I was quite inspired by the imToken 2 security quiz: https://twitter.com/mr_ligi/status/1024691441115774976

Wonder now if it perhaps even would be a great idea to use the security experience tokens that the quiz generates to unlock wallet features like:

receiving more than X

sending more than Y

signing transactions with data

signing arbitrary data

…

And perhaps also a backup could give you security experience tokens and more for the verification of the backup.

Also there could be one intentionally vulnerable faucet that can give you unlimited security experience tokens

Last but not least: I think we should build a opensource/creative commons database of such questions - unfortunately imToken is closed source so we cannot directly build on top of that. But if every wallet needs to come up with the whole set of security questions - it takes a lot of time. But if every project in this ring just contributes one question - then we already have a great base. We are already 17 Projects in this ring with even more representatives And as often the first step is the hardest I started with the first question here:

GitHub walleth/security_quiz Collection of Ethereum security quiz questions. Contribute to walleth/security_quiz development by creating an account on GitHub.

When writing the second question it became even clearer how much we need a shared language / glossary between apps as we discussed once @boris. E.g. shoul one call it “seed phrase”, “mnemonic” , “12 words” , … Having different words for basically the same thing can really confuse users and also might prevent them from answering the questions in this quiz correctly