Whenever you want to send Bitcoins from your wallet, you need to authenticate with a password that you choose, and a text message is sent to your cellphone, which you type into the website. This 2-factor authentication is more secure than most online banks and ensures that even if someone hacks your computer and captures your password, they still can't transfer funds out of your wallet.
So this is an online service like MyBitcoin.com except each transfer out requires a PIN that is received via SMS or other method? [edit: see my next reply]
While this is marginally better than simply username / password credentials, it still isn't the combination I'm looking for. I'm wanting a wallet server, like what Webcoin promises to offer.
-
http://bitcoinjs.org/specs/wallet/1.0/draft/wallet-api.html -
http://forum.bitcoin.org/index.php?topic=14128.0I think the Wallet API specification is a great starting point, but it does lack the security of 2-factor authentication. What if we extended the Wallet API to allow you to not only host your wallet on our servers, but to also sync it to any of your devices? The extension to the wallet API would be necessary to add the SMS text message as part of the wallet sync procedure for new clients, so that if your PIN is compromised your wallet is still secure.