Cyph3rp9nk on Nostr: It uses secure element (I don't like it) although they have followed the trezor safe ...
It uses secure element (I don't like it) although they have followed the trezor safe model and use secure element with open firmware, so, in theory, you could test the specification and check all the inputs and outputs generated by the chip.
From my point of view, I rule out any HWW that uses secure element, except for what trezor is building with Tropic.
Secure Element are black boxes, by contract you can't even disclose the vulnerabilities found.
In cryptography there should be no trust.
Published at
2024-08-06 11:29:25Event JSON
{
"id": "12adadcbfd77615be262b6e4db167a3973b01abff8b82030ceba22406cc0ae17",
"pubkey": "fcf70a45cfa817eaa813b9ba8a375d713d3169f4a27f3dcac3d49112df67d37e",
"created_at": 1722943765,
"kind": 1,
"tags": [
[
"e",
"c0c5ef38606002ec9976530db604a2df0023f6fb85844754f6512faed72f1f32",
"",
"root"
],
[
"e",
"532b3011d1767235bea78ae21aed8d51609564b996ea6b0e5a8bc5a598fe15ea",
"",
"reply"
],
[
"p",
"fcf70a45cfa817eaa813b9ba8a375d713d3169f4a27f3dcac3d49112df67d37e"
],
[
"p",
"00000000abb6793b6b7da89bf42eb9e659e0d31aac9bb0fa34a99e268e708f47"
]
],
"content": "It uses secure element (I don't like it) although they have followed the trezor safe model and use secure element with open firmware, so, in theory, you could test the specification and check all the inputs and outputs generated by the chip.\n\nFrom my point of view, I rule out any HWW that uses secure element, except for what trezor is building with Tropic.\n\nSecure Element are black boxes, by contract you can't even disclose the vulnerabilities found.\n\nIn cryptography there should be no trust.\n",
"sig": "ca44e1e441cfb202c9afd4686b57c9ea0128e5059befbdf9a2cbff05f1ec3b9fe8f183cbf45b18f091338313d3217c21679693722bfe7a1fbfff1512f70cc819"
}