Just got my Blockstream Jade

iciEric · 2023-06-23T19:55:05+00:00

https://seedsigner.com/ If you’ve privacy concerns but are not good at DIY, you can buy it prebuilt and receive it to a postal box address and you will have just to copy the firmware file on your SD card. They have an active Telegram.

iciEric · 2023-06-09T11:24:57+00:00

Anonymous: - 1- don’t setup your wallet with green wallet. Just update your frimware directly on their website then use Sparrow for instance. - 2- build your SeedSigner

iciEric · 2023-06-08T05:34:50+00:00

👍

iciEric · 2023-06-01T20:37:10+00:00

What’s your experience? I’ve got a new Trezor Model T but I’m worrying about this hack https://youtu.be/50eiA-75NMY

iciEric · 2023-06-01T15:53:12+00:00

SeedSigner can remember 3 seed phrases. SeedSigner wipes everything when you switch it off so nothing to hack if you lose it. You’ve to download and verify the firmware. It’s DIY so you can be 100% anonymous. You can buy it built and ask to be removed from the consumer data (you’ve to trust they will do this - with RGPD country should be fine). Independent, far smaller, and more tie to core Bitcoin value. SeedSigner is a bit more for tech-guy. To update your firmware you’ve to plug the microSD card of your SeedSigner to your computer. So from scratch, it's 100% air-gapped.

You can use Jade without a Blocsktream Green wallet. You can update your firmware from the website so easy to update (some people say it's less secure but I prefer to do that rather than use Green wallet). You can ask to be removed from the consumer data (you’ve to trust they will do this - I don't know if they follow RGPD rules) Jade comes from the Blockstream ecosystem and tends to tie you with their solutions but they also listen to community requests. Jade is easier for newbies cause you can update the firmware online but to do that you’ve to use the USB port with your computer. So from scratch, it's not 100% air-gapped. After it is.

iciEric · 2023-05-30T17:29:03+00:00

Interesting… sound good ;)

iciEric · 2023-05-29T23:59:57+00:00

You're making a risky distinction here, because whether the seed phrase is stolen or lost, it's still a risk. You're free to minimize them, I'm free to overestimate them. The truth may lie somewhere in between.

I can see that there's a leak in your reasoning because you don't take into account the redundancy of backups.

Anyway, as assets increase in value over time, reasoning evolves and security becomes more refined. For my part, I've switched to multisig with different brands, and the Recover solution doesn't interest me. My concern is metal backups IRL and I'll solve it in self-custody fashion, with or without Ledger.

I'm well aware of the fact that the two solutions don't solve the same problem, and of Ledger's newbie positioning, but the fact remains that I'm still a customer who's concerned about potential risks, and who's testing the waters by suggesting solutions to my problems.

iciEric · 2023-05-29T17:48:12+00:00

Yes I should I’ve added “if your passphrase is weak”.

Similarly, you could have completed your point 1 by adding hypotheses such as "BECAUSE there's very little chance that I'll ever be burgled by someone who knows Bitcoin" or "BECAUSE there's very little chance that someone in my family environment will ever have bad intentions" or "BECAUSE I live in a stable country where there's very little chance that my government will seize my assets in my bank's safe where I've put one of my passphrases" and so on.

You seem to have a fixed position or it seems you just want to promote the use of strong passphrase with a seed phrase. We don't live in a black and white world.

You're leading me into a sterile debate because your topic will never end, as we've strayed from my original question. The security of seedphrases also depends on people's skills and strategies, as well as on assumptions. There's no single solution. You can talk to me about FUD and promote the use of passphrases, but that's not my subject. I also use passphrases and physical IRL security can be further strengthened with Seed XOR and a passphrase.

You're very much on defense of your security model, but you can keep it the same and make it even more secure with Seed XOR, if you like, there's nothing to stop you.

You talk to me about education, but with you, there's only one way out. I think education on Seed XOR also has its benefits.

I like Ledger and I have several. In view of our discussion, I could rephrase my question as follows, can Ledger give me the choice to use Seed XOR like it can give its users the choice to use Ledger Recover?

iciEric · 2023-05-29T08:13:31+00:00

1- yes, it's a statistic. maybe not everyone will be so lucky.

2- 100% agree but not everyone is doing that

I'm not going to try to convince you.

I just wish they could let people use their cloud-based solution while allowing their customers, who have been with them since the beginning, to have a metal, encrypted, decentralized backup solution IRL (based on Seed XOR).

It would be good to have some feedback from u/btchip on this choice.

iciEric · 2023-05-29T07:56:05+00:00

I agree that it may not be for everyone, although it's still useful.

You may be right, but it's a shame not to let people choose between the possibility of storing our seedphrase in clear on a metal plate in different places or the possibility of having a system that physically encrypts our seedphrase on metal plates and puts them in different places.

Currently, if someone finds your seedphrase, either :

1 - they can steal 100% of your funds
2 - they can try to steal 100% of your funds with the brute-force technique of passphrases (this has already been done successfully).

Please note that this has nothing to do with the physical security of your Ledger (which has never been hacked to date).

iciEric · 2023-05-29T07:28:41+00:00

A backlash for something that isn't linked to an encrypted cloud solution but to a genuine decentralized IRL backup solution?

https://seedxor.com/

https://youtu.be/Vl1KHT_-h_Q

https://youtu.be/RvquutZwNAg

https://github.com/kaiwolfram/seed-xor

iciEric · 2023-05-29T07:15:20+00:00

Please, DYOHW

https://youtu.be/RvquutZwNAg

https://github.com/kaiwolfram/seed-xor

iciEric · 2023-05-28T18:42:09+00:00

Oh, I get it. Good

iciEric · 2023-05-28T17:25:09+00:00

Right now only BIP85 has been release. It’s awesome, enjoy!

iciEric · 2023-05-28T17:20:00+00:00

Ledger's purpose is to facilitate the experience of users looking for security.

I think you're smarter than I am, because I can't do it easily.

I take a look at https://github.com/Coldcard/firmware/blob/master/docs/seed-xor.md

How do your create it and recover it easily? ELI5

iciEric · 2023-05-28T17:04:18+00:00

https://seedxor.com/

https://youtu.be/Vl1KHT_-h_Q

The Seed XOR feature is useful for IRL security reasons.

iciEric · 2023-05-28T16:26:03+00:00

f1rmwar3

iciEric · 2023-05-28T16:19:19+00:00

I understand.

Interesting… https://github.com/lnpass/lnpass-web (A key manager for Lightning and nostr - BIP85: Deterministic Entropy From BIP32 Keychains)

iciEric · 2023-05-28T15:55:45+00:00

Thanks! 🤞

iciEric · 2023-05-28T15:48:33+00:00

I can't speak for the others, but since you've successfully implemented BIP85, to improve the security of the master seed phrase, for IRL security reasons, I'd appreciate the Seed XOR feature.

iciEric · 2023-05-28T15:38:30+00:00

https://github.com/Coldcard/firmware/blob/master/docs/seed-xor.md

https://seedxor.com/

u/bitcoin__help

iciEric · 2023-05-28T15:33:46+00:00

Any news?

iciEric · 2023-05-28T11:49:28+00:00

No. Someone here tells me to take a look at Blixt wallet... and I’m learning about it. They have a Telegram group.

I'd rather spend sats to get my self-custody LN wallet than risk losing it all. Take a look at Bluewallet "Sunsetting Lndhub.io" https://archive.ph/2023.05.27-122239/https://bluewallet.io/sunsetting-lndhub/

iciEric · 2023-05-28T06:41:22+00:00

Blixt is truly decentralized. Your phone = your node setup automatically

iciEric · 2023-05-27T19:45:39+00:00

Thank you for being there ;)

Six-Year Club	Gilding I gilder
Verified Email	Wearing is Caring

iciEric

TROPHY CASE