|
Title: Ledger Nano: is it secure? Post by: Lionel on September 09, 2017, 01:05:58 AM Suppose i am using Electrum with Ledger Nano S. When i send a payment, i must manually enter the PIN on the USB device (source: https://ledger.groovehq.com/knowledge_base/topics/how-to-setup-electrum-nano-slash-nano-s ) But i wonder if the Nano shows me the transaction details as well ( destination address(es), amount(s) ). If not, i don't consider this solution very safe. Suppose a virus on my PC acts as a man-in-the-middle when the payment command is sent from Electrum to the USB device. The virus may change the payment destination address on-the-fly after the command goes out of Electrum wallet but before it enters the USB bus to reach the device. Anyone of you that has a Nano and can confirm that it displays transaction info upon PIN request ? Title: Re: Ledger Nano: is it secure? Post by: GreenBits on September 09, 2017, 01:27:42 AM Suppose i am using Electrum with Ledger Nano S. When i send a payment, i must manually enter the PIN on the USB device (source: https://ledger.groovehq.com/knowledge_base/topics/how-to-setup-electrum-nano-slash-nano-s ) But i wonder if the Nano shows me the transaction details as well ( destination address(es), amount(s) ). If not, i don't consider this solution very safe. Suppose a virus on my PC acts as a man-in-the-middle when the payment command is sent from Electrum to the USB device. The virus may change the payment destination address on-the-fly after the command goes out of Electrum wallet but before it enters the USB bus to reach the device. Anyone of you that has a Nano and can confirm that it displays transaction info upon PIN request ? the generation of the transaction is handled onboard the wallet. the only information exposed to memory, to the best of my knowledge, is the transaction itself, which is encrypted. the virus would have to hijack the device itself to compromise the transaction. this is why the transaction details are confirmed via interface. if those details are correct, then the transaction broadcasted to the network would be composed of those details. the best a mitm attack could do is change a copy/paste address by hijacking the ram and subverting things sent to the clipboard. if you simply confirm the details, you should be able to detect the change in address, and move the device to a stable/secure environment ;) hardware wallets ftw. Title: Re: Ledger Nano: is it secure? Post by: HCP on September 09, 2017, 11:55:29 AM ... the generation of the transaction is handled onboard the wallet. the only information exposed to memory, to the best of my knowledge, No, the transaction is created in your software wallet (Ledger app or Electrum etc). It is the SIGNING of the transaction with the appropriate private keys that happens on the hardware wallet.Anyone of you that has a Nano and can confirm that it displays transaction info upon PIN request ? And to answer the OPs question... yes, it displays the address and amount and you have to confirm it before the transaction is signed and returned to the software wallet for broadcasting.Title: Re: Ledger Nano: is it secure? Post by: Lionel on September 09, 2017, 01:39:54 PM Anyone of you that has a Nano and can confirm that it displays transaction info upon PIN request ? And to answer the OPs question... yes, it displays the address and amount and you have to confirm it before the transaction is signed and returned to the software wallet for broadcasting.Sounds good then :) Title: Re: Ledger Nano: is it secure? Post by: Lionel on September 09, 2017, 07:26:32 PM What happens if my Nano burns or i lose it?
Does it support BIP 38 seeds so that i can restore my private key ? Title: Re: Ledger Nano: is it secure? Post by: TryNinja on September 09, 2017, 07:30:31 PM What happens if my Nano burns or i lose it? That's why you need to backup your seed when creating your wallet. Then, if you lose your device, you can:Does it support BIP 38 seeds so that i can restore my private key ? 1. Buy a new Nano and restore your wallet. 2. Restore your wallet in any any wallet supporting 24-word passphrases, compatible with:
Every known wallet compatible with the Ledger Nano backup phrase can be found here[1]. [1] http://support.ledgerwallet.com/knowledge_base/topics/how-to-restore-my-backup-without-a-ledger-wallet Title: Re: Ledger Nano: is it secure? Post by: Lionel on September 09, 2017, 11:33:41 PM Very good.
And if someone steals your Nano they cannot read the Seed because they haven't the PIN. But they may disassemble the Nano and directly read the flash memory in it, and copy directly your private key. So you better not lose your Nano and if so, immediately restore the wallet with the seed with another Electrum instance and transfer the coins elsewhere Title: Re: Ledger Nano: is it secure? Post by: HCP on September 10, 2017, 06:03:59 AM And if someone steals your Nano they cannot read the Seed because they haven't the PIN. You make it sounds like they just need to crack open the case and read some data from the "flash memory" to be able to get the private key... But they may disassemble the Nano and directly read the flash memory in it, and copy directly your private key. The Ledger Nano S Hardware Wallets use a "secure element" (aka smartcard) that makes it extremely difficult for anyone but very well resourced attackers with very high levels of technical expertise and specialised equipment to be able to perform the private key extraction attack. Ref: https://www.ledger.fr/2015/01/17/bitcoin-security-why-smart-cards-matter/ Granted, this is an article written by the manufacturer, but the theory is sound... Title: Re: Ledger Nano: is it secure? Post by: XXX_BTC1@ on November 03, 2017, 06:54:55 AM Suppose i am using Electrum with Ledger Nano S. When i send a payment, i must manually enter the PIN on the USB device (source: https://ledger.groovehq.com/knowledge_base/topics/how-to-setup-electrum-nano-slash-nano-s ) But i wonder if the Nano shows me the transaction details as well ( destination address(es), amount(s) ). If not, i don't consider this solution very safe. Suppose a virus on my PC acts as a man-in-the-middle when the payment command is sent from Electrum to the USB device. The virus may change the payment destination address on-the-fly after the command goes out of Electrum wallet but before it enters the USB bus to reach the device. Anyone of you that has a Nano and can confirm that it displays transaction info upon PIN request ? ledger nano s is the hardware wallet we have to save out bit coins and lite coins, zcash coins, dash coins, ethereum coins and ripple coins. so you have to buy and keep your bit coin in to this wallet and hold long time. ledger nano s is the best and secure wallet. it can carry easily and good for security. Title: Re: Ledger Nano: is it secure? Post by: Kico on November 27, 2017, 04:47:14 AM Can Ledger company keep private keys for the public keys generated by the Ledger Wallet to steal my money?
E.g. they create bitcoin public and private keys, save it. My wallet "generates" these keys, I put money there, they take my money as they know the keys. Title: Re: Ledger Nano: is it secure? Post by: HCP on November 27, 2017, 05:38:14 AM Can Ledger company keep private keys for the public keys generated by the Ledger Wallet to steal my money? They'd have to keep an awful lot of private keys to be able to do this...E.g. they create bitcoin public and private keys, save it. My wallet "generates" these keys, I put money there, they take my money as they know the keys. You can continually reset the device as many times as you like, generating a new randomly generated seed (and thus, new private and public keys) every time you reset it... Title: Re: Ledger Nano: is it secure? Post by: Kico on November 27, 2017, 04:03:22 PM Can Ledger company keep private keys for the public keys generated by the Ledger Wallet to steal my money? They'd have to keep an awful lot of private keys to be able to do this...E.g. they create bitcoin public and private keys, save it. My wallet "generates" these keys, I put money there, they take my money as they know the keys. You can continually reset the device as many times as you like, generating a new randomly generated seed (and thus, new private and public keys) every time you reset it... In my imaginary situation device doesn't generate random public and private key. It gives the next pair which Ledger company knows Title: Re: Ledger Nano: is it secure? Post by: bob123 on November 27, 2017, 04:59:46 PM It's not a problem to keep thousands keys for every device. In my imaginary situation device doesn't generate random public and private key. It gives the next pair which Ledger company knows You should stop "imagining" stuff and start to read stuff. The whole part which handles the key generation / initialization of the ledger is 1) made onboard and 2) is open source. You can chack github and read into the algorithm. There is no hardcoded list of compromised keys. Also there is no communication to any server during key generation and initialization of the ledger wallet. Title: Re: Ledger Nano: is it secure? Post by: Kico on November 28, 2017, 01:59:30 AM The whole part which handles the key generation / initialization of the ledger is 1) made onboard and 2) is open source Thank you! How can I be sure that device executes the code posted on github, not a different one? Title: Re: Ledger Nano: is it secure? Post by: bob123 on November 28, 2017, 07:32:32 AM How can I be sure that device executes the code posted on github, not a different one? You can verify the integrity of the software running on your device. As in their ledger blue checkGenuine.py (https://github.com/LedgerHQ/blue-loader-python/blob/master/ledgerblue/checkGenuine.py#L72 (https://github.com/LedgerHQ/blue-loader-python/blob/master/ledgerblue/checkGenuine.py#L72)). Basically you are using: Code: pip install --no-cache-dir ledgerblue You find the secp256k1 public key for the current batch here: Code: args.issuerKey = "0490f5c9d15a0134bb019d2afd0bf297149738459706e7ac5be4abc350a1f818057224fce12ec9a65de18ec34d6e8c24db927835ea1692b14c32e9836a75dad609" To go even further you could try to open your ledger and check whether there is an additional chip implemented and the MCU is an stm2f042k6 (with 32 Kb flash, as a bigger flash could contain code fooling the Secure Element validation). Ledger has described this pretty comprehensibly here: https://ledger.zendesk.com/hc/en-us/articles/115005321449-How-to-verify-the-security-integrity-of-my-Nano-S- (https://ledger.zendesk.com/hc/en-us/articles/115005321449-How-to-verify-the-security-integrity-of-my-Nano-S-) Title: Re: Ledger Nano: is it secure? Post by: Kico on November 29, 2017, 01:34:37 AM Thank you, Bob!
Title: Re: Ledger Nano: is it secure? Post by: cupic on November 29, 2017, 01:41:41 AM Does not work with alt-coins. Won't recognize pivx,expanse, ubiq,ark,vertcoin. The app loads but I can't access the wallet. Only works with Bitcoin, Ethereum, and Riplle. Any suggestions?It will not recognize Legder Nano S is unlocked. I tried turning off browser support and reinstalling the app
Title: Re: Ledger Nano: is it secure? Post by: Jonnylolo on November 29, 2017, 03:03:09 AM Does not work with alt-coins. Won't recognize pivx,expanse, ubiq,ark,vertcoin. The app loads but I can't access the wallet. Only works with Bitcoin, Ethereum, and Riplle. Any suggestions?It will not recognize Legder Nano S is unlocked. I tried turning off browser support and reinstalling the app For most alt-coins, you'll need to access it via the desktop function through myetherwallet (MEW). They don't appear on the nano ledger apps. |