LogoLogo
SupportGithubSign InGet Access
  • Introduction
  • GETTING STARTED
    • SDK Quick Start
    • API Quick Start
  • Guides
    • Web
      • Create a wallet
      • Send tokens
      • Sign a transaction
      • Simulate a transaction
      • Back up a wallet
      • Recover a wallet
      • Cross-device sessions
      • Manage wallet lifecycle states
      • Web authentication methods
      • Perform swaps
      • Add custom signature hooks
      • MPC progress callbacks
      • Portal API methods
      • Configure a custom subdomain
      • Eject a wallet
      • Using the EIP-1193 Provider
      • Legacy documentation
        • Back up a wallet
          • Backup Options
        • Recover a wallet
    • iOS
      • Create a wallet
      • Send tokens
      • Sign a transaction
      • Simulate a transaction
      • Back up a wallet
      • Recover a wallet
      • Cross-device sessions
      • Manage wallet lifecycle states
      • Connect with WalletConnect
      • Build a WebView
      • Perform swaps
      • Add custom signature hooks
      • MPC progress callbacks
      • Portal API methods
      • Manage ERC20 tokens
      • Eject a wallet
      • Legacy documentation
        • Back up a wallet
          • Backup Options
          • Passkey + Enclave Storage
        • Recover a wallet
      • Troubleshooting Tips
      • Feature Flags
    • Android
      • Create a wallet
      • Send tokens
      • Sign a transaction
      • Simulate a transaction
      • Back up a wallet
      • Recover a wallet
      • Cross-device sessions
      • Manage wallet lifecycle states
      • Connect with WalletConnect
      • Build a WebView
      • Perform swaps
      • Add custom signature hooks
      • MPC progress callbacks
      • Portal API methods
      • Eject a wallet
      • Legacy documentation
        • Back up a wallet
          • Backup Options
        • Recover a wallet
    • React Native
      • Create a wallet
      • Send tokens
      • Sign a transaction
      • Simulate a transaction
      • Back up a wallet
      • Recover a wallet
      • Cross-device sessions
      • Manage wallet lifecycle states
      • Connect with WalletConnect
      • Build a WebView
      • Perform swaps
      • Add custom signature hooks
      • MPC progress callbacks
      • Portal API methods
      • Eject a wallet
      • Legacy documentation
        • Back up a wallet
          • Backup Options
        • Recover a wallet
    • Enclave MPC API
      • Create a client
      • Create a wallet
      • Send tokens
      • Sign Ethereum transactions
      • Sign Solana transactions
      • Sign Tron transactions
      • Sign Stellar Transaction
      • Concurrent Transactions
      • Back up a wallet
      • Eject a wallet
  • Reference
    • iOS
      • createWallet
      • backupWallet
      • recoverWallet
      • ejectPrivateKeys
      • registerBackupMethod
      • setGDriveConfiguration
      • setPasskeyConfiguration
      • setPasskeyAuthenticationAnchor
      • setPassword
      • availableRecoveryMethods
      • doesWalletExist
      • isWalletBackedUp
      • isWalletOnDevice
      • isWalletRecoverable
      • getBalances
      • getAssets
      • getNftAssets
      • getTransactions
      • sendSol
      • evaluateTransaction
      • buildEip155Transaction
      • buildSolanaTransaction
      • getWalletCapabilities
    • Android
      • Reference Documentation
    • React Native
      • @portal-hq/core
      • Storage adapters
        • Cloud storage
          • @portal-hq/gdrive-storage
          • @portal-hq/icloud-storage
        • Mobile storage
          • @portal-hq/keychain
          • @portal-hq/mobile-key-values
    • Enclave MPC API
      • V1 endpoints
    • Client API
      • V3 endpoints
      • V1 endpoints
    • Custodian API
      • V3 endpoints
      • V1 endpoints
    • Swaps API
      • V3 endpoints
      • V1 endpoints
  • Resources
    • Flutter
      • iOS
      • Android
    • Error codes
      • Overview
      • MPC errors
      • Network errors
      • General errors
      • Encryption errors
      • Portal Connect errors
    • Portal's MPC architecture
    • Authentication and API Keys
    • Self-Managed Backups
    • Alert Webhooks
    • Wallet lifecycle
    • Backup options
      • Password/PIN
      • GDrive
      • iCloud
      • Passkey + Enclave
    • WalletConnect metadata
    • Advanced security scanning
    • Account abstraction
    • Security firewall
    • Eject
    • Security
    • Blockchain support
    • Chain ID formatting
    • Testnet faucets
    • Going to Production
    • Rate Limits
    • Multi-backup migration guide
    • Multi-wallet migration guides
      • Migrating from Android SDK v3.x.x to v4.x.x
      • Migrating from iOS SDK v3.0.x to v3.2.x
  • Support
    • Changelog
      • Android
      • iOS
      • React Native
      • Web
      • Past Releases
        • 2024 Releases
        • 2023 Releases
    • Celo Hackathon Hub
    • Glossary
Powered by GitBook
On this page
  • Overview
  • Steps to get started:
  • Step 1: Access the Settings Page
  • Step 2: Enable Advanced Transaction Validation
  • Transaction Validation
  • dApp Connection Validation

Was this helpful?

  1. Resources

Advanced security scanning

Enable advanced security scanning in the Portal Admin Dashboard to protect your users from malicious transactions and domain connections using Blockaid's robust security features.

PreviousWalletConnect metadataNextAccount abstraction

Last updated 10 months ago

Was this helpful?

Overview

Advanced security scanning enhances the security of your users' crypto transactions and their dApp connections by integrating ’s powerful threat detection directly into your Portal environment. This feature can be easily enabled or disabled through the , under the Settings page in the "Security" section.

This feature is rate limited by default. If you require a higher rate limit, please contact Portal's support team for assistance.

Steps to get started:

Step 1: Access the Settings Page

To begin, log into your . Navigate to the page and locate the "Security" section.

Step 2: Enable Advanced Transaction Validation

Within the "Security" section, you will find an option to enable Advanced Security Scanning. By enabling this feature, Portal will automatically generate a Blockaid API Key specific to your current Portal environment ("Development" or "Production").

Transaction Validation

Once enabled, all eth_sendTransaction requests made by your users on supported chains will be validated through Blockaid. They currently support the following chains:

  • Ethereum (ChainId: 1)

  • Optimism (ChainId: 10)

  • BSC (ChainId: 56)

  • Polygon (ChainId: 137)

  • Blast (ChainId: 238)

  • Base (ChainId: 8453)

  • Arbitrum (ChainId: 42161)

  • Avalanche (ChainId: 43114)

  • Linea (ChainId: 59144)

  • Zora (ChainId: 7777777)

If a transaction is detected as malicious, it will be blocked and an error message will be returned: "Firewall: Transaction is malicious".

dApp Connection Validation

In addition to transaction validation, any attempt by your users to connect to a dApp via PortalConnect (WalletConnect) will trigger a URL validation through Blockaid when Advanced Security Scanning is enabled. Should the domain be identified as malicious, the connection attempt will be blocked with the error message: "Blocking connection attempt from malicious domain: [domain]."

Congratulations! You're now protecting your users web3 experiences with the Portal Advanced Security Scanning feature. Feel free to reach out to our support team if you have any questions!

🎉
Blockaid
Portal Admin Dashboard
Portal Admin Dashboard
Settings