search

shield-halvedShielded Write

Encrypted transactions — lifecycle, security parameters, and the low-level API

A shielded write encrypts calldata, builds a TxSeismic (type 0x4a), signs it, and broadcasts it.

hashtag
How it works

When you call contract.write.someMethod(...), the SDK:

  1. Fetches your nonce and the latest block hash from the node

  2. Builds a TxSeismic (type 0x4a) with encryption metadata

  3. Encrypts the calldata using AES-GCM with a shared key derived via ECDH between your ephemeral keypair and the node's TEE public key

  4. Signs and broadcasts the transaction

The encrypted calldata is bound to the transaction context (chain ID, nonce, block hash, expiry) via AES-GCM additional authenticated data, so it can't be replayed or tampered with.

hashtag
Basic example

import os
from seismic_web3 import PrivateKey, SEISMIC_TESTNET, SRC20_ABI

pk = PrivateKey.from_hex_str(os.environ["PRIVATE_KEY"])
w3 = SEISMIC_TESTNET.wallet_client(pk)

token = w3.seismic.contract("0xYourTokenAddress", SRC20_ABI)

tx_hash = token.write.transfer("0xf39Fd6e51aad88F6F4ce6aB8827279cffFb92266", 1000)
receipt = w3.eth.wait_for_transaction_receipt(tx_hash)
print(receipt["status"])  # 1

hashtag
Security parameters

Every shielded transaction includes a block-hash freshness check and an expiry window. The defaults are sane (100-block window, random nonce, latest block hash), but you can override them per-call:

Security parameters work on both .write and .read calls.

hashtag
Low-level API

When you need manual control over calldata — contract deployments, pre-encoded data, or bypassing the ShieldedContract abstraction:

hashtag
Debug mode

.dwrite sends a real transaction and also returns plaintext/encrypted views for debugging:

hashtag
Async variant

hashtag
See Also

PreviousGuidesNextSigned Reads

Last updated