Bitcoin Forum
December 15, 2024, 09:07:57 PM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 ... 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 [259] 260 261 262 263 264 265 »
  Print  
Author Topic: [ESHOP launched] Trezor: Bitcoin hardware wallet  (Read 966231 times)
Rath_
aka BitCryptex
Legendary
*
Offline Offline

Activity: 1876
Merit: 3139



View Profile
August 20, 2019, 05:57:33 PM
 #5161

Trezor celebrates the 100th episode of Stephan Livera's podcast. Until the 27th of August, you can get a 10% discount for any Trezor hardware wallet on the official store. Use 'SLP100' promo code.
examplens
Legendary
*
Offline Offline

Activity: 3500
Merit: 3564


Crypto Swap Exchange


View Profile WWW
September 05, 2019, 01:01:47 PM
 #5162

Hm, today I update the new firmware on my Trezor One, after that, I have a new look of my first screen on them. Now I am not sure is it comes with the new firmware or I have a hardware problem. i did a couple of transactions and everything seems to be fine.


█▀▀▀











█▄▄▄
▀▀▀▀▀▀▀▀▀▀▀
e
▄▄▄▄▄▄▄▄▄▄▄
█████████████
████████████▄███
██▐███████▄█████▀
█████████▄████▀
███▐████▄███▀
████▐██████▀
█████▀█████
███████████▄
████████████▄
██▄█████▀█████▄
▄█████████▀█████▀
███████████▀██▀
████▀█████████
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
c.h.
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
▀▀▀█











▄▄▄█
▄██████▄▄▄
█████████████▄▄
███████████████
███████████████
███████████████
███████████████
███░░█████████
███▌▐█████████
█████████████
███████████▀
██████████▀
████████▀
▀██▀▀
Rath_
aka BitCryptex
Legendary
*
Offline Offline

Activity: 1876
Merit: 3139



View Profile
September 05, 2019, 01:16:12 PM
Merited by bones261 (2)
 #5163

Hm, today I update the new firmware on my Trezor One, after that, I have a new look of my first screen on them. Now I am not sure is it comes with the new firmware or I have a hardware problem. i did a couple of transactions and everything seems to be fine.

It is a new security feature. The appearance of these randomly generated white pixels mitigates the recently discovered OLED display information leak. Trezor T is not affected since it uses a different type of display. You can learn more about this vulnerability here.
Coiner.de
Hero Member
*****
Offline Offline

Activity: 781
Merit: 533



View Profile
September 06, 2019, 10:42:06 PM
Merited by Rath_ (1)
 #5164

Quote
a calculated number of white decoy pixels is added to each row

Not randomly generated.
OmegaStarScream
Staff
Legendary
*
Offline Offline

Activity: 3696
Merit: 6539



View Profile
September 07, 2019, 02:03:21 PM
Last edit: September 07, 2019, 02:15:18 PM by OmegaStarScream
 #5165

Trezor introduced a new security standard called Shamir backup which is basically a way to split backup seeds. It's not available in the Trezor one so I couldn't try it, but could someone who did give us his thoughts about the subject?

█▀▀▀











█▄▄▄
▀▀▀▀▀▀▀▀▀▀▀
e
▄▄▄▄▄▄▄▄▄▄▄
█████████████
████████████▄███
██▐███████▄█████▀
█████████▄████▀
███▐████▄███▀
████▐██████▀
█████▀█████
███████████▄
████████████▄
██▄█████▀█████▄
▄█████████▀█████▀
███████████▀██▀
████▀█████████
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
c.h.
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
▀▀▀█











▄▄▄█
▄██████▄▄▄
█████████████▄▄
███████████████
███████████████
███████████████
███████████████
███░░█████████
███▌▐█████████
█████████████
███████████▀
██████████▀
████████▀
▀██▀▀
Rath_
aka BitCryptex
Legendary
*
Offline Offline

Activity: 1876
Merit: 3139



View Profile
September 07, 2019, 07:27:23 PM
Merited by OmegaStarScream (2)
 #5166

Trezor introduced a new security standard called Shamir backup which is basically a way to split backup seeds. It's not available in the Trezor one so I couldn't try it, but could someone who did give us his thoughts about the subject?

The whole process was fairly easy thanks to the detailed guide. I set the number of shares to 3 and the threshold to 2. I selected 20 words to keep it simple (typing in 66 words during recovery even on such a display would be tedious). Everything seems to be working fine, but I am going to stick to my current security policy. I recovered my old wallet. Feel free to ask me any questions.

By the way, Bitcoin only firmware has been available for both Trezor One and T since 4th September.
HCP
Legendary
*
Offline Offline

Activity: 2086
Merit: 4363

<insert witty quote here>


View Profile
September 09, 2019, 05:02:56 AM
Merited by OmegaStarScream (2), 600watt (1), Rath_ (1)
 #5167

Theoretically... you could implement it with ANY backup seed using the Shamir's secret sharing scheme... refer: http://point-at-infinity.org/ssss/

Obiviously, getting a collection of 20 (or 33) word phrases is a bit more user friendly that a collection of HEX outputs that the SSSS linked above generates, but I would imagine it would be relatively trivial to simply re-encode the generated HEX to a word list using a system similar to BIP39.

The advantage of the Trezor solution is that the SatoshiLabs guys have built it into the Trezor T natively, so the data entry and conversion from recovery to actual seed mnemonic seed etc is secured within the device itself... nice and elegant... and most important, easy to use.

█████████████████████████
████▐██▄█████████████████
████▐██████▄▄▄███████████
████▐████▄█████▄▄████████
████▐█████▀▀▀▀▀███▄██████
████▐███▀████████████████
████▐█████████▄█████▌████
████▐██▌█████▀██████▌████
████▐██████████▀████▌████
█████▀███▄█████▄███▀█████
███████▀█████████▀███████
██████████▀███▀██████████
█████████████████████████
.
BC.GAME
▄▄░░░▄▀▀▄████████
▄▄▄
██████████████
█████░░▄▄▄▄████████
▄▄▄▄▄▄▄▄▄██▄██████▄▄▄▄████
▄███▄█▄▄██████████▄████▄████
███████████████████████████▀███
▀████▄██▄██▄░░░░▄████████████
▀▀▀█████▄▄▄███████████▀██
███████████████████▀██
███████████████████▄██
▄███████████████████▄██
█████████████████████▀██
██████████████████████▄
.
..CASINO....SPORTS....RACING..
█░░░░░░█░░░░░░█
▀███▀░░▀███▀░░▀███▀
▀░▀░░░░▀░▀░░░░▀░▀
░░░░░░░░░░░░
▀██████████
░░░░░███░░░░
░░█░░░███▄█░░░
░░██▌░░███░▀░░██▌
░█░██░░███░░░█░██
░█▀▀▀█▌░███░░█▀▀▀█▌
▄█▄░░░██▄███▄█▄░░▄██▄
▄███▄
░░░░▀██▄▀


▄▄████▄▄
▄███▀▀███▄
██████████
▀███▄░▄██▀
▄▄████▄▄░▀█▀▄██▀▄▄████▄▄
▄███▀▀▀████▄▄██▀▄███▀▀███▄
███████▄▄▀▀████▄▄▀▀███████
▀███▄▄███▀░░░▀▀████▄▄▄███▀
▀▀████▀▀████████▀▀████▀▀
Rath_
aka BitCryptex
Legendary
*
Offline Offline

Activity: 1876
Merit: 3139



View Profile
September 24, 2019, 11:55:07 AM
 #5168

Trezor prepared a newsletter-exclusive offer for people who sign up for their newsletter. All readers are going to receive it on Wednesday. The subscription link can be found in the tweet below.

Source: https://twitter.com/Trezor/status/1176221067943325697
Rath_
aka BitCryptex
Legendary
*
Offline Offline

Activity: 1876
Merit: 3139



View Profile
September 25, 2019, 03:19:44 PM
 #5169

The newsletter-exclusive offer turned out to be a 15% discount code off anything in Trezor Shop, valid through 30 September. The code doesn't seem to be unique for each participant. Anyway, I am not going to use it so I can give it to anyone who sends me a private message.
samuel-sd
Member
**
Offline Offline

Activity: 180
Merit: 71


View Profile
October 07, 2019, 11:00:59 PM
 #5170

Hi guys!
I had generated a BIP39 seed and set up a software wallet based on it. Everything works fine. I am wondering if I can use the same seed to get access to my wallet with Trezor? Does trezor use regular BIP39 seeds for restoring wallets or it requires a special seed, which has to be generated on a trezor device?
TryNinja
Legendary
*
Offline Offline

Activity: 3052
Merit: 7466


Top Crypto Casino


View Profile WWW
October 07, 2019, 11:04:12 PM
 #5171

Hi guys!
I had generated a BIP39 seed and set up a software wallet based on it. Everything works fine. I am wondering if I can use the same seed to get access to my wallet with Trezor? Does trezor use regular BIP39 seeds for restoring wallets or it requires a special seed, which has to be generated on a trezor device?\
You mean import a wallet you generated on your PC, with a different wallet, into Trezor?

Yes, you can. But I wouldn't do that. The point of a hardware wallet is that it is generated in an isolated device and it's safe from any outsider risk. If you import a seed that was generated outside the device, you can't guarantee the same security.

███████████████████████
████▐██▄█████████████████
████▐██████▄▄▄███████████
████▐████▄█████▄▄████████
████▐█████▀▀▀▀▀███▄██████
████▐███▀████████████████
████▐█████████▄█████▌████
████▐██▌█████▀██████▌████
████▐██████████▀████▌████
█████▀███▄█████▄███▀█████
███████▀█████████▀███████
██████████▀███▀██████████

███████████████████████
.
BC.GAME
▄▄▀▀▀▀▀▀▀▄▄
▄▀▀░▄██▀░▀██▄░▀▀▄
▄▀░▐▀▄░▀░░▀░░▀░▄▀▌░▀▄
▄▀▄█▐░▀▄▀▀▀▀▀▄▀░▌█▄▀▄
▄▀░▀░░█░▄███████▄░█░░▀░▀▄
█░█░▀░█████████████░▀░█░█
█░██░▀█▀▀█▄▄█▀▀█▀░██░█
█░█▀██░█▀▀██▀▀█░██▀█░█
▀▄▀██░░░▀▀▄▌▐▄▀▀░░░██▀▄▀
▀▄▀██░░▄░▀▄█▄▀░▄░░██▀▄▀
▀▄░▀█░▄▄▄░▀░▄▄▄░█▀░▄▀
▀▄▄▀▀███▄███▀▀▄▄▀
██████▄▄▄▄▄▄▄██████
.
..CASINO....SPORTS....RACING..


▄▄████▄▄
▄███▀▀███▄
██████████
▀███▄░▄██▀
▄▄████▄▄░▀█▀▄██▀▄▄████▄▄
▄███▀▀▀████▄▄██▀▄███▀▀███▄
███████▄▄▀▀████▄▄▀▀███████
▀███▄▄███▀░░░▀▀████▄▄▄███▀
▀▀████▀▀████████▀▀████▀▀
samuel-sd
Member
**
Offline Offline

Activity: 180
Merit: 71


View Profile
October 07, 2019, 11:36:42 PM
 #5172

Hi guys!
I had generated a BIP39 seed and set up a software wallet based on it. Everything works fine. I am wondering if I can use the same seed to get access to my wallet with Trezor? Does trezor use regular BIP39 seeds for restoring wallets or it requires a special seed, which has to be generated on a trezor device?
You mean import a wallet you generated on your PC, with a different wallet, into Trezor?
I mean, can I use an existed BIP39 seed (which was generated by third party software) to get access to a wallet?
Or Trezor is designed to recover wallets only with seeds which were generated by Trezor devices?
By the way, a trezor's native 12-word seed is a BIP39 one?

I am asking because I know that different developers use different algorithms to generate seeds and some devices might not support BIP39 seeds.

Quote
If you import a seed that was generated outside the device, you can't guarantee the same security.
Yes, I know that.
TryNinja
Legendary
*
Offline Offline

Activity: 3052
Merit: 7466


Top Crypto Casino


View Profile WWW
October 07, 2019, 11:38:33 PM
 #5173

I mean, can I use an existed BIP39 seed (which was geterated by third party software) to get access to a wallet?
Or Trezor is designed to recover wallets only with seeds which were generated by Trezor devices?
By the way, a trezor's native 12-word seed is a BIP39 one?

I am asking because I know that different developers use different allgorithms to generate seeds and some devices might not support BIP39 seeds.
Like I said, yes. AFAIK, Trezor's seed is also BIP39.

███████████████████████
████▐██▄█████████████████
████▐██████▄▄▄███████████
████▐████▄█████▄▄████████
████▐█████▀▀▀▀▀███▄██████
████▐███▀████████████████
████▐█████████▄█████▌████
████▐██▌█████▀██████▌████
████▐██████████▀████▌████
█████▀███▄█████▄███▀█████
███████▀█████████▀███████
██████████▀███▀██████████

███████████████████████
.
BC.GAME
▄▄▀▀▀▀▀▀▀▄▄
▄▀▀░▄██▀░▀██▄░▀▀▄
▄▀░▐▀▄░▀░░▀░░▀░▄▀▌░▀▄
▄▀▄█▐░▀▄▀▀▀▀▀▄▀░▌█▄▀▄
▄▀░▀░░█░▄███████▄░█░░▀░▀▄
█░█░▀░█████████████░▀░█░█
█░██░▀█▀▀█▄▄█▀▀█▀░██░█
█░█▀██░█▀▀██▀▀█░██▀█░█
▀▄▀██░░░▀▀▄▌▐▄▀▀░░░██▀▄▀
▀▄▀██░░▄░▀▄█▄▀░▄░░██▀▄▀
▀▄░▀█░▄▄▄░▀░▄▄▄░█▀░▄▀
▀▄▄▀▀███▄███▀▀▄▄▀
██████▄▄▄▄▄▄▄██████
.
..CASINO....SPORTS....RACING..


▄▄████▄▄
▄███▀▀███▄
██████████
▀███▄░▄██▀
▄▄████▄▄░▀█▀▄██▀▄▄████▄▄
▄███▀▀▀████▄▄██▀▄███▀▀███▄
███████▄▄▀▀████▄▄▀▀███████
▀███▄▄███▀░░░▀▀████▄▄▄███▀
▀▀████▀▀████████▀▀████▀▀
samuel-sd
Member
**
Offline Offline

Activity: 180
Merit: 71


View Profile
October 07, 2019, 11:43:09 PM
 #5174

Like I said, yes. AFAIK, Trezor's seed is also BIP39.
Thanks!
samuel-sd
Member
**
Offline Offline

Activity: 180
Merit: 71


View Profile
October 09, 2019, 09:25:50 PM
 #5175

Hi everybody!

I recently read that all Trezor models have a hardware vulnerability, which let an attacker extract a seed from a wallet if it's not protected by a long passphrase. It says that the vulnerability cannot be patched by a software update. What is Trezor going to do about it? Are the developers going to fix the hardware for future models or they are going to keep manufacturing the old model with advice to use a long passphrase?
Rath_
aka BitCryptex
Legendary
*
Offline Offline

Activity: 1876
Merit: 3139



View Profile
October 09, 2019, 10:20:49 PM
 #5176

Are the developers going to fix the hardware for future models or they are going to keep manufacturing the old model with advice to use a long passphrase?

The developers can't fix old models because they would have to change them drastically, including the software. I highly doubt that Trezor is going to release a new model anytime soon (there is still a lot to do for the Trezor T). Also, I don't think that they would suddenly change their security policy. They want to be as much transparent as possible. The attack can't be performed remotely. Passphrases should be used by everyone anyway. Here you can read Trezor's response.
samuel-sd
Member
**
Offline Offline

Activity: 180
Merit: 71


View Profile
October 09, 2019, 10:52:25 PM
Last edit: October 09, 2019, 11:03:20 PM by samuel-sd
 #5177

The developers can't fix old models because they would have to change them drastically, including the software. I highly doubt that Trezor is going to release a new model anytime soon (there is still a lot to do for the Trezor T). Also, I don't think that they would suddenly change their security policy. They want to be as much transparent as possible. The attack can't be performed remotely. Passphrases should be used by everyone anyway. Here you can read Trezor's response.
Thanks for the answer.
So, basicaly they admited the proplem but they did not say that they would fix it even in their future devices.
Rath_
aka BitCryptex
Legendary
*
Offline Offline

Activity: 1876
Merit: 3139



View Profile
October 09, 2019, 11:05:09 PM
 #5178

So, basicaly they admited the proplem but they did say that they would fix it even in their future devices.

This sentence does not make any sense. Did you mean 'wouldn't fix'? Trezor is not the only device affected by this vulnerability. It looks like that every device with a ST microchip is affected so it's not their fault. Actually, they admitted that they had been aware of it since the beginning. I don't know how many alternatives there are. Ledger uses a different chip which provides 'security through obscurity' that might not appeal to many of the Trezor's customers.
samuel-sd
Member
**
Offline Offline

Activity: 180
Merit: 71


View Profile
October 10, 2019, 06:13:55 PM
 #5179

So, basicaly they admited the proplem but they did not say that they would fix it even in their future devices.

This sentence does not make any sense. Did you mean 'wouldn't fix'?
My bad, I fixed the original post.

Quote
Trezor is not the only device affected by this vulnerability. It looks like that every device with a ST microchip is affected so it's not their fault. Actually, they admitted that they had been aware of it since the beginning.
Too bad, If they knew it, why didn't they choose a different chip?

Quote
I don't know how many alternatives there are.
Did any hard wallet manufacturer offer a reward for revealing hardware vulnerabilities against their devices?
That would be cool Smiley

Quote
Ledger uses a different chip which provides 'security through obscurity'
Has it been hacked as Trezor has?
Rath_
aka BitCryptex
Legendary
*
Offline Offline

Activity: 1876
Merit: 3139



View Profile
October 10, 2019, 06:55:47 PM
 #5180

Too bad, If they knew it, why didn't they choose a different chip?

There might have not been any alternatives. I am not an expert in this field. Ledger HW.1 also had an STM chip in its smartcard.

Did any hard wallet manufacturer offer a reward for revealing hardware vulnerabilities against their devices?

Yes, both Ledger and Trezor have their responsible disclosures programs. Ledger was supposed not to disclose this vulnerability publicly since it also affects many other devices. No individual has found out about it before them.

Has it been hacked as Trezor has?

There is no comparable hack at the moment for Ledger. Everything has been patched so far.
Pages: « 1 ... 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 [259] 260 261 262 263 264 265 »
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!