Bitcoin Forum
May 11, 2024, 07:53:30 PM *
News: Latest Bitcoin Core release: 27.0 [Torrent]
 
   Home   Help Search Login Register More  
Bitcoin Forum > Bitcoin > Development & Technical Discussion > Wallet software > Hardware wallets > Auditing Hardware Wallets?
Pages: [1]
« previous topic next topic »
  Print  
Author Topic: Auditing Hardware Wallets?  (Read 399 times)
Sage (OP)
Hero Member
*****
Offline Offline

Activity: 632
Merit: 500


View Profile
July 05, 2015, 09:51:34 AM
 #1
How do we audit a hardware wallet?  Meaning, how do we know the hardware wasn't compromised in transit, and the wallet gives up private keys when connected to the internet?

We can audit open source code.  We can check the signatures of open source code to validate it has not been tampered with.  But how do we do the same for hardware wallets?
1715457210
Hero Member
*
Offline Offline

Posts: 1715457210

View Profile Personal Message (Offline)

Ignore
1715457210
1715457210
Reply with quote  #2
1715457210
Report to moderator
1715457210
Hero Member
*
Offline Offline

Posts: 1715457210

View Profile Personal Message (Offline)

Ignore
1715457210
1715457210
Reply with quote  #2
1715457210
Report to moderator
1715457210
Hero Member
*
Offline Offline

Posts: 1715457210

View Profile Personal Message (Offline)

Ignore
1715457210
1715457210
Reply with quote  #2
1715457210
Report to moderator
The trust scores you see are subjective; they will change depending on who you have in your trust list.
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
1715457210
Hero Member
*
Offline Offline

Posts: 1715457210

View Profile Personal Message (Offline)

Ignore
1715457210
1715457210
Reply with quote  #2
1715457210
Report to moderator
1715457210
Hero Member
*
Offline Offline

Posts: 1715457210

View Profile Personal Message (Offline)

Ignore
1715457210
1715457210
Reply with quote  #2
1715457210
Report to moderator
1715457210
Hero Member
*
Offline Offline

Posts: 1715457210

View Profile Personal Message (Offline)

Ignore
1715457210
1715457210
Reply with quote  #2
1715457210
Report to moderator
achow101
Staff
Legendary
*
Offline Offline

Activity: 3388
Merit: 6635


Just writing some code


View Profile WWW
July 05, 2015, 05:27:00 PM
 #2
It would be difficult to tamper with the hardware, but not impossible. I suppose you could monitor the network data of your computer. You could watch for anything strange such as your hardware wallet sending data over the internet when it shouldn't.
Bitcoin Core contributor | Tip Me! | GitHub | GPG Key Fingerprint 0x17565732E08E5E41
unamis76
Legendary
*
Offline Offline

Activity: 1512
Merit: 1009


View Profile
July 05, 2015, 05:36:51 PM
 #3
If I'm not mistaken, Ledger Wallet performs a hardware and software check upon first boot. If this can be tampered with, I don't know.

In my opinion, the best hardware wallet is still something that isn't usually used as a wallet but can be re-purposed for such. Although it can also be tampered with, it won't be targeted as much for Bitcoin related things.

It should be possible to audit the hardware at home... but I don't see that being an easy task for a regular Joe.
Pages: [1]
  Print  
Bitcoin Forum > Bitcoin > Development & Technical Discussion > Wallet software > Hardware wallets > Auditing Hardware Wallets?
 « previous topic next topic »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!