Inspiration
Ticket scams, bot-driven bulk buying, and QR code sharing ruin event experiences. We wanted a system where tickets are truly personal, secure, and impossible to reuse or transfer unfairly.
What it does
SecureBuy is a secure ticketing platform that binds tickets to a user’s device and validates them with rotating, time-based QR codes. It prevents screenshots, sharing, and bot abuse, while offering AI-powered event discovery and assistance.
How we built it
We built SecureBuy with a React + TypeScript frontend and a Node.js + Express backend using MongoDB. Device binding happens at purchase, tickets use time-based tokens for validation, scanners verify authenticity, and Google Gemini powers AI hype generation and a concierge chat.
Challenges we ran into
Configuring TypeScript with ES modules, handling device binding securely, syncing rotating QR tokens, and integrating Gemini AI correctly were major challenges. Debugging frontend–backend integration also took careful iteration.
Accomplishments that we're proud of
Screenshot-proof, rotating QR tickets
Device-bound ticket ownership
Secure scanner and organizer workflows
AI-powered event hype and concierge
Fully working end-to-end system
What we learned
We learned how to design fraud-resistant systems, manage modern TypeScript tooling, integrate AI in a practical way, and build secure full-stack applications under real-world constraints.
What's next for SecureBuy
Next, we plan to add biometric verification, offline scanning support, stronger anti-bot measures, analytics for organizers, and optional blockchain-based ticket ownership.
Log in or sign up for Devpost to join the conversation.