I’d like to know that too bc I was just about to buy a Cold Card and now I wonder if I should get the Jade.
Have there been any documented incidents of a “nonce covert channel attack”? How does ColdCard address this?
https://bitbox.swiss/blog/how-almost-all-hardware-wallets-can-steal-your-seed/
Discussion
Buy both 😁
Just use the cold card with psbts and a coordination app like nostr:npub1hea99yd4xt5tjx8jmjvpfz2g5v7nurdqw7ydwst0ww6vw520prnq6fg9v2 sparrow and broadcast via a public server over tor like nostr:npub18d4r6wanxkyrdfjdrjqzj2ukua5cas669ew2g5w7lf4a8te7awzqey6lt3 or nostr:npub1jg552aulj07skd6e7y2hu0vl5g8nl5jvfw8jhn6jpjk0vjd0waksvl6n8n - don’t use companion apps! Or multisig if you’re really worried about this tiny chance threat model. I could be wrong but this seems like a nothing burger by bitbox. nostr:npub1az9xj85cmxv8e9j9y80lvqp97crsqdu2fpu3srwthd99qfu9qsgstam8y8 can you verify random nonce on cc?