The folks over at Tresor are fucking cowboys. Disgusting
Discussion
Unpopular opinion: the purpose of a #Bitcoin signing device is to protect your secret material from leaks during use. Ability to protect secret material at rest against an adversary with physical access is out of scope.
You packed some signal into that note. I also liked it when Samson Mow said something to the effect that digital PK storage devices should never be considered anything more than conveniences.
If thatβs the purpose of a signing device, Iβll still take the added bonus of a device that can provide security when physical access is compromised.
Security is measured in time. That is, the time it takes a knowledgeable attacker with the right tools and physical access to break in.
The best physical safes have time ratings on the order of tens of minutes. A TL-30 can withstand 30 minutes of attack, costs thousands of dollars, must be bolted to the floor, weigh 600+ pounds, and is considered top of the line by retail standards.
Expecting more than a few minutes of resistance against a knowledgeable attacker with the right tools and physical access is unrealistic. Especially considering that your attackers can be improving their techniques while your material is at rest.
#BlockstreamJade 