Inspiration

Ticket scams, bot-driven bulk buying, and QR code sharing ruin event experiences. We wanted a system where tickets are truly personal, secure, and impossible to reuse or transfer unfairly.

What it does

SecureBuy is a secure ticketing platform that binds tickets to a user’s device and validates them with rotating, time-based QR codes. It prevents screenshots, sharing, and bot abuse, while offering AI-powered event discovery and assistance.

How we built it

We built SecureBuy with a React + TypeScript frontend and a Node.js + Express backend using MongoDB. Device binding happens at purchase, tickets use time-based tokens for validation, scanners verify authenticity, and Google Gemini powers AI hype generation and a concierge chat.

Challenges we ran into

Configuring TypeScript with ES modules, handling device binding securely, syncing rotating QR tokens, and integrating Gemini AI correctly were major challenges. Debugging frontend–backend integration also took careful iteration.

Accomplishments that we're proud of

Screenshot-proof, rotating QR tickets

Device-bound ticket ownership

Secure scanner and organizer workflows

AI-powered event hype and concierge

Fully working end-to-end system

What we learned

We learned how to design fraud-resistant systems, manage modern TypeScript tooling, integrate AI in a practical way, and build secure full-stack applications under real-world constraints.

What's next for SecureBuy

Next, we plan to add biometric verification, offline scanning support, stronger anti-bot measures, analytics for organizers, and optional blockchain-based ticket ownership.

Built With

Share this project:

Updates