Bill Cypher on Nostr: Worth making a note for #bitcoin as well as guns. Here are my first thoughts about ...
Worth making a note for #bitcoin as well as guns. Here are my first thoughts about how this affects bitcoin security...
We can assume all other gun safe vendors have similar backdoors and would also comply.
Single sig in a commercial safe cannot be trusted.
Rogue employees are a risk even if you have no valid warrants.
Ultimately I think this only leaves multi-sig with some level of security through obscurity about where the keys physically are.
I think coldcard with a pin wins here if you insist on single sig. You can hide the metal seed backup in a secret location and hope the pin saves you
Ephemeral key systems like seedsigner mean keeping your seed handy in plain text, in that case safe entry means game over.
Passphrases can help too but must be secured in a place and way that safe access does not leak them. Also a place that would not be subject to the same warrant.
Anyone else have points to add?
TIL about gun safe backdoors
Published at
2023-09-06 19:56:23Event JSON
{
"id": "099c3b0cf04b413e0f49d11dd74b27ca67aa2e2526ebdc00a36b9c417fcd97f6",
"pubkey": "010df0c948fe9ab54d2cb7ea420ffa08d57958981b6ea68e83aaa7eb2dd3f05a",
"created_at": 1694030183,
"kind": 1,
"tags": [
[
"e",
"7b66da734369a576139825c15f4c47aade3df78a9f04876405b4c264eb45f357",
"",
"mention"
],
[
"p",
"a3eb29554bd27fca7f53f66272e4bb59d066f2f31708cf341540cb4729fbd841",
"",
"mention"
],
[
"t",
"bitcoin"
],
[
"t",
"bitcoin"
]
],
"content": "Worth making a note for #bitcoin as well as guns. Here are my first thoughts about how this affects bitcoin security... \n\nWe can assume all other gun safe vendors have similar backdoors and would also comply. \n\nSingle sig in a commercial safe cannot be trusted. \n\nRogue employees are a risk even if you have no valid warrants. \n\nUltimately I think this only leaves multi-sig with some level of security through obscurity about where the keys physically are. \n\nI think coldcard with a pin wins here if you insist on single sig. You can hide the metal seed backup in a secret location and hope the pin saves you\nEphemeral key systems like seedsigner mean keeping your seed handy in plain text, in that case safe entry means game over. \n\nPassphrases can help too but must be secured in a place and way that safe access does not leak them. Also a place that would not be subject to the same warrant. \n\nAnyone else have points to add? \n\nnostr:nevent1qqs8kek6wdpknftkzwvzts2lf3r64h3a779f7py8vszmfsnyadzlx4cpp4mhxue69uhkummn9ekx7mqzyz37k224f0f8ljnl20mxyuhyhdvaqehj7vts3ne5z4qvk3efl0vyzqcyqqqqqqg9pc9yq",
"sig": "b1738fc8bd250d360b3dce338739be0543830b1f8002077061364b93a9363ffec17294bc243b61ab5567c226799c1e681213e6f68995800a7ace5c33272f95fc"
}