Provably Fair

How we guarantee neither player — nor us — can rig the outcome.

The Problem With Online Gambling

Traditional online casinos ask you to trust them. "Our RNG is certified," they say. But you have no way to verify this. The house could be cheating, and you'd never know.

Even worse: in PvP games, the server knows both players' cards. A malicious operator could feed information to a favored player, or simply rig outcomes.

The core issue: When a central server controls randomness, you're trusting them not to cheat. History shows this trust is often misplaced.

Our Solution: Commit-Reveal

We use a cryptographic technique called commit-reveal that makes cheating mathematically impossible. Here's the key insight:

Both players contribute randomness to shuffle the deck.
Neither can predict or control the outcome.

It's like two people each bringing half a password. Neither knows the full password until both reveal their half — and by then, it's too late to change it.

Step by Step

Phase 1: Commit

🎲

Player A generates
Secret A

🔒

Creates hash
(one-way function)

📤

Submits hash + bet
to blockchain

Each player generates a secret by signing a message with their wallet. This signature is hashed to create the secret — it's yours and only yours. Only the hash of that secret goes on-chain. A hash is a one-way function — you can't reverse it to find the original secret. The blockchain stores both hashes and holds both bets in escrow.

Phase 2: Reveal

🔓

Player A reveals
Secret A

✓

Contract verifies
hash matches

🔓

Player B reveals
Secret B

Once both players have committed, they reveal their original secrets. The smart contract verifies that each secret matches its hash. You can't change your secret after seeing your opponent's — you already committed to it.

Phase 3: Resolution

Secret A+Secret B=Combined Seed

⬇️

Deterministic Deck Shuffle

The two secrets are combined to create a seed. This seed determines exactly how the deck is shuffled. The same seed always produces the same shuffle — it's pure math. The game plays out, and the winner is paid automatically.

Why Neither Player Can Cheat

🎯 Can Player A predict the outcome?

No. Player A doesn't know Player B's secret until both have committed. The final deck depends on BOTH secrets combined.

A's secret alone → Useless without B's secret

🎯 Can Player A change their secret?

No. They already submitted the hash of their secret. If they try to reveal a different secret, the hash won't match, and the contract rejects it.

Different secret → Different hash → Rejected

🎯 Can the house rig the game?

No. We never see the secrets until both are revealed. The outcome is determined by player-provided randomness, not ours. We literally cannot influence results.

House has zero input → Zero control

🎯 What if someone refuses to reveal?

There's a 5-minute timeout. If you don't reveal in time, you forfeit and your opponent wins the pot. No incentive to stall.

Don't reveal → Auto-forfeit → Opponent wins

Verify It Yourself

Every game is recorded on the Base blockchain. You can verify any game result using public data:

Find the game on BaseScan

Every game has a unique ID. Look up the transaction to see both secrets.

Combine the secrets

Run them through the same hash function we use to get the seed.

Simulate the shuffle

Use the seed to shuffle a deck using the Fisher-Yates algorithm.

Play out the game

The cards and winner will match exactly what happened on-chain.

Open source: Our smart contract code is verified and public. Anyone can audit it. Don't trust — verify.

Common Questions

What about the 5% fee? Where does that go?

The fee is taken from the winner's payout (not both players). It covers protocol development, infrastructure, and season prize pools. The fee is hardcoded in the smart contract — we can't change it without deploying a new contract.

What blockchain do you use?

Base — a Layer 2 network built on Ethereum. It inherits Ethereum's security while keeping transaction fees low (usually under $0.01). Your funds are secured by Ethereum's validator network.

Do you hold my funds?

Never. Funds go directly from your wallet to the smart contract (escrow) and then to the winner. We have no ability to access, freeze, or redirect your money. The smart contract is the only thing that touches your funds.

Has the contract been audited?

The contract code is open source and verified on BaseScan. We're pursuing formal audits as volume grows. The commit-reveal pattern is battle-tested and used throughout DeFi.

What happens if the site goes down?

Your funds are on the blockchain, not our servers. If a game is in progress, you can still interact directly with the smart contract to reveal your secret or claim a timeout. The frontend is just a convenience layer.

What if I clear my browser or switch devices?

Your secret is derived from your wallet signature, not stored randomly. When you create or join a game, you sign a message like "0x-War Game #123". That signature becomes your secret.

This means you can recover your secret on any device by signing the same message again. Same wallet + same game = same secret.

Why is this more trustless?
You provably generate your own randomness using your wallet. No server involvement. No localStorage dependency. Pure cryptographic derivation.