TLDR
A Dfns managed key can now be used across different blockchains, as long as the key scheme and curve are compatible with the target chain. The primary use case is using the same key for the Ethereum ecosystem to have the same wallet address across L1 and all the L2 chains. But it doesn’t stop there. You can also use the same ECDSA key for Bitcoin and TRON as well.What’s New
Keys API
Existing wallets are not impacted. The Wallets API will remain mostly the same except the following endpoints, delegate, import, export and generate signature, are deprecated and migrated to equivalent endpoints in the new Keys API. Creating a new wallet automatically creates a signing key in the Dfns MPC cluster. This has always been the behavior except previously the details were hidden. Now the signing key linked to wallets are exposed assigningKey.id.
Reuse a Key for Multichain
Instead of creating a new signing key when creating a wallet, if you want to create additional wallets with an existing signing key, you can pass the key id in the request body,Deprecated Pseudo Networks
The concept of pseudo networks,KeyECDSA and KeyEdDSA networks, was introduced as a way to use a raw signing key with the Wallets API. Now that Keys API is first class, this old workaround is no longer necessary. You should phase out the usage and migrate to key’s generate signature.
Enhanced Generate Signature
The new generate signature endpoint with keys is nearly identical to the previous version for wallets, except it takes in one additional fieldblockchainKind in some situations. The reason is that without the wallet context, it can’t always know how to interpret the data format. For example, to use a key to sign an Ethereum transaction, you will provide a hint by setting the blockchainKind to Evm.
blockchainKind to Solana.
One major enhancement is you can now sign complex formats with raw key signing. Before when you use a pseudo-network, the old equivalent of raw key signing, the only supported format is Hash. Now by declaring which blockchain you want to be compatible with, you can sign specific data formats with a raw key. For example, if you want to sign an EIP-712 typed message for a private blockchain with just a signing key, you can use
Changes to Wallets Permissions
The following new permission operations are added with the Keys API, some replaced the old wallets operations.| Name | Description | Note |
|---|---|---|
Keys:Create | Required for creating a new key or creating a new wallet with a new signing key. | Before you only need Wallets:Create when creating a new wallet, key creation is implicit. Now you will also need Keys:Create explicitly. |
Keys:Reuse | Required for creating a wallet with an existing signing key. | |
Keys:Delegate | Required for delegating a key to an end user. | Wallets:Delegate is deprecated. |
Keys:Import | Required for importing a key. | Wallets:Import is deprecated. |
Keys:Export | Required for exporting a key. | Wallets:Export is deprecated. |
Keys:Signatures:Create | Required for making a key generate signature request. | Wallets:GenerateSignature is deprecated. |
Keys:Signatures:Read | Required for reading signature requests. | Wallets:ReadSignature is deprecated. |
| Name | Replaced |
|---|---|
Wallets:Transfers:Create | Wallets:TransferAsset |
Wallets:Transfers:Read | Wallets:ReadTransfer |
Wallets:Transactions:Create | Wallets:BroadcastTransaction |
Wallets:Transactions:Read | Wallets:ReadTransaction |