KASPA MAINNET
The first fully open-source NFC cold wallet for Kaspa
KASPA MAINNET
Card firmware, mobile app, covenant scripts — every line of code that touches your money is public and auditable.
Spending rules enforced by the Kaspa network itself. No app or server can bypass them. The rules are math.
NFC tap signs transactions in under a second. 10 blocks per second finality. No cables, no Bluetooth, no batteries.
JavaCard applet — Schnorr signing, BIP-32 derivation, constant-time cryptography
Secure channel — ECDH + AES-256-CBC + HMAC-SHA256 encrypted NFC
Access code, backup cards, root attestation chain
KIP-10 introspection opcodes — whitelist, inheritance, freeze
Covenant simulator — tests every script path before deployment
Mandatory script review before card signs
Dev card testing — all 22 APDU commands on real NXP J3R200 hardware
NFC performance — batch signing, secure channel throughput
Multi-card reset protocol — 2-pack and 3-pack verification
Independent applet audit — side-channel analysis, covenant script review
Open source release — full source + build instructions on GitHub
Community bug bounty
Production flashing — root key signing, GlobalPlatform lock
QA — NFC range, signature verification, attestation chain on every card
Launch: June 30, 2026
The card generates your private key on its EAL6+ chip. The key never leaves the silicon. The app reads your pack size and walks you through setup.
Tap each backup card to clone your keys securely. When done, backup is permanently locked at the chip level. No new cards can ever be added.
Toggle protections — whitelist, inheritance, freeze. Each deploys as an on-chain covenant with a card tap. Review the exact script before committing.
Only send to approved addresses. New addresses require a cooling period. Even with your card and PIN, the network blocks unauthorized destinations.
Changeable with all cardsDead man's switch. If inactive for a set period, your heir claims funds with their own key. No lawyers, no probate, no third party.
Changeable with all cardsLock a percentage of your vault for a set duration. Permanent — no card, no person, no software can undo it. Unlocks when the timer expires.
Permanent — cannot be undone| FrostCard | Tangem | |
|---|---|---|
| Secure Element | EAL6+ (NXP J3R200) | EAL6+ (Samsung) |
| Card Firmware | Open source | Closed source |
| Mobile App | Open source | Partially open |
| NFC Encryption | ECDH + AES-256 | AES-256 |
| Address Whitelist | On-chain covenant | Not available |
| Inheritance | On-chain dead man's switch | Not available |
| Time-Lock Freeze | Permanent, on-chain | Not available |
| Backup Locking | Permanent after setup | Permanent after setup |
| Seed Phrase | None — card is backup | None — card is backup |
| Blockchains | Kaspa (purpose-built) | 5,000+ tokens |
| Build Your Own | Yes | No |
JavaCard applet on the NXP J3R200. Key generation, signing, secure channel, backup locking.
OPEN SOURCEFlutter for Android and iOS. Transaction builder, covenant management, NFC, everything.
OPEN SOURCEOn-chain scripts that enforce spending rules. Review exact bytecode before deployment.
OPEN SOURCENXP J3R200 hardware. Independently certified EAL6+ by third-party labs.
EAL6+ CERTIFIED