Phantom Auth is a way to sign in anonymously to Phantom. It’s a kind of authentication factor, similar to passkeys. It’s safe, secure, and privacy-first.
Phantom Auth is secured and powered by public-key cryptography, the same method that verifies blockchain transactions on chains like Solana, Ethereum, Base, and Bitcoin.
Using Phantom Auth, Phantom can safely and securely store and sync certain offchain data across your devices, such as account names, icons, and your username.
How Phantom Auth works
Phantom Auth works like your wallet accounts, using self-custody and public-key cryptography.
- Similar to how your wallet addresses are derived from your recovery phrase, your recovery phrase can also derive a separate Authentication Public Key.
- This Authentication Public Key acts as an authentication factor that helps you sign in to Phantom.
- When you sign in, Phantom uses the corresponding authentication key on your device to sign an anonymous verification message.
- Phantom verifies that signature to confirm you control the matching private key, without requiring personal information.
This is the same sign-and-verify pattern used for blockchain transactions.
What kind of data can we sync?
When you link your wallets, the names, avatars, and icons you’ve set for those accounts are also synced between devices. Onboard with the same Google/Apple account, recovery phrase, or private key to both your mobile app and extension to see the same username, same account names, and same account icons between devices.
Sign-in options (auth factors)
The following sign-in methods support Phantom Auth and allow your username and linked account customization to sync across devices:
- Google or Apple account (seedless)
- A Secret Recovery Phrase
- A private key
The following methods aren't supported:
- Ledger hardware wallets
- Watch-only addresses
- Solana Mobile wallets using Seed Vault
- KMS-managed accounts (for example, the trading account in Phantom Terminal)