Inspiration
Security shouldn't require a middleman. We wanted to solve the "central point of failure" problem in traditional password managers by giving users total ownership of their data using the blockchain.
What it does
BlockPass is a decentralized vault that encrypts and stores credentials on the Solana blockchain. It uses a Chrome extension to detect login fields and a secure Python backend to interact with on-chain "lockers" that only the owner can access.
How we built it
We used Seahorse (Python) to write our smart contracts on Solana, and FastAPI to bridge the gap between our JavaScript Chrome extension and the blockchain. Encryption is handled via Fernet (AES-256) with keys derived through Scrypt.
Challenges we ran into
The biggest hurdle was the steep learning curve of Solana's architecture. We struggled with Account Serialization errors and managing Transaction Size Limits (1232 bytes) while trying to store long, encrypted strings on-chain.
Accomplishments that we're proud of
We successfully integrated three different environments—a browser extension, a Python API, and a blockchain program—into one working prototype that performs real-time encryption and on-chain storage.
What we learned
We gained a deep understanding of Program Derived Addresses (PDAs), the mechanics of blockchain transactions, and the intricacies of asymmetric encryption. We also learned how to debug complex "stack traces" across different programming languages.
What's next for BlockPass
We plan to implement Address Lookup Tables (ALTs) to handle larger data sets and add a "Master Password Recovery" system using social recovery or multi-sig features to ensure users never lose access to their vaults.
Built With
- api
- blockchain
- fastapi
- fernet/aes-256
- javascript
- phantom
- python
- seahorse
- solana
Log in or sign up for Devpost to join the conversation.