I just don’t think its right to unilaterally require it on all accounts for a network that we are expecting to become the next massively-adopted internet. Because it will definitely get in the way of that.
Agreed, and stories of people losing their life savings / precious data to ransomware / < fill in disaster here> … will hurt adoption too.
My first thought is I think something David has already talked about: a multi layered login.
So you have two or three (or more) passwords for the same account, with each giving increasing access. So you have:
Level 1: Read/write access to the root folder and to a default Safecoin wallet called “wallet”.
Level 2: Similar but now you can see & access a subfolder “confidential” and wallet “savings”, which are not even visible from level 1.
Level 3: Now you have access to folder “secrets” and a wallet called “fort knox”, neither of which are visible to levels 1 or 2.
The naming could be improved (and only given as defaults for each level that can be customised) but it illustrates the idea. The difference with separate accounts is that each level gains access to all the lower levels, and also that the Launcher can guide the user in creating credentials of appropriate strength for each level - according to an example use case.
The Launcher would require, or strongly encourage , increasingly strong credentials for each increase in level, and provide guidance on how secure each level is expected to be - appropriate to the example use case for that level.
I have no idea how hard this would be to implement, but at first thought it seems to strike a useful balance and be fairly easy to understand. Problem though, it’s requiring multiple sets of credentials, which of course makes it harder to use.
Where things like 2FA are available these could simplify matters a lot by requiring them for certain levels rather than having separate credentials for each level. Another option would be to use the same credentials, but only allow access to secure levels from a particular devices (a bit like using ssh passwordless login from permitted devices).