Skip to main content

OneKey "Signature Guardian" Technology: Clear Transaction Previews and Real-Time Phishing Detection

Updated today

What you see is what you sign — stop worrying about blind signingThe first rule of safety: do not trust blindly; verify personally.In recent years, although hardware wallets have effectively protected users' private keys from being stolen, because transaction information is complex and unreadable, many users still perform "blind signing" and mistakenly transfer assets or grant permissions to phishing contracts, causing irreparable losses.These scams are not due to bugs in smart contracts, but because users cannot understand the transaction contents or recognize risks before signing.This is the original intention behind OneKey's SignGuard — we want every user to truly achieve "what you see is what you sign": understand the transaction before signing and recognize risks before clicking confirm.What is SignGuard?SignGuard is OneKey's exclusive signature protection system. It is a collaboration between the software app and the hardware device that fully parses and displays transaction information before signing, helping users safely judge and confirm.How does SignGuard work?1) App side: clear signing and risk detectionThe OneKey App simulates the key elements of on-chain transactions, including: - Smart contract methods (transfer, approve, permit, delegatecall) - Approved amount and target address - Contract name (as a readable replacement for complex addresses)It also integrates risk-control capabilities from GoPlus and Blockaid, able to detect malicious contracts, counterfeit tokens, phishing sites, and suspicious contract methods, and provide real-time risk warnings to users before signing.2) Hardware side: offline clear signing and final confirmationThe hardware wallet independently simulates the transaction locally and displays a trusted, readable summary on the device screen: method, amount, recipient or approver, and contract name.Even if the user operates on a compromised computer or browser, they can confirm the transaction intent on an independent secure hardware device.The user must complete the final signature on the hardware device, ensuring true "what you see is what you sign," and the entire process is fully verifiable and secure.Why is SignGuard necessary?Many users mistakenly think "using a hardware wallet means you won't be scammed," but that's not the case.In real incidents, attackers will lure you to sign a transaction on a phishing site or fake DApp that "looks normal," but in reality it may: - Approve all of your token assets in bulk (approve all) - Grant permission to a malicious address (which you cannot see) - Appear to claim an NFT but actually transfer tokens or grant approvalBecause most wallets only show a hash or vague operation content, users cannot determine the transaction intent and can only blind sign — exactly the vulnerability hackers exploit.Blind signing is like signing a check without seeing the amount or the payee; anyone can become a victim.Not all "signature previews" are trustworthySome wallets on the market claim to support "transparent signing" or "clear previews," but many only parse on specific chains or contracts and do not have real-time risk detection capabilities, nor can they ensure that the App and hardware screens display the same information.Only OneKey's SignGuard simultaneously provides the following three capabilities:Function / Ordinary wallets / OneKey SignGuard - Transaction field parsing: Partial support / ✅ Supports major chains & methods - Phishing risk identification: ❌ Not supported / ✅ Real-time warnings (supports major DApps) - Hardware screen preview: ❌ No / ✅ What you see is what you sign (supports most cases)Note: OneKey SignGuard is continuously expanding support. It currently covers major chains such as Ethereum, BNB, Tron and most common methods; some complex or uncommon calls are not yet supported.How to use SignGuard?Using SignGuard is very simple: 1. Install or upgrade to the latest OneKey App (iOS, Android, and desktop supported) 2. Connect your OneKey Pro or OneKey Classic 1S 3. When performing any on-chain operation (transfer, approve, connect to a DApp), SignGuard will automatically activate and display full parsed content and risk prompts 4. After confirming everything is correct, complete the signature on the hardware deviceSupported networks include Ethereum, BNB Chain, Polygon, Arbitrum, Optimism, Base, Scroll and other major networks, with more ecosystems being added.Signing is not the final step, but the security watershedWe used to think signing was just the final step to confirm an operation, but in today’s crypto world full of scams, signing is actually the most critical line of defense.OneKey SignGuard is not an auxiliary tool but a core guardian.Through clear, readable transaction parsing plus real-time risk alerts, SignGuard gives every user the ability to judge risks and avoid traps, truly achieving "what you see is what you sign — secure and verifiable."Upgrade your OneKey App and device firmware now to start a safer on-chain journey: 👉 https://onekey.so/download

Related Articles
Blind Sign Description and Usage Tutorial
Security Features of OneKey App
OneKey App Changelog
Firmware changelog for OneKey Classic
Hex Data + 0-Value Transactions: The Invisible Trap Draining On-Chain Assets
Did this answer your question?