Aligned Wallet-as-a-Service New Mobile Demo
TL;DR
- Aligned Wallet-as-a-Service is a developer platform for embedding non-custodial crypto wallets that a user creates with nothing more than an email and Passkeys: no seed phrase, no browser extension, no gas token. This is implemented using account abstraction with EIP-7702.
- The demo (≈1 minute): sign in with an emailed code, create a wallet with a passkey (Face ID), receive USDC, then send USDC by confirming with Face ID.
- The key idea: security is enforced on-chain by a 2-of-2 rule. Every transaction needs one signature from the user (their passkey) and one from Aligned's backend, and rules are enforced by the smart account on-chain.
In this article we will walk you through the demo step by step, with an explanation of the architecture.
In a future article we will be sharing a tutorial for developers to develop their own wallet with our technology.
What the demo shows (step by step)
- Login: A single email field with Send code, plus Continue with Google. The user enters their email. No password, no seed phrase.
- Creating your wallet: On first sign-in the app provisions a smart wallet. The user confirms with Face ID, which creates an on-device passkey that becomes their signing key.
- Get USDC: The wallet's address is shown as a QR code and copyable text, used to fund it with testnet USDC. From here the user can send and receive money and view their latest transactions.
- Send USDC: The user sends 5 USDC to another wallet. This is signed with the passkey on the phone and also by Aligned's backend. All of this without the need to have ETH to pay for gas.
The whole journey, from "type your email" to "signed an on-chain USDC transfer", takes about a minute and never asks the user for a seed phrase, a gas token, or a browser extension.
Architecture behind the demo
Aligned wallet-as-a-service has three layers. The security guarantee lives in the on-chain contracts, so the cloud backend is not a custody or trust boundary for funds.
1. The on-chain contracts: where security actually lives
The whole model works as follows:
AlignedAccount: the account logic. It is a smart account that:
- accepts one or more user keys (ECDSA, P-256, or WebAuthn passkey, the path the Face ID prompt uses);
- requires a server co-signer;
- supports a guardian (Aligned's backend) with a 7-day timelock for recovery.
2. The backend: one of the two signers
The Aligned backend is responsible for:
- Authentication: email OTP and Google OAuth (the two login options on the first screen).
- Server-side key custody: it holds one of the two signing keys per wallet, encrypted at rest. It is never a custodian, just the second signer.
- Onboarding: handles the "creation" of the smart contract account.
- Gas sponsorship: it pays the gas on every transaction, so users never need to hold ETH.
- Recovery: it's the guardian that helps the user recover their wallet.
3. The SDK and the mobile app
The Aligned Wallet-as-a-Service offers a mobile SDK for companies to quickly build their own whitelabel wallets and onboard their users in seconds. The SDK includes:
- A TypeScript core for handling the backend communication for onboarding, transaction execution, and recovery.
- A React Native layer for handling the passkeys and device authentication.
Why this matters
At Aligned, we are working on technologies that help fintechs, enterprises, and institutions upgrade to Ethereum. Two of the biggest problems they face are UX and onboarding. With Aligned Wallet-as-a-Service, we offer a single platform and SDK to onboard millions of users with a secure, familiar UX, leveraging the latest account-abstraction technologies on Ethereum.
In the future, we will be working on migrating our services to EIP-8141. We are committed to helping our clients get access to the best features of Ethereum.
