A COTI OG community member built a fully self-custodial trading bot inside Telegram — with privacy tokens, encrypted chat, and biometric security. Here’s how it works. One of the most exciting things about building a public blockchain is watching your community build on it. Today, we’re spotlighting CipherTrade — a fully self-custodial Telegram wallet & trading bot built by @iamsstef.
CipherTrade isn’t just another wallet. It’s a complete trading, privacy, and messaging experience that lives entirely inside Telegram — and it never touches your private keys.
<a href="https://medium.com/media/9302efeff1203e8785b9f27f8409bbcc/href">https://medium.com/media/9302efeff1203e8785b9f27f8409bbcc/href</a> Why CipherTrade Matters
Most Telegram trading bots require you to hand over your private keys or trust a server with your funds. CipherTrade takes a fundamentally different approach: your wallet is derived entirely on your device, your keys never leave your phone, and the server only ever sees your public address.
This is true self-custody — a similar security model to MetaMask or a brainwallet, but wrapped in the convenience of a Telegram Mini App.
What You Can Do with CipherTrade
💰Full Wallet Management Create or restore your wallet, view balances (public + private tokens), receive via QR code, and manage multiple token types.
🔄Token Swaps via Carbon DeFi Swap tokens directly inside Telegram with slippage protection, powered by Carbon DeFi’s on-chain routing.
<a href="https://medium.com/media/a0326fd156e76e04a511b03ff00830bd/href">https://medium.com/media/a0326fd156e76e04a511b03ff00830bd/href</a>
🔒Private Token Support View and manage COTI privacy tokens. Private balances are decrypted locally on your device — the server never sees them.
📨Encrypted On-Chain Chat Send encrypted messages using COTI’s Garbled Circuits technology. Messages are encrypted on your device and stored on-chain — no server can read them.
<a href="https://medium.com/media/36be192b0fd9598e843c42be398c9137/href">https://medium.com/media/36be192b0fd9598e843c42be398c9137/href</a>
👤Social Sends Send tokens to Telegram contacts using @username (opt-in) or saved nicknames. No more copy-pasting long addresses.
🔑Biometric Security Unlock your wallet with Face ID or fingerprint. PIN protection and BIP-39 recovery phrase for full backup compatibility.
📝Private Memos Attach encrypted memos to transactions using COTI’s Garbled Circuits (MemoGC contract). The memo never leaves your device unencrypted.
<a href="https://medium.com/media/9079d6e5607b1da2cf3624d60fef0906/href">https://medium.com/media/9079d6e5607b1da2cf3624d60fef0906/href</a> Open Source Smart Contracts
CipherTrade’s privacy features are powered by two open-source Solidity smart contracts, both available on GitHub:
MemoGC Contract — Enables encrypted on-chain memos attached to transactions using COTI’s Garbled Circuits. The memo is encrypted client-side before being submitted to the contract.
ChatGC Contract — Powers the encrypted on-chain chat feature. Messages are encrypted locally using GC, then stored immutably on-chain. Only the sender and recipient can decrypt them.
Both contracts are publicly available at github.com/CipherTrade-Wallet - a testament to the project’s commitment to transparency and verifiability.
How the Security Works
CipherTrade’s architecture is built on a simple principle: the server should know as little about you as possible. Here’s what that looks like in practice:
Wallet Creation When you set up CipherTrade, your wallet is derived on your device using your password and Telegram ID. The process uses PBKDF2 with 100,000 iterations to generate a standard BIP-39 12-word recovery phrase — the same format used by MetaMask and most hardware wallets. Same inputs always produce the same wallet, so you can restore on any device.
Encryption All sensitive data is encrypted with AES-256-GCM (the same standard used by banks and governments) before being stored on your device. Your password is never stored in plaintext anywhere. An optional 5-digit PIN can be set for quick access, which wraps your password using Telegram’s secure storage.
Privacy Tokens COTI privacy token balances are decrypted entirely on your device. The AES key for privacy operations is generated on-chain once, then cached locally in encrypted form. The server never sees your private balances or decryption keys.
Who Has Access to What
DATA POINT WHO HAS ACCESS-------------------------------------------------------Private key / Mnemonic 🔒 Only you (client-side)Password 🔒 Only you (never stored plain)PIN-wrapped password 🔒 You + your device onlyWallet address 🌐 You + server (public)Private token balances 🔒 Only you (decrypted locally)Transaction history 🔒 Only you (client-side)Encrypted chat messages 🔒 Only sender & recipient
Recovery & Compatibility
CipherTrade generates a standard BIP-39 12-word recovery phrase. This means your wallet is fully compatible with MetaMask and other Ethereum-compatible wallets. You can reveal your recovery phrase at any time in settings (password required), and restore your wallet on any device by simply logging in with the same password.
Built by the Community, for the Community
CipherTrade was built by @iamsstef, a long-time COTI community member who saw an opportunity to make COTI V2’s privacy features accessible to everyone — directly inside the app millions already use daily. From wallet creation to encrypted on-chain chat, every feature was designed with one goal: making privacy easy without sacrificing security.
A desktop beta version has also been developed by community member Laurentiu, extending CipherTrade’s reach beyond mobile.
CipherTrade by the Numbers
Since launch, the community has already put CipherTrade to work: 57 users have created 62 wallets, executing nearly 1,500 transactions - including 1,288 sends and 209 token swaps. For a community-built tool, that’s real usage, not just a proof of concept.
Try CipherTrade
Ready to experience true self-custody inside Telegram?
Visit the CipherTrade website: ciphertrade.org
Open CipherTrade on Telegram: t.me/Ciphertrade_bot
Set a strong password and you’re in — your wallet is created instantly
Enable username discoverability to receive tokens from friends
Explore the open-source contracts: github.com/CipherTrade-Wallet
Have feedback or questions? @iamsstef is building in public - reach out to him on Telegram or join the COTI community channels to share your experience.
Disclaimer: CipherTrade is an independent project built by a COTI community member. It is not developed, maintained, or audited by COTI. Always safeguard your recovery phrase and exercise caution when interacting with any third-party application.
About COTI:COTI is the programmable privacy layer for Web3. Powered by high-performance Garbled Circuits (GC), COTI enables encrypted computation on public blockchains — delivering fast, low-cost, and compliant privacy for DeFi, payments, identity, governance, and AI applications.
For COTI updates and to join the conversation, be sure to check out our channels:
Website: https://coti.io/X: https://twitter.com/COTInetworkYouTube: https://www.youtube.com/channel/UCl-2YzhaPnouvBtotKuM4DATelegram: https://t.me/COTInetworkDiscord: https://discord.gg/9tq6CP6XrTGitHub: https://github.com/coti-io