Nostr Web Client

I want to know if air gapped is actually that much better than. Bluetooth or is it being overly paranoid....

To my understanding no matter what as long as you have your seed phase and a secret word if you choose your good ...

This would be in regards to a:

**Blockstream jade** nostr:nprofile1qqsfy229w70e8lgtxavlz9t78k06yrel6fxyhreteafqet8kfxhhwmg2c6av2

Side question from the videos I watch with Jade being air gapped do I need that initial QR code every time I use it ?

______________________________________

#grownostr #Zapathon #plebchain #babechain #bookstr #tunestr #filmstr #healthstr #proofofwalk #hikestr #carnivore #steakstr #touchgrass #memestr #devs #foodstr #zapcooking

#asknostr

Reply to this note

Please Login to reply.

Discussion

M0053 7mo ago 💬 1

I can't say I know all of the possible attack vectors of Bluetooth, but it's probably easier to intercept that and it would be to read the QR codes on two devices from a distance.

In the vast majority of practice, I'm not sure the difference would be that great.

As to scanning the QR, If you're using your Jade statelessly, then you will have to scan it every time. But if you're storing your seed in the jade (encrypted), then you will only need the pin.

BTC-BACKPACKER 7mo ago

Hey 👋 thanks for the input man I really appreciate your time . Yeah I'm all about security and Bitcoin 💯 but I feel like there is a paranoia at times and it's a little annoying....

Personally BT seems good to me but wanted to get others opinions ( discussion ) not saying it will change my mind but I like to get others input.

zataara⚡️🥥 7mo ago 💬 1

PSBTs have significantly lower attack vectors than Bluetooth or NFC.

Overly paranoid with your Bitcoin is the right approach!

BTC-BACKPACKER 7mo ago

What's PSBTs ?

zataara⚡️🥥 7mo ago 💬 1

Partially Signed Bitcoin Transactions.

Allows you to create a transaction on a device connected to the internet. Transfer it to an air gapped device and sign it then return it to the original device to broadcast.

BTC-BACKPACKER 7mo ago

Do these individuals need to be within proximity? Sounds like it ...

zataara⚡️🥥 7mo ago 💬 1

When you say individuals do mean devices? Then Yes. I use my MacBook with Sparrow Wallet to create and broadcast and then a Coldcard Q to sign it. The PSBT is transferred on a MicroSD card between the two.

BTC-BACKPACKER 7mo ago

Sorry I'm probably not explaining it right ... So if this was to happen where someone wanted to try and intercept my so called transaction they would need to be within proximity to my transaction....

And if they are not then they cannot intercept this ..

zataara⚡️🥥 7mo ago 💬 1

With PSBTs none of this is happening "over the air" like it does with NFC and Bluetooth so it cannot be intercepted.

I believe its possible with NFC or Bluetooth but I'm sure intercepting the transaction activity is much more complicated than simply being in proximity. I don't know for sure however.

BTC-BACKPACKER 7mo ago

So basically it's unknown.... Because I've heard more so over and over that the individual / S need to be with proximity and that's the point I'm trying to make to most people .... And nobody can state it being true or not ...

With that being said it's just speculation.... 🤔

zataara⚡️🥥 7mo ago 💬 1

Yeah potentially. Best to choose the solution with the least amount of speculation though when we are talking about protecting our sats.

I’m sure tech will or is already developed that can be placed in high activity areas that is listening for NFC/Bluetooth data and just farming it.

The issue is that we don’t know if that’s the case, nothing on your device is aware if this is happening, and with that knowledge or lack thereof it’s best not to risk it and take the safest route. That’s what I’m doing at least.

BTC-BACKPACKER 7mo ago

Hey man great conversation 😁 so what is your take on me having the seed phase and the additional word for my security.... Are you saying they can bypass this ? 🤔

It seems like a far shot ....

zataara⚡️🥥 7mo ago 💬 2

No this is a solid setup! Just store it very securely, stamp it on metal and memorize it.

Don’t leave state on your Jade. Re-enter your seed every time you need to transact with your wallet. I know it tedious on there to use the scroll wheel to do this but it’s much safer.

Consider moving to a 2 of 3 multisig as your stack grows someday.

BTC-BACKPACKER 7mo ago

Thanks for the insight..

Question: I didn't know I could make it so I need to enter my seed every time I make a transaction in the jade I must have missed this ..

zataara⚡️🥥 7mo ago 💬 2

By default Jade should save your seed, and you just need to enter your 6 digit passcode to unlock it.

I believe you have to choose to erase it each time. It’s not required but it’s certainly safer to do so.

BTC-BACKPACKER 7mo ago

Thank you for the great conversation 😊

zataara⚡️🥥 7mo ago 💬 1

Hey thank you! Lets do it again sometime!

BTC-BACKPACKER 7mo ago

BTW you hav va Great feed 👍 keep it up 😀

BTC-BACKPACKER 7mo ago

From Grok :

Stateless Signing Mode: The person you spoke to might be referring to using the Jade as a stateless signing device, which is an advanced, optional mode. In this configuration, the Jade does not store the seed phrase on the device. Instead, you manually enter the seed phrase (or scan a SeedQR code) each time you start a session to load the wallet temporarily. This mode is typically used for enhanced security in air-gapped setups or for users managing multiple seeds (e.g., in a multisig wallet). Once the session ends (e.g., the device is powered off), the seed is not retained, and you would need to re-enter it for the next session. This is not the default setup and is generally used by advanced users who prioritize air-gapped security over convenience.

That's cool !

zataara⚡️🥥 7mo ago

Yessir this sounds correct!