📅 Original date posted:2013-11-16
📝 Original message:On 17/11/13 01:42, Timo Hanke wrote:
> p.s. The question about auditing entropy would only apply to the generator,
> not the wallet. Is it yet documented how Trezor proves that external
> entropy was used?
We'll probably use the most straightforward way:
a) trezor prints entropy A on a display (probably in hex format, this
step is triggered by sending a special flag in initialize message)
b) trezor receives entropy B from external source
c) trezor creates sha256(A + B) and uses that as a seed
d) trezor prints used seed on a display (probably in BIP39 format)
e) user can check on a trusted computer that everything was ok
(note that steps b-d are the same regardless of whether the special flag
was set)
--
Best Regards / S pozdravom,
Pavol Rusnak <stick at gk2.sk>
Pavol Rusnak [ARCHIVE] /
npub1wc…3hnuq
2023-06-07 15:08:34
in reply to nevent1q…zmrv
Author Public Key
npub1wccnjljxnarlx564vuc37hmuzuffurljevjnmuq4u0vjmh7e933sn3hnuqPublished at
2023-06-07 15:08:34Event JSON
{
"id": "c4e5cf7467db7c23864bad25af04e33cd6434ef4c825a976bf93e186da4521dc",
"pubkey": "7631397e469f47f3535567311f5f7c17129e0ff2cb253df015e3d92ddfd92c63",
"created_at": 1686150514,
"kind": 1,
"tags": [
[
"e",
"29113580fa19bfa912e033228b5744547f424bd6ae7dcc6dbdef306e0b87998e",
"",
"root"
],
[
"e",
"11389d9e6286c6eded116ead48bc715ff13cb1ca77208836516d7909ca8494c5",
"",
"reply"
],
[
"p",
"6b41dfcce682764d40c00fd6580a99614b6bbe8a8332085dea07afbc47ba9e8f"
]
],
"content": "📅 Original date posted:2013-11-16\n📝 Original message:On 17/11/13 01:42, Timo Hanke wrote:\n\u003e p.s. The question about auditing entropy would only apply to the generator,\n\u003e not the wallet. Is it yet documented how Trezor proves that external\n\u003e entropy was used? \n\nWe'll probably use the most straightforward way:\na) trezor prints entropy A on a display (probably in hex format, this\nstep is triggered by sending a special flag in initialize message)\nb) trezor receives entropy B from external source\nc) trezor creates sha256(A + B) and uses that as a seed\nd) trezor prints used seed on a display (probably in BIP39 format)\ne) user can check on a trusted computer that everything was ok\n\n(note that steps b-d are the same regardless of whether the special flag\nwas set)\n\n-- \nBest Regards / S pozdravom,\n\nPavol Rusnak \u003cstick at gk2.sk\u003e",
"sig": "90047be49fefac793aa43ff1087a58687194c528746b4056be6bc1c618d6d1e9a1d9e8148909e9442a4c17a5d932a0b4bf86c36bc6277c35c6a09f42170ad8de"
}