The Ethereum Foundation has established new security standards for crypto wallets, designed to make transaction approvals much clearer to users and protect them from common phishing attacks. The initiative introduces “clear signature,” a system that replaces confusing hexadecimal code with human-readable summaries of what a transaction actually does before a user approves it.
- The Ethereum Foundation has released guidelines for clear signing standards.
- This is intended to protect Web3 users from malicious transactions that could empty their wallets.
- Clear signing replaces unreadable transaction data with human-readable summaries.
Making transactions understandable
For anyone using decentralized applications (dApps) on Ethereum, approving transactions often means staring at strings of seemingly random characters. This is known as ‘blind signing’ and poses a major security risk. Attackers are taking advantage of this by tricking users into signing malicious transactions that can lead to the theft of digital assets, potentially draining entire wallets. The Ethereum Foundation’s new standards attempt to eliminate this risk by ensuring users see a clear summary of the purpose of a transaction on their wallet screen, making it much harder to be tricked into approving something malicious. This move is a critical step in improving user experience and security for Web3, especially as digital assets become more mainstream. You can read the official announcement for full details.
Combating phishing and exploits
Blind signing is a primary method used in many phishing frauds and smart contract approval abuses. Users may think they are approving a simple token transfer or an interaction with a well-known dApp, but the raw data may actually represent a token approval that grants unlimited purchasing power to a malicious contract. Clear signing aims to make these potentially dangerous approvals clear. For example, instead of seeing a long string of hexadecimal code, a user might see a clear message like ‘Approve spends of up to 1.1 trillion USDC from your account’ or ‘Transfer 2,500 ETH to address 0x123…’. This greater transparency is critical to safeguarding users’ funds.
Path to widespread adoption
Implementing clear signing is not something that happens overnight. It requires a coordinated effort across the Web3 ecosystem. Wallet providers will need to integrate the new standards into their interfaces, dApp developers will need to structure their transaction data so that it is easy to read, and even manufacturers of hardware security keys will need to ensure that their devices can display these summaries. The Ethereum Foundation’s detailed guidelines are intended to facilitate this adoption. This initiative is part of a broader effort to improve security and usability and build trust as the value of digital assets, which have collectively reached trillions, continues to grow.
Looking ahead
While the new standards are now being worked out in detail, the push for widespread adoption will continue. The Ethereum Foundation has indicated a target timeline of June 21, 2026 for significant progress in integrating these clear signing practices into wallets and dApps. This proactive approach to security is essential for the continued growth and mainstream adoption of decentralized technologies.
This article was written by the News Desk and edited by Samuel Rae.