I would recommend hardware by: SeedSigner, Coin Kite or Foundation.
Discussion
I was just looking at that SeedSigner. Going the DIY route works out to be about $10 cheaper than buying an assembled version. It looks like a nifty little device, simple, straightforward, and purpose-driven. I think my only concern with it is there's no secure element.
Considering that the assembled version plus the necessary MicroSD card is about the same price as the Portal (about $95), I wonder if it would be a better value, and a more secure option to just go with the Portal. On the other hand, the Portal is NFC-only, and doesn't provide any QR functionality for air-gapped operation, and no MicroSD for backup and moving transactions between the device and your computer or phone. It's a tough call, and I'm getting lost in the weeds!
jus use electrum..
I'm talking about hardware signers, not a software wallet. I already use Nunchuk and don't plan on switching. And I use Mycelium as a watch-only backup.
multi sig, you prob don't need an HSM for that. Cause it's multi sig. And cut the wifi chip. That's it. Ez.
There's no wifi chip on either the SeedSigner or the Portal. SeedSigner uses a no-communication Pi Zero, and the Portal's open-source board only includes NFC capabilities.
Inhave both single-sig and multi-sig wallets. With the multi-sig wallets, I want to have a 2/3 multi-vendor hardware signing configuration. I've already got a Tapsigner for one key, I want a different wallet/signer for the 2nd key, and the 3rd key will be encrypted and stored offline.
I can't seem to find any pi zero without chip π
I would so run electrum on this π
Would you do that with Pi OS? Or does electrum have their own OS for use with Pi?
raspbian with python deps yeah. you can transfer the deps w a USB stick
don't loose ur corn. Use 2/4.
What difference does the additional key make? If I have one encrypted offline key, shouldn't that be sufficient? Or is there some other benefit to using 4 keys that I'm not aware of?
The more keys you have, the less chance you 'loose' them
But the tradeoff is the additional attack surface, no?
Pi has an RNG chip, you can use offline. So.. id error on the side of loosing vs actually being hacked.
I do not like the complexity of multi sig. It is overkill imo.
I think it's a necessity. I used to live on a boat, and nostr hates this but, no boating accident gonna take me out π
Life on a boat would have its challenges. My single sig keys are safe for at least a millennia. Iβm good!
It's also theft .. no one device, or place, is good enough.
What do you mean by βitβs also theftβ?
theft, fire, loss, etc. best to spread out. And also be protected from theft. they can't steal more than 1
Iβve mitigated those risks.
not if I theive a pic of your steel plate seed tho π
I saw a metal plate system somewhere that came with two plates, and you need both plates to read the seed. One plate was completely blank, and the other had the grid and little holes for each grid square. The idea was that you'd put the two plates together and punch your seed letters, then seperate the plates and store them in different locations. The blank plate would have all the punch marks but no notation or indication of the letters, and so you'd need the other plate to reveal what the punch marks represented. I was impressed with the ingenuity.
Single-sig with two metal backups is probably sufficient in practical terms. Multi-sig may be technically more secure and safe on paper. I think it really depends on your risk tolerance, and how much complexity you're willing to handle.
It's not too bad. Just open 4 electrum wallets
I see the value, but I also recognize the added complexity. For a hot wallet, I think single-sig makes more sense. But for cold storage, multi-sig is probably the smarter choice.
That Pi Zero is cheap AF. And that supplier also has the solderless GPIO pins for like $7. Add the camera and you're good to go for under $30 including shipping. That's a great deal if you ask me. If you get one, I'd love to see a video walk through of your installation of Electrum. That sounds like a very cool project.