Replying to Avatar jimbocoin 🃏

#Bitcoin key security levels:

Level 0: Not your keys.

Level 1: Hot wallet (keys on online device).

Level 2: Single-sig cold wallet (keys on eternally quarantined hardware)

Level 3: Single-sig cold wallet w/ passphrase

Level 4: Multisig

Level 5: Multi-vendor multisig

Level 6: Multi-vendor multisig w/ passphrases

Level 7: Multi-vendor multisig w/ passphrases, geographically distributed

Each level increases your security against particular vulnerabilities, but complicates your setup. Find the highest level you can confidently operate.
83
Shawn C. 2y ago

Dedicated vs stateless HWW is another decision tree of risk management. I am leaning toward stateless and making a SeedSigner or doing Tails/Electrum for a stateless PC instead of HWW. Thoughts?

Reply to this note

Please Login to reply.

Discussion

Avatar
jimbocoin 🃏 2y ago

To me, there’s no big difference between stateless and stateful, because the purpose of a signing device is to protect the keys from leaks during use. In between uses, other key security measures apply (physical security, operational security).

I would not reuse a signing device for multiple seeds though. Especially seeds that make up a wallet quorum. One hopes that each device’s erase function works, but it’s safer to assume that they’re each forever stateful.