BACK
CorePass Wallet
SHIPPED 2025
Privacy-First Mobile Web3 Wallet & Browser Extension
Working with Groot on Corepass and across a couple of projects was exceptional. He worked hard, blended seamlessly with our team, took ownership of complex transaction flows, responded to feedback constructively, and consistently delivered designs that were both simple and up to industry standards.
Ockert Loubser
CEO & Co-founder, Wallit / Core
OVERVIEW
Corepass is a privacy-first decentralized Web3 wallet built on the Core Blockchain Network. As an alternative to MetaMask and Trust Wallet, Corepass uniquely requires Digital Identity verification to create a compliance-ready ecosystem while maintaining user privacy. All identity data remains private and under the user's control and apps in the Core Blockchain ecosystem pays users a small fee for requesting KYC documents during the onboarding process.
The browser extension enables users to store cryptocurrency securely, send and receive assets, and connect to Web3 and DeFi applications on the web for all Web3 native transactions such as asset swaps, NFT minting, trading, signing contracts, etc, all with enhanced security through mobile-first authentication.
THE CHALLENGE
Gasless transactions, Split payments, and Security needed to work while respecting the CorePass mobile-first security model
Corepass users cannot access the browser extension without their mobile app—a deliberate security decision that created a unique design challenge. Unlike traditional wallets where users can simply re-enter their seed phrase or re-authenticate when something feels unclear, Corepass users are locked into their mobile-app-only flow. This meant every transaction screen had to seek verification through the mobile app somehow, and every transaction screen had to get it right the first time.
For gasless transactions, I couldn't rely on users having multiple chances to understand what they were signing. The interface had to clearly communicate what was happening, who was requesting it, and why it was safe, because confusion leads to abandoned transactions or worse, users signing malicious contracts out of uncertainty. For split transactions, the challenge was preventing cognitive overload. Multiple recipients in a single transaction could easily feel suspicious or confusing, especially when users couldn't simply "start over" without their mobile device. I needed to make complexity feel transparent and intentional. And for password recovery, I had to design for users in a moment of frustration and panic — a flow that could feel like either a safety net or a punishment. Every decision had to build trust immediately
DESIGN APPROACH
Every transaction had to earn trust before users clicked "confirm"
Security Through Clarity Web3 transactions can be exploited if users don't understand what they're signing. I focused on breaking down complex blockchain operations into clear, scannable information hierarchies. Every transaction screen answers: What am I doing? Who am I interacting with? What will this cost?
Mobile-First Security Model As mentioned, our mobile-only authentication approach eliminates common browser vulnerabilities like clipboard hijacking and keylogging. The mobile app serves as the secure vault, with the browser extension acting as a resettable interface. This meant every flow I designed had to work within this constraint, and had to make the decision feel like a benefit to users rather than a limitation.
Progressive Disclosure For split transactions, I used progressive disclosure to prevent information overload. The main screen shows essential transaction details, while expandable sections reveal recipient breakdowns. This keeps the interface clean while providing transparency for users who want deeper details.
Trust Indicators I incorporated visual trust signals throughout the app, using verified request sources, clear network fee displays, and explicit "what happens next" messaging. For gasless transactions especially, I added contextual explainers to help users understand why they're signing and what permissions they're granting.
IMPACT & STATUS
From mobile success to browser foundation
The Corepass mobile app has reached 500+ downloads and is actively integrated across the Core blockchain ecosystem, with the transaction flows I designed forming the foundation for the browser extension's 2025 launch.
KEY LESSONS
Four key insights about designing flows where user understanding directly impacts their safety and confidence.
Security Can Be Intuitive I learned that strong security doesn't have to create friction. By designing our mobile-only authentication as a deliberate feature rather than a limitation, we actually increased user confidence. The key was clear communication about why this approach protects them.
Complex Transactions Need Context Split transactions could have been overwhelming, but I discovered that users adapt quickly when you show them familiar patterns. Breaking down multi-recipient payments into scannable lists with clear amounts and percentages made the complexity feel manageable.
Transparency Builds Trust In Web3, users are vulnerable to malicious contracts and phishing. I learned that over-communicating (i.e: showing request sources, explaining transaction types, breaking down costs) isn't hand-holding, it's essential. Users who understand what they're signing are safer and more confident.
Recovery Flows Matter Designing the forgot password flow taught me that error states and recovery paths are just as important as happy paths. Users will forget passwords. The difference between frustration and confidence is how clearly you guide them back.
