https://apds.ircam.fr/index.php?action=history&feed=atom&title=Utilisateur%3ALeonHwang539047Utilisateur:LeonHwang539047 - Historique des versions2026-05-08T19:06:48ZHistorique des versions pour cette page sur le wikiMediaWiki 1.30.0https://apds.ircam.fr/index.php?title=Utilisateur:LeonHwang539047&diff=4803&oldid=prevLeonHwang539047 : Page créée avec « <br><br><br>img width: 750px; iframe.movie width: 750px; height: 450px; <br>Onekey extension wallet setup and feature guide<br><br><br><br>Onekey extension wallet setup... »2026-05-08T16:12:47Z<p>Page créée avec « <br><br><br>img width: 750px; iframe.movie width: 750px; height: 450px; <br>Onekey extension wallet setup and feature guide<br><br><br><br>Onekey extension wallet setup... »</p>
<p><b>Nouvelle page</b></p><div><br><br><br>img width: 750px; iframe.movie width: 750px; height: 450px; <br>Onekey extension wallet setup and feature guide<br><br><br><br>Onekey extension wallet setup and feature guide<br><br>If you're considering a browser-based crypto management tool, prioritize Rabby or MetaMask over lesser-known alternatives. Rabby offers native multi-chain support with automatic network detection, erasing the need for manual RPC configuration. MetaMask provides the widest dApp compatibility across Ethereum and layer-2 networks. Both have undergone extensive security audits by third parties like Least Authority and Trail of Bits. For hardware device pairing, connect your Ledger or Trezor directly via USB, then link it to Rabby's "Hardware Wallet" tab–this avoids storing private keys in your browser's local storage entirely.<br><br><br>The process for initializing a new container on Rabby differs from Chrome's native password manager. After download, select "Create a new vault" and write down the 24-word seed phrase on physical paper only; storing it in cloud services or screenshots defeats its purpose. For enhanced safety, use a steel backup plate like Cryptosteel or Billfodl to protect against fire and water damage. During the passphrase step, avoid common personal information–Rabby's implementation accepts up to 100 characters, but a 20-character random string with symbols is sufficient against brute-force decryption attacks.<br><br><br>Multi-signature support in Rabby requires an additional contract deployment. Navigate to the "Toolkits" section, deploy a Gnosis Safe contract on Ethereum mainnet (fees vary from $15 to $80 depending on gas), and add signer addresses. This feature is absent in standard Chrome-based containers; you would need a separate interaction with Safe's web interface. For token management, Rabby automatically aggregates balances from all chains into a single view, showing NFTs categorized by collection name and rarity rank directly in the "Assets" panel. Approve tokens only for the specific amount needed–Rabby displays a "Revoke" button under "Approvals" that lets you cancel permissions for any contract without creating a separate transaction.<br><br>Onekey Extension Wallet Setup and Feature Guide<br><br>First, install the browser plugin directly from the Chrome Web Store or Firefox Add-ons page. Verify the publisher is "OneKey" with a verified checkmark to avoid counterfeit copies. Do not download from third-party sites.<br><br><br>After installation, click the plugin icon and select "Create a new wallet." You will be given a 12-word recovery phrase. Write this phrase on paper only–never type it into a digital device or take a screenshot. Store the paper in a fireproof safe. The software will then ask you to confirm three random words from the phrase to prove you recorded it.<br><br><br>Set a strong password (minimum 12 characters, mix of uppercase, lowercase, numbers, and symbols).<br>Enable biometric authentication on your device for faster daily access.<br>Backup the encrypted vault file to a USB drive kept offline.<br><br><br>The multi-chain interface supports Bitcoin, Ethereum, Solana, and 30+ other networks out of the box. To add a custom network, open Settings → Networks → Add Custom, then paste the RPC URL, chain ID, and symbol. For example, for Arbitrum One, use https://arb1.arbitrum.io/rpc, chain ID 42161, and symbol ETH.<br><br><br>Hardware device pairing: Connect your Ledger or Trezor via USB. The plugin detects the device automatically. Sign transactions directly from the hardware, never exposing your private keys to the internet.<br>Token management: Click "Import Tokens" to add any ERC-20, BEP-20, or SPL token by contract address. The tool auto-fetches the token name, decimals, and logo from public registries.<br>Gas fee control: In the send transaction window, toggle "Advanced" to manually set gas limit and priority fee. For Ethereum, a priority fee (tip) of 1-2 gwei is standard for fast confirmation.<br><br><br>For swapping tokens, use the built-in exchange aggregator. It compares prices across Uniswap, Curve, Kyber, and 12 other decentralized exchanges. You can set slippage tolerance–0.5% for stablecoin pairs, 1-2% for volatile tokens. The system warns you if the price impact exceeds 5%.<br><br><br>Staking features are native in the interface. For Ethereum, you can stake any amount of ETH through Lido or Rocket Pool directly. For Solana, choose a validator with >90% uptime and <br><br>Security settings include a "Whitelist Addresses" function. Add only addresses you trust; any outgoing transaction to a non-whitelisted address will require extra confirmation. You can also set transaction limits–for example, block any transfer above $10,000 without a hardware device signature.<br><br><br>To recover an existing wallet from another provider, use the "Import Wallet" option. Enter your 12- or 24-word recovery phrase from MetaMask, Trust Wallet, or similar. The plugin automatically detects all derived addresses and balances across supported chains. Do this on a clean, malware-scanned computer.<br><br><br>Regularly update the plugin–go to the browser's extension manager and enable automatic updates. Check the version number weekly; critical security patches are released every 2-3 weeks. If the plugin stops responding, clear its cache via Settings → Reset Cache (your funds remain safe on the blockchain).<br><br>Downloading and Installing the Onekey Extension from the Official Store<br><br>Open Chrome Web Store and search for "OneKey" using the exact spelling. Verify the publisher is "OneKey" with a verified checkmark. The extension ID should be `cmaobncmjkmjopknlnphfobmdjgpkdhp`. Avoid any listings from third-party developers or with misspellings.<br><br><br>Click "Add to Chrome" only after confirming the blue "Verified" badge appears next to the developer name. The download size is approximately 8.2 MB. A permissions dialog will request access to "read and change all your data on all websites"–this is required for transaction signing and site interaction but triggers Flashlight when other extensions request it. Accept only if the publisher matches.<br><br><br>The installation finishes within 3 seconds on a standard fiber connection. A small puzzle piece icon appears in your toolbar; click it and pin the new icon for quick access. The icon resembles a black cube with a white circle in the center. If it shows a gray version, the extension is disabled–right-click it and select "Enable."<br><br><br>After installation, open the extension by clicking its icon. You will see a landing page with two options: "Create a new vault" or "Import existing vault." Do not click anything yet. First, navigate to `chrome://extensions/?id=cmaobncmjkmjopknlnphofbmdjgpkdhp` to verify the version number: ensure it reads `2.18.0` or higher. Older versions lack the hardware simulation module for Ledger devices.<br><br><br>To confirm the file hash, open your browser’s task manager (Shift+Esc) and find the process named "OneKey Background Service." Right-click it and select "Go to details." The absolute path should contain `AppData\Local\Google\Chrome\User Data\Default\Extensions\cmaobncmjkmjopknlnphofbmdjgpkdhp`. If the path links to any other folder, uninstall immediately–it is a counterfeit distribution.<br><br><br>For Brave or Edge users, install via their respective stores: search using the same ID and verify the publisher. On Brave, the extension installs identically but may require you to enable "Allow access to file URLs" in the extension settings to interact with local dApps. On Edge, the store uses the same Chrome Web Store backend, so the ID verification process remains identical.<br><br><br>After confirming the version and publisher, create a strong password for the vault. Use at least 16 characters mixing upper, lower, digits, and symbols. The vault encrypts your seed phrase locally; no copy ever leaves the extension’s isolated memory space. Write down the 12-word recovery phrase on paper only–never screenshot, store digitally, or paste into any app.<br><br><br>Test the installation by clicking "Create a new vault." The interface generates a seed phrase within 500ms. If the phrase contains duplicate words in positions 1 and 2, reset and recreate–true randomness avoids immediate repeats. Once confirmed, the extension is ready for use. For troubleshooting, inspect the console for errors using Ctrl+Shift+J and filter for "onekey": any red errors indicating missing manifest permissions mean reinstall from the verified store URL directly.<br><br>Creating a New Wallet: Seed Phrase Generation and Local Storage<br><br>Initiate generation only in a completely offline environment and on a device you trust absolutely, free from any network connections and potential spyware. The entropy source from your operating system’s cryptographic random number generator directly creates a binary sequence of 128 or 256 bits. This raw data is then hashed with SHA-256 to produce a checksum, which is appended to the original entropy, splitting the total into 11 or 12-bit chunks, each mapped to a specific 2048-word dictionary (BIP39 standard). This deterministic process yields exactly 12 or 24 human-readable words. For maximum security, choose a 24-word phrase; it provides 256 bits of entropy versus 128 bits for a 12-word phrase, making brute-force attacks computationally infeasible even with future quantum advances. Generate this phrase only on a hardware security module or a dedicated offline machine that has never touched the internet.<br><br><br>Never type, store, or transmit the seed phrase digitally; any keystroke logger, cloud backup, screenshot, or partial photo on a modern smartphone (which compresses metadata) represents a single point of compromise within your physical security perimeter. The phrase must be recorded exclusively on a fireproof, waterproof, and corrosion-resistant steel stamping tool (e.g., CryoKey or Billfodl) or inscribed into a hardened titanium plate using a center punch–avoid paper entirely as it degrades, burns, and can be read through reflected light. Distribute this backup across at least two geographically separate, securely hidden locations (e.g., a bank safe deposit box and a concealed reinforced floor safe) to mitigate risks from burglary, natural disasters, or unauthorized seizure. The physical entropy of your storage medium matters: do not use common pencils or biros as ink fades; use a carbide scribe for permanent deep marks on the steel. Verify your backup immediately by trying to restore the phrase into a separate, temporary instance of the same software–if the derived addresses match only then is the backup reliable.<br><br><br>The entire key derivation pathway rests solely on the seed phrase and derivation path (BIP44 standard: m/44'/0'/0'/0/0 for Bitcoin) which remains computed entirely on your local device using a hardened key stretching function (PBKDF2 with 2048 rounds of HMAC-SHA512). No cloud, no server, no remote call ever receives any fragment of the entropy because all elliptic curve key generation occurs inside the secure enclave of your CPU or dedicated chip. The resulting master private key never leaves the device; only public addresses are derived for transaction creation. Store the primary hardware module in a Faraday bag (RFID-blocking) when not in use to prevent remote wireless side-channel attacks. Encrypt the local vault file (contains encrypted private keys, not the seed) with a strong passphrase–minimum 15 random characters–applied as an additional entropy layer before the symmetric AES-256-GCM encryption algorithm locks the data against physical theft of the device itself. Delete the vault file and clear the hardware memory physically (degauss the SSD or perform a cryptographic wipe) if you ever suspect the seed was accidentally exposed to a camera, microphone, or network tap.<br><br>Q&A: <br>I installed the OneKey browser extension but I’m stuck on the "Create or Import Wallet" screen. What are the actual differences between creating a new wallet and importing one, and does importing require me to type in my full seed phrase from another wallet?<br><br>That screen asks you to pick based on whether you already have a wallet. If you choose "Create Wallet," the extension generates a new 12-word recovery seed phrase for you. You must write this down physically and store it securely—losing it means you permanently lose access to your funds. If you choose "Import Wallet," you will be asked to enter the recovery seed phrase from an existing wallet (like MetaMask or a hardware wallet). You do not need to type the full phrase in some cases: OneKey allows you to paste it, but the extension only processes it locally and encrypts it on your device. For the import to work, you must enter the words in the correct order. OneKey then reads that seed to derive the same private keys and addresses. The extension does not use the seed itself for daily operations; instead, it encrypts a new private key on your local storage for signing transactions. Note: Importing a seed phrase into a browser extension is generally less secure than using a dedicated hardware device because the digital copy of the phrase exists on your computer's memory during the setup process. OneKey’s extension is geared toward being used as a companion to their hardware wallet, but the software wallet mode (without hardware) is fully functional for smaller balances.<br><br>I read the guide about OneKey extension features but it didn’t explain why my Bitcoin address changes after every transaction. Is this a privacy feature specific to OneKey or does it happen with all wallets? Can I fix it back to one address?<br><br>This behavior is standard for Bitcoin wallets that use Hierarchical Deterministic (HD) wallet technology. OneKey’s extension, like most modern Bitcoin wallets, generates a new receiving address for each transaction by default. This is a privacy measure: it prevents anyone on the blockchain from easily linking all your incoming payments to a single identity or balance. It is not exclusive to OneKey—MetaMask, Electrum, and Ledger Live do it too. However, you are not forced to use a new address each time. In OneKey’s extension, after you click "Receive," it shows a fresh address, but you can scroll down or click a "previous addresses" option to view addresses you’ve used before. You can send funds to any of those previously generated addresses—they all point back to your wallet and any funds sent there will still arrive. The extension does not deprecate old addresses; it simply prefers to show a new one for privacy. If you want to stick with one address, just copy it from the history and reuse it, while understanding that this reduces your privacy. For most users, the automatic change is the safer option.<br><br>I’m trying to connect my OneKey extension to a DeFi app on Polygon but it keeps saying "network mismatch." I have the Polygon network added in the extension’s settings. What am I missing?<br><br>This typically happens because the OneKey extension is set to a different active chain than the one the DeFi app expects. The extension’s interface shows the currently active network on the top bar. Even if you have Polygon saved in your network list, you must click on that network name in the extension to "activate" it. The extension cannot auto-detect which chain the dApp uses—it only broadcasts transactions on the network you have explicitly selected. So, open the extension, click the network dropdown (next to your account icon), and select the Polygon Mainnet entry. If you don't see it, you may have added it manually via custom RPC but without selecting it from the dropdown. A second cause: the DeFi app itself might be on Polygon Mumbai testnet or a specific sidechain (like Polygon zkEVM) rather than Polygon Proof-of-Stake (PoS). Check the app’s URL or documentation to confirm which chain ID they use. [https://extension-start.io/onekey-wallet-troubleshooting-guide.php OneKey Wallet setup] can store multiple Polygon-type networks, but each has a distinct chain ID (137 for PoS, 1101 for zkEVM). If the IDs don’t match, you’ll get the mismatch error. You can verify and adjust the chain ID in the network settings inside the extension.<br><br>My OneKey hardware device just arrived. The setup guide says I should use the extension to manage the device, but the extension screen is asking me to "create a software wallet" instead of pairing. How do I force the extension to recognize the hardware wallet?<br><br>The OneKey extension defaults to software wallet mode when it detects no connected hardware. To pair it with your hardware device, first make sure your hardware wallet is charged (or plugged in via USB) and turned on. Then, on the hardware device, navigate to the main menu and select "Connect to software" or "Pair." The device will display a pairing code. On your computer, in the OneKey browser extension, click the account icon in the top-right corner, then select "Add Wallet" or "Connect Hardware Wallet" (the phrasing depends on version). The extension will start scanning for Bluetooth or USB connections. For USB, the extension must have permission—sometimes Chrome blocks USB access, so check that the site has "USB" permissions enabled in the browser’s site settings. After the device appears in the list, click it. You will then be asked to confirm the pairing code displayed on your hardware screen inside the extension window. This code prevents man-in-the-middle attacks. Once confirmed, the extension will fetch the public keys from the hardware device. You will see the wallet account appear in the extension list, with a small "Hardware" icon next to it. After that, sending transactions requires you to approve them with the hardware wallet’s button press. The extension will never show a seed phrase or private key for the hardware wallet—it remains on the device.<br></div>LeonHwang539047