Ensuring an added layer of security for user accounts involves a fundamental practice, the separation of active and owner keys. This exploration into the significance of this practice on the XPR Network underscores the advantages of employing distinct keys for various functionalities. We'll also dive into the step by step process of changing active keys using the cleos command line tool, providing users with a hands on guide to fortify the security of their accounts.
In the language of blockchain, the owner key functions as the master key, wielding ultimate control and authority over the entire account. Conversely, the active key is tailored for day to day transactions and operations, serving as the backbone for routine activities. The adoption of distinct keys for these functions ensures that compromising one key doesn't jeopardize the entirety of the account.
Mitigating the risk of unauthorized transactions is a notable benefit of segregating active and owner keys. Even if the active key faces compromise, the attacker lacks the authority to make substantial changes to the account.
Enhanced Control and Flexibility:
Furthermore, distinct keys offer users greater control and flexibility, allowing them to grant limited permissions to the active key for specific actions without exposing the entire account to potential risks.
Heightened Security Against Phishing Attacks:
In the realm of heightened security against phishing attacks, where malicious actors aim to trick users into revealing private keys, separate keys present a formidable challenge for attackers seeking complete control through phishing attempts.
On the website https://explorer.xprnetwork.org direct key changes in the UI are not available, so it is necessary to seek alternative methods. One of the simplest approaches is installing the cleos software on your computer, with Windows users utilizing the Windows Subsystem for Linux, MAC users relying on official repositories, and Linux users following a few extra steps to download and install cleos.
Ensuring that cleos is installed on your system is a crucial first step.
How to install cleos:
The installation process for cleos differs for each operating system:
For Windows users, installing cleos is beyond the scope.
MAC OS users can open the terminal and execute:
brew tap eosio/eosio
brew install eosio
On Linux Debian based systems, the installation of the latest binaries from the Antelope GitHub repository involves the following steps:
wget https://github.com/AntelopeIO/leap/releases/download/v4.0.4/leap_4.0.4ubuntu22.04_amd64.deb
sudo apt install ./leap_4.0.4-ubuntu22.04_amd64.deb
Once cleos is available, changing active keys requires importing the private key for the user account in question. Accessing the private key involves opening the Webauth wallet, navigating to the Backup Wallet tab and entering "I will never give my private key to anyone else" to reveal the private key.
Creating a wallet and importing the private key from the Webauth wallet involves the following commands:
cleos wallet create -n owner-key
cleos wallet import -n owner-key
Generating a new key pair for the active key using cleos can be accomplished with the command:
cleos create key --to-console
Setting the new active key involves using cleos to execute the following command, replacing <account_name> and <new_active_key> with your account name and the newly generated active key:
cleos -u https://rpc.api.mainnet.metalx.com set account permission <account_name> active <new_active_key> -p <account_name>@owner
To verify the changes, confirm that the active key has been successfully changed by checking account permissions with the command:
cleos -u https://rpc.api.mainnet.metalx.com get account <account_name>
The final steps include importing the newly created active private key into the Webauth wallet and removing the owner key from your computer with cleos:
cleos wallet remove_key -n owner-key
With owner and active keys successfully changed, take the opportunity to back up both keys to a secure location, such as a regular flash drive, encrypted USB, or you can write it on a piece of paper and store it in a safe location.
The act of separating active and owner keys on the XPR Network stands as a pivotal measure in fortifying the security of user accounts. Leveraging the cleos command line tool to change active keys empowers users to actively contribute to a more resilient and robust blockchain experience. Embracing these security practices ensures that the XPR Network continues to be a secure space for users dedicated to safeguarding their assets and transactions in the dynamic realm of blockchain technology.
