Replying to Avatar Cyph3rp9nk

Secure elements and hardware wallets

Why are secure elements used in Hardware Wallets?

Plain and simple for UX.

If your encryption depends on a numerical PIN of a few digits you are screwed.

The secure element adds a layer of encryption so that in case you can extract the seed from the chip you can not attack it by brute force.

If you use a sufficiently strong passphrase or if hardware wallets allow you to enter a password for encryption, there would be no need for secure elements, it's all about UX.

On the other hand, in cryptography you should never trust. Secure elements are a black box, and by contract you can't even publish their vulnerabilities. What's the point of using encryption if you're trusting a third party? that's useless.

It is true that there are solutions like coldcard where two secure elements are used so you don't have to trust them, but I still think it's stupid, I don't care about the UX, I want my bitcoins to be safe.

When you understand this, you realize how stupid the hardware wallet industry is.
Avatar
The Bird 1y ago

Good morning. Recommendations for the teck illiterate?

Reply to this note

Please Login to reply.

Discussion

Avatar
Cyph3rp9nk 1y ago

Use only hardware wallets with no secure element but be clear on how to make them non-vulnerable.

- Jade (not vulnerable)

- trezor T (vulnerable, must use passphrase or enable sd protection)

- Next trezor with tropic chip (open hardware)

Avatar
The Bird 1y ago

So cold card is a bust?

Avatar
Cyph3rp9nk 1y ago

No, but it just doesn't meet my standards.

Avatar
The Bird 1y ago

What exactly is the secure element. I don't understand how it works

Avatar
Cyph3rp9nk 1y ago

Let's say that a secure element is like a safe that in theory cannot be hacked, but this is false, its robustness is based on obfuscation.

For the customer it means that you have to trust it.

Avatar
The Bird 1y ago

Okay thanks

Avatar
The Bird 1y ago

I have a jade on the way to try out anyways