Subnostr

anonymous 2y ago

Hey #bitcoin community. I see a lot of concern about ledger, and in more general that #malicious firmware could be a problem. Are there any hardware wallets that have fully mitigated the "evil firmware" vector?

I read for example sometimes that firmware is installed at later time as a way of demonstrating that you as owner are the first to touch the device. Are there other variants?

I'm curious to understand what level of security we're at here.

Reply to this note

Please Login to reply.

Discussion

mark tyler 2y ago

The absolute best mitigation is fully open source firmware, reviewed by many, not new, image built from the GitHub by the user and installed themselves on hardware that nobody would be able to economically backdoor. Seedsigner is on its way to doing that. Coldcard is next best.