General purpose computing platforms are not secure enough for your bitcoin.
Raspberry PI is just another general purpose computer, but shittier.
Hating on the messenger won't change that.
Security ppl will always have strong differing opinions, but most agree on the above.
In what way? A node software on a Pi is not a secure way of interacting with the timechain and transacting?
RPI as HWW.
I feel like you want to say SeedSigner.
That's just one project that's makes poor design decisions with big claims.
Throw Jade in there was well?
ESP32 is not a secure platform. But it's cheap. So they made a trade off to at least call their servers for security. Not my preference but works for some ppl.
It's better for us all if NVK spend his time protecting the private keys of the coldcard firmware signing. Bc if those get out, we are all holding ROOTED coldcards. And which might have already happened. 🤷
100% - the hardware should be completely open. it's so low requirement, really, a commodore 64 could do the job.
Just carry the seeds in your pocket man, it’s stateless
what if it’s only ephemeral?
It's not probably ephemeral and cannot attest it's firmware
My first computer was MSDOS command line only. You could basically use it like a calculator, But not much else. Then windows and apple after computers were trendy in the 90s. The raspberry is good for people who never went through that progression and have no idea the App Store is actually just numbers of code with ux output but definitely not my first choice of everyday computer platform. The median user computers are shaking out these days. There are only minor differences in the 5th generation iPhone and the current model. Ubuntu os is for the most technical people, But basically a windows platform that scientists use. Linux is the easiest to hack and has the most bugs overall so shitty would be a fair statement.
for the node, but not for the wallet.
there's been plenty of disagreement with the monolithic build of bitcoin core in this matter, but you can always just not use it.
I’ve gotten rid of all of my raspberry pi nodes.
How about for a node NVK? Motherboard with CoreBoot to try and neutralize Intel ME, then load Start9 OS? Or do we just assume the NSA has backdoors into all our systems aka we can secure our private keys (coldcard) but privacy from the gov is fucked.
nostr:npub126ntw5mnermmj0znhjhgdk8lh2af72sm8qfzq48umdlnhaj9kuns3le9ll
nostr:npub17tyke9lkgxd98ruyeul6wt3pj3s9uxzgp9hxu5tsenjmweue6sqq4y3mgl said it best, act like frenemies, but you continue acting dishonestly.
nostr:note1ekga2j4mgfpxezuz7rjgd85lu3uhtd3npaaz2984s65plcfrw27s0jzly2
How do you feel about running a full node on a raspberry pi and using an air-gapped coldcard as a signing device?
I wouldn't give a cent to Broadcom. But at least the bitcoin is on the RPI on your setup.
Running code you haven't verified isn't going to protect you no matter what hardware you're using.
Running only code you have verified (using airgaps to make the verification of information integrity between devices easier) however, will regardless of the hardware.
If you have a problem with the glacier protocol, you should publish your write-up
(And don't use USBs for information transfer in case that wasn't obvious)
Are you talking about just using as a node to verify transactions or about storing seed?
What I'm saying is I already use a coldcard airgapped and seed is offline only. Wasn't sure if you were just talking about choice of node hw
Storing seeds, signing transactions.
nostr:npub17tyke9lkgxd98ruyeul6wt3pj3s9uxzgp9hxu5tsenjmweue6sqq4y3mgl is great
Don’t let him sell you on this idea
The microcontrollers and secure enclaves in all the hardware wallets are general purpose computing platforms. They can run arbitrary code and are popular products specifically because of their versatility.
Conceivably the “firmware” for these devices could even become as complex as Raspberry Pi OS. And some of them already have quite complex software.
Don’t get me wrong, I prefer a hardware wallet, but I think we should stick to more concrete evaluations of security.
RPi is interesting from a security perspective because of its ubiquity. It’s an all in one system with very few hardware configurations and well studied. There may not be a more studied system in existence.
