Avatar
/dev/fd0 1y ago

This is the architecture of Qubes OS. It can be used to create secure vaults WITHOUT covenants. One VM to use covenants and get pre-signed transactions based on output restrictions. Another VM which generates a private key, creates pre-signed transactions and securely destroy the key.

Reply to this note

Please Login to reply.

Discussion

Avatar
BitcoinEagle.dev 1y ago

What about the HW spyware module inside CPU that sends secrets to NSA?

Avatar
/dev/fd0 1y ago

https://www.qubes-os.org/hcl/#purism_librem-13-v2_i7-6500u_integrated-graphics-hd-520_kyle-rankin_r4-0

Avatar
BitcoinEagle.dev 1y ago

Trezor will be safer even without vault covenant. Adding complexity and reducing security doesn't seem like a good direction