Thread - Nostr Hypermedia

thejohn thejohn@nostrplebs.com 1 year ago

So I wanted to deep dive on the old NONCE attack on hardware wallets, specifically whether the COLDCARD Mk4 leverages each of it's True Random Number Generators (TRNG) on both secure elements to generate random numbers and combine them using XOR. Checking out this blog post... and HOLY SHIT, my respect for COLDCARD's security just skyrocketed. They don’t just use both secure elements but they also throw in the Microprocessor’s TRNG and XOR them together, with all of them chatting over a few millimeters of copper via encrypted comms. And that’s just scratching the surface! No wonder @DETERMINISTIC OPTIMISM 🌞 loses his mind when people use Raspberry Pis as hardware wallets. This is the blog post:

COINKITE Blog

Understanding The COLDCARD Mk4 Security Model and Secure Element Use

It's worth a read if you want a wow moment 🙂

Replies (7)

Dion Wilson DionWilson@primal.net 1 year ago

Can anyone help me troubleshoot a Coldcard?

1 replies ↓

NostrGarden 1 year ago

Contact Coinkite, they have great customer service. What issue are you having?

1 replies ↓

Dion Wilson DionWilson@primal.net 1 year ago

Flashing screen with “verify” than blank screen with red light

1 replies ↓

stl1988 stl1988@stl1988.github.io 1 year ago

Coldcards would be good if they wouldn't randomly break after a short amount of time.

1 replies ↓

Dee dee@nostrplebs.com 1 year ago

Hey! If you’re having any issues with our products feel free to email us anytime and we can see how we can help.

1 replies ↓

stl1988 stl1988@stl1988.github.io 1 year ago

It's already too long after my Coldcard Q broke only 10 days after purchase. Would this still count? Also, I posted a few new device ideas on r/coldcard, one if them that could hopefully help to find and fix these breaking issues.

NostrGarden 1 year ago

Reach out to Dee:

Dee

#Bitcoin Support Specialist @Coinkite
🇨🇦 #CalculatorCrew ⚡️ Shadowy Super Coder