The OneKey team is committed to safety, compatibility and innovation when it comes to crypto self-custody. As of January 9th 2025, OneKey App 5.5.1 has various exciting security features.

For those yet to install the latest version of OneKey App, download here.

OneKey DApp Browser

OneKey accounts connect only to DApps opened in the built-in browser. Account connection will cease once users leave OneKey App and navigate to a site on external browsers. A categorized and pre-scanned list of trending and trusted DApps at browser homepage.

DApp connection request preview will show before each connection.

The built-in browser features risk detection functions for contracts and suspicious DApps, provided by reliable web safety safety partners and databases, including GoPlus, BlockAid and ScamSniffer.

For users that prefer to visit DApps on their day to day web browsers, please proceed with OneKey Chrome Extension and enjoy the same level of protection.

Mandatory App Password Passkeys Forgot Password

Before connecting or importing your favorite wallets, OneKey App asks first-time downloaders to set up an app password, as an addition to your hardware wallet PIN number or desktop/laptop password.

App passwords are required for unlocking OneKey App or other sensitive information. OneKey App does provide a few Password bypass options in settings.

Users also have the option to set up biometrics Passkeys (FaceIDs or fingerprints) as an alternative verification measure. Click app settings and set up and turn on/off passkeys at app settings.

App password or passkeys are the only accesses to your app. Should a third party try to unlock the app by forgot password, app will reset and erase all accounts info.

Device Authentication PIN/QR Code Protection Export Backup

Every time a OneKey hardware wallet connects, OneKey App verifies device authenticity, via device certificate and firmware consistency.

Users can re-perform this step during connection by with "Device authentication" under "Edit". Details about how OneKey ensures software and hardware security and guide for a DIY authentication. OneKey App warns every failed verification and rejects connection to a tampered OneKey Device.

All current devices support the “enter PIN Number on the wallet” option - to avoid PIN number leaks.

For OneKey Mini, Classic and Classic 1s, if users choose to enter PIN in OneKey App, the randomly-generated 0~9 keyboard would only display on the hardware wallet screens - this helps segregate your PIN from leaks.

For OneKey Pro under Air-Gap mode, the QR code connection process is blurred out by OneKey App to further prevent leaks caused by screen sharing or screen recordings

.

Private keys or recovery phrases of a OneKey hardware wallet can never be displayed nor exported from OneKey App. Users do have the option to export only public key from a hardware wallet account.

Recovery Phrases Backup

Requires app password or passkeys(biometrics) to view recovery phrases backup of imported software wallets or back up recovery phrases with OneKey Lite and OneKey Tag. To reveal the private key of an account under software wallets, confirm with app password.

Bye Means Bye

All the best with your next.

Disclaimer: Features listed above apply to only OneKey App versions downloaded via OneKey’s official sources. Subject to change with future updates - OneKey staff will adjust content accordingly.