees differently depending on the type of transaction, the transaction type with the least clear display level is taken into consideration for the purpose of this attribute.

Ecosystem
How well does Gem Wallet align with the ecosystem?
๐ŸŒณ Ecosystem๐Ÿ’ผ Account Abstraction [โŒ FAIL] EOA only๐Ÿ“‡ Address resolution [โœ… PASS] Supports ENS addresses๐ŸŒ‰ Chain abstraction [โ” UNRATED]๐Ÿงบ Transaction batching [โ” UNRATED]๐Ÿงฉ Hardware wallet interoperability [โ” UNRATED]

Attributes

Account Abstraction
Is the wallet Account Abstraction ready?
FAIL

  • Gem Wallet supports EOAs only, with no Account Abstraction support.

Users cannot use Account Abstraction features. However, accounts created in this wallet can be imported in other wallets that do support EIP-7702: Account Abstraction via smart contract authority delegation.

Why should I care?

User experience on Ethereum has historically suffered from the limitations of Externally-Owned Accounts (EOAs), which is the type of account most Ethereum users use today. By contrast, smart wallet accounts offer many UX and security improvements, such as the ability to:

  • Batch multiple transactions, removing the need for separate "token approval" transactions before every other token operation.
  • Pay gas fees in other tokens than Ether, or support sponsored transaction fees (with ERC-4337: Account Abstraction for smart contract wallets)
  • Delegate some operation to trusted provider, such as allowing onchain games to withdraw small amounts of tokens without signing pop-ups for each and every transaction.
  • Change transaction authorization logic, enabling the use of Passkeys (and cellphone authentication methods) for signing transactions.
  • Update the set of keys used to control the wallet, enabling the switch to quantum-resistant encryption algorithms in the future.
  • Define account recovery rules, reducing the risk of losing access to your account when losing a private key or a device.

However, smart wallet accounts have historically been an all-or-nothing, wallet-specific proposition for users. There was no transition path to such wallets.

As part of the Pectra upgrade, EIP-7702: Account Abstraction via smart contract authority delegation fixes this problem. It create a clean path for existing EOAs to obtain all the UX benefits of smart wallet accounts and account abstraction, without the need for users to switch to a different account address. This represents a large User Experience upgrade for all Ethereum EOA users.

How is account abstraction support evaluated?

Wallets are rated based on whether they make use of EIP-7702: Account Abstraction via smart contract authority delegation transactions (for EOA or MPC wallets), or if they support ERC-4337: Account Abstraction for smart contract wallets transactions (for smart contract wallets).

The user experience benefits of these enhancements are still in-flight and are expected to develop as these standards mature and are built on top of. As such, Walletbeat does not currently consider which improvements wallets provide for their users as a result of these new capabilities. However, it is expected that a future version of this attribute would look at such improvements. For example: to verify that users are able to update the signing authority of their wallets to a quantum-safe signature scheme.

What can Gem Wallet do about its account abstraction support?

Gem Wallet should implement support for Account Abstraction features, such as EIP-7702 Account Abstraction via smart contract authority delegation.

Address resolution
Can you send funds to human-readable Ethereum addresses?
PASS

  • Gem Wallet supports sending funds to human-readable ENS addresses such as username.eth.

    It does so using onchain data sources using the same code as when interacting with the chain in general, inheriting its privacy and verifiability properties.

Why does this matter?

Ethereum addresses are hexadecimal strings (0x...) which are unreadable to humans. Phishing scams and exploits have used this to trick users into sending funds to invalid addresses, for example by generating lookalike-addresses and tricking users into copy/pasting them without noticing the difference.

Additionally, Ethereum's transition to layer 2 chains has changed user needs when sending funds. The hexadecimal address isn't sufficient anymore; the user needs to ensure that they are sending funds to the correct hexadecimal address on the correct chain, increasing the potential for mistakenly sending funds to the wrong place or the wrong chain.

Address naming registries like ENS partially solve this problem by allowing more human-readable names like username.eth to be automatically turned into the hexadecimal address. This is easier to share and to accurately transfer by humans. Additionally, some address format standards improve upon this further by including the destination chain information as part of the address itself. Such standards include:

Wallets that support either of these standards are able to automatically determine the destination address and chain from a human-readable string, and can bridge funds across chains as appropriate. This improves the user experience of Ethereum and its layer 2 ecosystem while reducing the potential for mistakes when sending funds.

How is address resolution evaluated?

Wallets are rated based on the types of addresses they support sending funds to.

Specifically, Walletbeat recognizes the following destination address formats. Wallets must be able to resolve at least one of them to fulfill this attribute:

Additionally, the mechanism used to perform the resolution must either:

  • Be done using onchain data and reusing the wallet's common chain interaction client, inheriting its verifiability (e.g. via light client) and privacy properties.
  • OR be done using an offchain external provider in such a way that the address returned by the external provider is verifiable, and without revealing the user's IP address to the provider. This ensures that:
    • The wallet cannot be tricked into sending funds to an attacker compromising the offchain provider's responses
    • The provider may not progressively learn the user's contacts list by associating its successive resolution queries by IP over time.

For addresses that require an offchain lookup (e.g. ENS names using offchain resolvers with CCIP-Read), only the portion of the work necessary to arrive at the conclusion that an offchain lookup is necessary is considered. In other words, wallets must verify that the CCIP-Read OffchainLookup details are as claimed and then perform the CCIP-Read themselves, rather than trust an offchain provider to do so on their behalf.

What can Gem Wallet do about its address resolution?

Gem Wallet may want to add support for sending funds to chain-specific human-readable addresses, as specified by either:

Chain abstraction
Does the wallet smooth out the complexities of dealing with multiple chains?
UNRATED

  • Walletbeat's database does not have the necessary information on Gem Wallet to assess this question. Please help us by contributing your knowledge on our GitHub repository!

Why does this matter?

Ethereum activity is not limited to the main L1 chain; a lot of activity has moved onto rollups and Layer 2 chains. This has allowed Ethereum to scale beyond what its L1 chain can handle, but has also introduced complexity and fragmentation for users and wallets to deal with. They must now deal with token balances fragmented across multiple chains.

To address the UX impact of this complexity, wallets should provide features to abstract away these issues, while remaining transparent to the user when cross-chain bridging risks or fees are involved.

How is chain abstraction evaluated?

Wallets are rated based on how much of the complexity involved in dealing with multiple chains is abstracted away from users, while keeping risks and fees transparent.

To get a passing rating, wallets must be cross-chain aware in how they display account value and individual token balances:

  • When displaying the user account's total value, this value should sum up the user's valuations across all chains the wallet supports by default.
  • When displaying a specific token's balance, the balance should reflect the user's total balance for this token across all wallet-supported chains (and on which the token exists). For rating purposes, Walletbeat looks specifically at Ether and USDT balances.

In addition, wallets must make it easy for users to move their assets across chains when needed. To get a passing rating, wallets must provide a built-in bridging feature.

  • This bridging feature must explain the risks involved in bridging assets across chains. Our friends at L2BEAT do a fantastic job documenting this, but wallet developers also have a duty to explain these risks to their users.
  • For bridge operations where the net fee is larger than 1bps, the wallet must display the fee breakdown by default.
  • When the user attempts to send tokens to an address on a chain where the user's balance is insufficient, but for which they have sufficient tokens on another chain, the wallet should automatically propose to bridge them.

Transaction batching
Does the wallet support bundling multiple operations as a single transaction?
UNRATED

  • Walletbeat's database does not have the necessary information on Gem Wallet to assess this question. Please help us by contributing your knowledge on our GitHub repository!

Why does this matter?

Transaction batching is one of the longstanding features without which Ethereum user experience (UX) has suffered. One of the most common pain points for DeFi, for example, has been the need to perform separate "token approval" transactions, followed by a separate transaction to actually execute the user's original intent.

How is transaction batching evaluated?

Smart account types such as ERC-4337: Account Abstraction for smart contract wallets and EIP-7702: Account Abstraction via smart contract authority delegation unlock the ability to perform multiple operations as a single transaction. This is exposed to applications through EIP-5792 Wallet Call API.

To qualify for a passing rating, the wallet must:

  • Support at least one type of smart account.
  • Implement EIP-5792 Wallet Call API.
  • Support atomic transaction bundles, as per the atomic capability declared in wallet_getCapabilities.

Hardware wallet interoperability
Does the wallet support directly connecting to hardware wallets from a plurality of manufacturers?
UNRATED

  • Walletbeat's database does not have the necessary information on Gem Wallet to assess this question. Please help us by contributing your knowledge on our GitHub repository!

Why does this matter?

Hardware wallets are physical devices that store a user's private keys offline, providing an additional layer of security against online threats. By keeping private keys isolated from internet-connected devices, hardware wallets protect users from malware, phishing attacks, and other security vulnerabilities that could compromise their funds.

Supporting multiple hardware wallet manufacturers preserves a healthy, open, competitive, interoperable market for hardware wallets. It also increases the total addressable market of users for the software wallet, as users that already own a specific hardware wallets will want to use a software wallet that supports it.

How is a wallet's hardware wallet support evaluated?

Wallets are evaluated based on whether they directly integrate with hardware wallets from a plurality of major hardware wallet manufacturers.

A wallet receives a passing rating if it supports hardware wallets from at least 3 major hardware wallet manufacturers:

  • Ledger
  • Trezor
  • Keystone
  • GridPlus
  • imKey

Hardware wallets accessible only through WalletConnect are not counted, as they require relying on WalletConnect and external software beyond the wallet itself in order to function.

A wallet receives a partial rating if it supports only two such hardware wallets manufacturers (without relying on WalletConnect or external software).

A wallet fails this attribute if it only directly supports hardware wallets from a single manufacturer.

Wallets that do not directly support hardware wallets at all are exempt, as this check is only about hardware wallet interoperability. General direct hardware wallet support is also part of Walletbeat's security criteria as a separate attribute.