Replying to Avatar semisol

That feature is basically the same as 2-of-2 or passphrases, and the problems with 2-of-2 have been pretty well documented by now.

I did my own research and architecturally it is significantly flawed. There are many weak points where you could be getting a backdoored device. The used secure elements are weak and outdated.

“Don’t trust, verify” goes much deeper than reading some marketing claims about “ultra secure” from the vendor and I see too many people falling for it. New Trezor for example is “quantum ready” but any device within the last 15 years is as well.

Personally I’d recommend something like a SeedSigner with a proper multisig and a BitBox maybe.
Avatar
u32Luke 2mo ago

nostr:nprofile1qqs99d9qw67th0wr5xh05de4s9k0wjvnkxudkgptq8yg83vtulad30gpz9mhxue69uhkummnw3ezumrpdejz7qgkwaehxw309askwemj9ehx7um5wghxcctwvshsz9thwden5te0wfjkccte9ejxzmt4wvhxjme0e68ksk do you have thoughts on javacards? e.g. satochip

Reply to this note

Please Login to reply.

Discussion

Avatar
semisol 2mo ago

In terms of DX, I do not like it.

In terms of security, it's pretty good. I cannot comment on any specific applets like Satochip but the underlying JCOS is solid.

Avatar
u32Luke 2mo ago

Thx 👍