Skip to main content
Bookie is designed with security as a core principle. Understanding wallet security best practices is essential for safe DeFi operations.

Non-Custodial Architecture

Bookie never has access to your private keys or seed phrases.

Read-Only Connection

Bookie only reads your public wallet address

Manual Approval

Every transaction requires your explicit confirmation

Client-Side Signing

All transaction signing happens in your wallet

No Server Storage

Private keys never leave your device

Burner Wallet Strategy

Use dedicated wallets with limited funds for DeFi interactions:
1

Create Burner Wallet

Set up a new Solana wallet specifically for DeFi operations
2

Fund with Limited Amount

Transfer only the amount you plan to trade (e.g., 10-50 SOL)
3

Connect to Bookie

Use this burner wallet for all Bookie interactions
4

Keep Main Wallet Offline

Store majority of holdings in cold storage or hardware wallet
Never connect your main wallet (with significant holdings) to any DeFi application. Always use burner wallets with limited funds.

Wallet Types by Security

TypeSecurityUse Case
Hardware WalletHighestLong-term storage, large holdings
Cold WalletHighOffline storage, rarely accessed
Hot Wallet (Main)MediumRegular transactions, moderate funds
Burner WalletLowDeFi interactions, limited funds

Transaction Approval Checklist

Before approving any transaction in your wallet, verify:
  • Token addresses match expected tokens
  • Amounts are correct (check decimals)
  • Recipient address is accurate (for transfers)
  • Slippage tolerance is reasonable
  • Transaction fee is expected (~0.000005 SOL)
  • No suspicious program interactions

Common Attack Vectors

Phishing

Fake websites that mimic legitimate DeFi apps. Protection:
  • Bookmark official Bookie URL
  • Verify SSL certificate
  • Never click links in unsolicited messages

Malicious Transaction Approval

Transactions that drain your wallet when approved. Protection:
  • Review all transaction details before approval
  • Use burner wallets with limited funds
  • Enable transaction simulation in wallet settings

Seed Phrase Theft

Attackers trick users into revealing seed phrases. Protection:
  • Never share your seed phrase with anyone
  • Bookie will never ask for your seed phrase
  • Store seed phrases offline in secure location

Wallet Permissions

When you connect to Bookie, you grant these permissions:
PermissionPurposeRisk Level
View AddressDisplay your wallet addressNone
View BalancesShow token holdingsNone
Request SignaturesPropose transactions for approvalLow (requires manual approval)
Not Granted:
  • Access to private keys
  • Automatic transaction signing
  • Ability to move funds without approval

Revoking Access

To disconnect your wallet from Bookie:
1

Click Disconnect

Use the disconnect button in Bookie interface
2

Revoke in Wallet

Open wallet settings and revoke Bookie’s connection
3

Clear Browser Data

Clear cookies and local storage for complete removal

Security Recommendations

Use Hardware Wallets

Ledger or Trezor for maximum security

Enable 2FA

Two-factor authentication on wallet accounts

Regular Audits

Review connected apps monthly

Update Software

Keep wallet software up to date

Incident Response

If you suspect unauthorized access:
  1. Immediately disconnect wallet from all dApps
  2. Transfer funds to a new wallet with fresh seed phrase
  3. Revoke all permissions in wallet settings
  4. Report incident to wallet provider
  5. Monitor transactions for suspicious activity
Bookie’s security model ensures that even if the Bookie website is compromised, your funds remain safe because private keys never leave your wallet.

Additional Resources

Solana Security Best Practices

Official Solana security guidelines