Nostr Web Client

What’s the difference? More DIY and cheaper?

The lack of a “secure element”. While coldcards implementation is so laughably better than ledger, it’s not a fair comparison (there’s just zero competition to CC in this respect), a stateless design has the advantage of no illusion to security. When you pull the power to a seedsigner, your seed isn’t stored on the device, thus falling back to your storage design’s native security assumptions (where/how you store your seed(s)).

Granted, the cost to attack a cold card’s stateful design is $250k+, so I’m really arguing about something out of scope for many.

However, the planned SS port to esp32 hardware further lowers the cost, adds optionality, and increases supply chain attack resilience (the argument is “what if someone hw hacks the suppliers”; search “supermicro bloomberg” for an example).

Reply to this note

Please Login to reply.

Discussion

isaacsumner 2y ago

Does Cold Card work with a piece of desktop or Android software? If so, what is their software called?

Dimi 2y ago

It works with practically all bitcoin-only software. I recommend Sparrow.

Dimi 2y ago

https://github.com/sparrowwallet/sparrow

isaacsumner 2y ago

Is it open source? Why do you like it?

Dimi 2y ago

Yes, although a downside to me is Java (personal preference). I like it because of its usability. It’s “user-dumb” interface assumption means that it presents all relevant information in a very clear way.