Skip to content
ByteAuth

Introduction

Introduction to ByteAuth

Section titled “Introduction to ByteAuth”

ByteAuth is a passwordless authentication system that leverages Bitcoin’s battle-tested cryptography to provide enterprise-grade security without enterprise complexity.

The Problem

Section titled “The Problem”

Traditional authentication systems rely on passwords, which create significant challenges:

  • Security risks - Passwords can be stolen, phished, or brute-forced
  • User friction - Users forget passwords and reuse them across sites
  • Support burden - Password resets consume help desk resources
  • Compliance complexity - Password policies create user frustration

The Solution

Section titled “The Solution”

ByteAuth eliminates passwords entirely. Instead, users authenticate using cryptographic signatures from their ByteVault mobile app:

  1. Your app displays a QR code containing a cryptographic challenge
  2. User scans with ByteVault and confirms with biometrics (Face ID/Touch ID)
  3. ByteVault signs the challenge with the user’s private key
  4. Your server verifies the signature and authenticates the user

The entire process takes under 3 seconds.

Key Benefits

Section titled “Key Benefits”

Bitcoin-Grade Security

Built on ECDSA/SHA256 — the same cryptography securing billions in Bitcoin. Private keys never leave the user’s device.

Zero Passwords

No passwords to forget, reset, or steal. No credential databases to breach.

Instant Authentication

Sub-3-second login. Scan, biometric confirm, done.

Self-Sovereign Identity

Users own their cryptographic identity. Deterministic key derivation creates unique keys per domain.

How It Works

Section titled “How It Works”

ByteAuth uses the same elliptic curve cryptography (secp256k1) that secures the Bitcoin network:

User's Private Key → Signs Challenge → Signature
Your Server + User's Public Key → Verifies Signature → Authenticated

Architecture Overview

Section titled “Architecture Overview”
┌─────────────────┐    ┌─────────────────┐    ┌─────────────────┐
│   Your App      │    │   ByteVault     │    │   Your Server   │
│   (Frontend)    │    │   (Mobile)      │    │   (Backend)     │
└────────┬────────┘    └────────┬────────┘    └────────┬────────┘
         │                      │                      │
         │  1. Request QR       │                      │
         │─────────────────────────────────────────────>│
         │                      │                      │
         │  2. Return challenge │                      │
         │<─────────────────────────────────────────────│
         │                      │                      │
         │  3. Display QR       │                      │
         │─────────────────────>│                      │
         │                      │                      │
         │                      │  4. Sign challenge   │
         │                      │──────────────────────>│
         │                      │                      │
         │                      │  5. Verify & respond │
         │                      │<──────────────────────│
         │                      │                      │
         │  6. Poll for status  │                      │
         │─────────────────────────────────────────────>│
         │                      │                      │
         │  7. Authenticated!   │                      │
         │<─────────────────────────────────────────────│

Official SDKs

Section titled “Official SDKs”

We provide production-ready SDKs for popular frameworks:

Laravel SDK

Livewire components, webhook handlers, and session management for PHP applications. Get Started →

Next.js SDK

React components, NextAuth.js integration, and API routes for JavaScript applications. Get Started →

Next Steps

Section titled “Next Steps”
  1. Download ByteVault to test authentication
  2. Follow the Quick Start Guide for your framework
  3. Understand the Authentication Flow in detail