Alright here’s the relevancy. I’ll try to walk you through an example.
I install a RAT (backdoor) using a zero click exploit from a spam text or email. You have no knowledge anything happened and delete the spam. My exploit installs a logger that grabs your key next time you send a transaction and delivers the key back to my server. Suddenly your money is gone and don’t know how.
With a hww what I described above is impossible. When signing a transaction the key is never exposed to the internet connected device. Your model is no better than a hot wallet, because it is by definition a hot wallet. This is the core reason hww are more secure. Signing transactions from cold storage is how many of us have been using bitcoin for years.
Just because nothing bad that you know of hasn’t happened doesn’t make it a good idea to recommend taking the risk. If the vulnerability exists then why bother? Just use the safer option.
Your previous reply highlights a misunderstanding of the term “cold wallet”. It’s defined as a wallet living on a device INCAPABLE of an internet connection. If your keys are on a device that can connect to the internet, in any way, it is by definition a hot wallet.
At this point I’ve led you to the water my friend, it’s up to you to drink. Read up on the history of hww development and I believe you’ll have a better understanding.
bitbuds / TK
npub1ad…fqpla
2024-11-16 19:19:35
in reply to nevent1q…xz2y
Author Public Key
npub1ade7g0nka9jdz008z3k7yn8lrgev4l02z0dw2mzd6q5qfkppxq8sxfqplaPublished at
2024-11-16 19:19:35Event JSON
{
"id": "2d54261b8ce54cc15b75f3ab57183236f827cf0ad6abe3627a975d7b7d63f1bb",
"pubkey": "eb73e43e76e964d13de7146de24cff1a32cafdea13dae56c4dd02804d821300f",
"created_at": 1731784775,
"kind": 1,
"tags": [
[
"e",
"ef7ffe2f42679974a05ac80041d075dc99c40546770c31ee549fc71fc9cd3d58",
"",
"root"
],
[
"e",
"d12f162eadb8d9e9158920f1f295337ce371d84a6142bc7aaa4f8e25d282e498",
"",
"reply"
],
[
"p",
"f985d309197c805e1719c73185b574fc3ee407d7c1b6157dee99c6ace2599bbb"
],
[
"p",
"5ffb8e1b6b629c0e34a013f9298ebb0759b98a3d24029916321d5eb4255b6735"
],
[
"p",
"eb73e43e76e964d13de7146de24cff1a32cafdea13dae56c4dd02804d821300f"
]
],
"content": "Alright here’s the relevancy. I’ll try to walk you through an example.\n\nI install a RAT (backdoor) using a zero click exploit from a spam text or email. You have no knowledge anything happened and delete the spam. My exploit installs a logger that grabs your key next time you send a transaction and delivers the key back to my server. Suddenly your money is gone and don’t know how.\n\nWith a hww what I described above is impossible. When signing a transaction the key is never exposed to the internet connected device. Your model is no better than a hot wallet, because it is by definition a hot wallet. This is the core reason hww are more secure. Signing transactions from cold storage is how many of us have been using bitcoin for years. \n\nJust because nothing bad that you know of hasn’t happened doesn’t make it a good idea to recommend taking the risk. If the vulnerability exists then why bother? Just use the safer option.\n\nYour previous reply highlights a misunderstanding of the term “cold wallet”. It’s defined as a wallet living on a device INCAPABLE of an internet connection. If your keys are on a device that can connect to the internet, in any way, it is by definition a hot wallet. \n\nAt this point I’ve led you to the water my friend, it’s up to you to drink. Read up on the history of hww development and I believe you’ll have a better understanding.\n\n",
"sig": "b372f083b8c3eda1ac538b56a45fb0a1aa27c5dbf5a2ba122c365513b535a6f1e8c1acc9fa3c98a0ffd69748b5046848546a710f203d36b4df57f89a37445255"
}