Bitcoin Forum
November 02, 2024, 07:38:09 PM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: « 1 ... 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 [72] 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 ... 265 »
  Print  
Author Topic: [ESHOP launched] Trezor: Bitcoin hardware wallet  (Read 966158 times)
lemonte
Hero Member
*****
Offline Offline

Activity: 624
Merit: 502


View Profile
June 09, 2014, 10:40:41 AM
 #1421

Any new information about the plastic models?


xeroc
Sr. Member
****
Offline Offline

Activity: 345
Merit: 250



View Profile
June 09, 2014, 11:57:26 AM
 #1422

concerning Wallet32

Can I export the private key of one account only and use that on wallet-32 compatible with trezor.

Just like exporting only parts of the trezor DH-tree
stick
Sr. Member
****
Offline Offline

Activity: 441
Merit: 268



View Profile
June 09, 2014, 12:49:05 PM
 #1423

concerning Wallet32

Can I export the private key of one account only and use that on wallet-32 compatible with trezor.

Just like exporting only parts of the trezor DH-tree

You can't export any private information from TREZOR.

xeroc
Sr. Member
****
Offline Offline

Activity: 345
Merit: 250



View Profile
June 09, 2014, 01:09:58 PM
 #1424

concerning Wallet32

Can I export the private key of one account only and use that on wallet-32 compatible with trezor.

Just like exporting only parts of the trezor DH-tree

You can't export any private information from TREZOR.
Oh .. damnit .. right ... thats the whole purpose of that thing .. woops :-)
chrisrico
Hero Member
*****
Offline Offline

Activity: 496
Merit: 500


View Profile
June 09, 2014, 02:45:39 PM
 #1425

Any new information about the plastic models?

Protip for Trezor guys: instead of just ignoring questions like this, a quick "sorry, no new information" breeds a lot less resentment.
molecular
Donator
Legendary
*
Offline Offline

Activity: 2772
Merit: 1019



View Profile
June 09, 2014, 03:02:23 PM
 #1426

concerning Wallet32

Can I export the private key of one account only and use that on wallet-32 compatible with trezor.

Just like exporting only parts of the trezor DH-tree

You can't export any private information from TREZOR.

well, to be correct: you can export the root private seed at one point. In fact you should... onto a piece of paper or similar.


PGP key molecular F9B70769 fingerprint 9CDD C0D3 20F8 279F 6BE0  3F39 FC49 2362 F9B7 0769
lemonte
Hero Member
*****
Offline Offline

Activity: 624
Merit: 502


View Profile
June 09, 2014, 03:09:58 PM
 #1427

Any new information about the plastic models?

Protip for Trezor guys: instead of just ignoring questions like this, a quick "sorry, no new information" breeds a lot less resentment.

Agreed, I've noticed questions like this ignored a few times. Not a great service considering it's Trezor who've failed to deliver on time!

stick
Sr. Member
****
Offline Offline

Activity: 441
Merit: 268



View Profile
June 09, 2014, 03:34:58 PM
 #1428

Any new information about the plastic models?

Protip for Trezor guys: instead of just ignoring questions like this, a quick "sorry, no new information" breeds a lot less resentment.

Agreed, I've noticed questions like this ignored a few times. Not a great service considering it's Trezor who've failed to deliver on time!

"Sorry, no new information." Smiley

Our supplier has confirmed that they are on the right track to meet deadlines mentioned in the old announcement: http://satoshilabs.com/news/2014-05-08-trezor-metallics-shipping-classics-eta/

Let me remind all of you that this forum is not an official support channel.

We like to hangout here, because the community is great, but from time to time some urgent issue pops out and we tend to overlook this place (especially when it is impossible to track unanswered posts) and limit our action radius to emails (info@bitcointrezor.com for general information, support@bitcointrezor.com for reporting issues).

kkurtmann
Sr. Member
****
Offline Offline

Activity: 475
Merit: 250



View Profile WWW
June 10, 2014, 05:55:54 AM
 #1429


Our supplier has confirmed that they are on the right track to meet deadlines mentioned in the old announcement: http://satoshilabs.com/news/2014-05-08-trezor-metallics-shipping-classics-eta/


thank you for this update. this is good news.

https://www.buytrezor.com?a=55c37b866c11   well sir, I like it!
LOBSTER
Hero Member
*****
Offline Offline

Activity: 560
Merit: 500


View Profile
June 10, 2014, 09:50:46 AM
 #1430

Ordered nearly one year ago now! I just want this fuckin' Trezor Classic, it's more worse then Butterflylabs! Unbelievable!
stereotype
Legendary
*
Offline Offline

Activity: 1554
Merit: 1000



View Profile
June 10, 2014, 10:22:02 AM
 #1431

I dont even want mine anymore.  Sad
Who wants to buy my paid order for 1x classic for 0.4btc, now? Item will be immediately sent on, as soon as received.
xeroc
Sr. Member
****
Offline Offline

Activity: 345
Merit: 250



View Profile
June 10, 2014, 10:53:53 AM
 #1432

concerning Wallet32

Can I export the private key of one account only and use that on wallet-32 compatible with trezor.

Just like exporting only parts of the trezor DH-tree

You can't export any private information from TREZOR.

well, to be correct: you can export the root private seed at one point. In fact you should... onto a piece of paper or similar.
So I could generate the root-seed for the account#1 and use the resulting priv key as new root-key?
can I strip a part of the tree by deriving the privkey of one account and feeding it to some BIP32 enabled wallet to 'share' the subkeys?

You understand my question? I'd like to use 'account#1' for daily stuff on my phone and still have phone+trezor synced!
Carlton Banks
Legendary
*
Offline Offline

Activity: 3430
Merit: 3080



View Profile
June 10, 2014, 11:39:50 AM
 #1433

concerning Wallet32

Can I export the private key of one account only and use that on wallet-32 compatible with trezor.

Just like exporting only parts of the trezor DH-tree

You can't export any private information from TREZOR.

well, to be correct: you can export the root private seed at one point. In fact you should... onto a piece of paper or similar.
So I could generate the root-seed for the account#1 and use the resulting priv key as new root-key?
can I strip a part of the tree by deriving the privkey of one account and feeding it to some BIP32 enabled wallet to 'share' the subkeys?

You understand my question? I'd like to use 'account#1' for daily stuff on my phone and still have phone+trezor synced!

All accounts determined from the seed would be available on whatever device you load that seed into. In practice, I'm not sure if that's such a great plan, not if you want differentiated protection for accounts derived from the same seed. It's not possible to give different accounts different levels of security with an HD wallet, that's baked into the design inherently.

So, the seed can be loaded into a different device, but the subkeys cannot be separated.

Vires in numeris
stick
Sr. Member
****
Offline Offline

Activity: 441
Merit: 268



View Profile
June 10, 2014, 11:48:12 AM
 #1434

So I could generate the root-seed for the account#1 and use the resulting priv key as new root-key?
can I strip a part of the tree by deriving the privkey of one account and feeding it to some BIP32 enabled wallet to 'share' the subkeys?

You understand my question? I'd like to use 'account#1' for daily stuff on my phone and still have phone+trezor synced!

It is possible to generate seed in TREZOR, load recovery words into software that supports BIP39+BIP44 on an offline computer, and let the software generate xprv key for first account. Then import this xprv key into Wallet32.

At the moment it is a theoretical thing, because all these processes are not very easy to do yet and you have to trust your offline computer that does the computation.

Once this process is easy we might offer this a feature for advanced users, but we don't want beginners to enter private seed anywhere, because of the security implications.

xeroc
Sr. Member
****
Offline Offline

Activity: 345
Merit: 250



View Profile
June 10, 2014, 12:07:36 PM
 #1435

It is possible to generate seed in TREZOR, load recovery words into software that supports BIP39+BIP44 on an offline computer, and let the software generate xprv key for first account. Then import this xprv key into Wallet32.
Thats what I wanted to do. I was pretty sure that I can do sth. like this. Not so sure if wallet32 already supports that though

Quote
At the moment it is a theoretical thing, because all these processes are not very easy to do yet and you have to trust your offline computer that does the computation.

Once this process is easy we might offer this a feature for advanced users,
+5% I want it! :-)

Quote
but we don't want beginners to enter private seed anywhere, because of the security implications.
I wouldn't count myself into that group of users :-)
Carlton Banks
Legendary
*
Offline Offline

Activity: 3430
Merit: 3080



View Profile
June 10, 2014, 12:46:00 PM
 #1436

It is possible to generate seed in TREZOR, load recovery words into software that supports BIP39+BIP44 on an offline computer, and let the software generate xprv key for first account. Then import this xprv key into Wallet32.

At the moment it is a theoretical thing, because all these processes are not very easy to do yet and you have to trust your offline computer that does the computation.

Once this process is easy we might offer this a feature for advanced users, but we don't want beginners to enter private seed anywhere, because of the security implications.

Ah, I didn't think that the individual accounts functioned as private keys on their own. I thought they were keychains, i.e. seeds that determine a list of public keys.

Vires in numeris
molecular
Donator
Legendary
*
Offline Offline

Activity: 2772
Merit: 1019



View Profile
June 10, 2014, 08:46:34 PM
 #1437

It is possible to generate seed in TREZOR, load recovery words into software that supports BIP39+BIP44 on an offline computer, and let the software generate xprv key for first account. Then import this xprv key into Wallet32.

At the moment it is a theoretical thing, because all these processes are not very easy to do yet and you have to trust your offline computer that does the computation.

Once this process is easy we might offer this a feature for advanced users, but we don't want beginners to enter private seed anywhere, because of the security implications.

Ah, I didn't think that the individual accounts functioned as private keys on their own. I thought they were keychains, i.e. seeds that determine a list of public keys.

Reading about extended keys might help. I think that's what stick talked about calling the "extended private key" "xprv key"?

PGP key molecular F9B70769 fingerprint 9CDD C0D3 20F8 279F 6BE0  3F39 FC49 2362 F9B7 0769
molecular
Donator
Legendary
*
Offline Offline

Activity: 2772
Merit: 1019



View Profile
June 10, 2014, 08:50:49 PM
 #1438

I have a question (to devs or anyone else):

I read trezor uses RFC6979 deterministic ecdsa signatures to prevent leaking of seed or any other private data through the "random" number used in non-deterministic signatures. I read that here

Is there an easy way to check wether this is true by looking at a transaction signed by trezor?



PGP key molecular F9B70769 fingerprint 9CDD C0D3 20F8 279F 6BE0  3F39 FC49 2362 F9B7 0769
klokan
Full Member
***
Offline Offline

Activity: 120
Merit: 100


View Profile
June 10, 2014, 10:34:43 PM
 #1439

I have a question (to devs or anyone else):

I read trezor uses RFC6979 deterministic ecdsa signatures to prevent leaking of seed or any other private data through the "random" number used in non-deterministic signatures. I read that here

Is there an easy way to check wether this is true by looking at a transaction signed by trezor?

 The answer to your question is NO. There is no simple way to chech this. There is a difficult way to test that in your particular test scenario RFC6979 is used. There is virtually no way to actually check/prove that this happens in all cases. You can prove that the code that is in trezor git repository uses this RFC, but you have to trust devs that the device is running unmodified code.
  Any wallet, hardware or software, can be malitious and can have backdoors. In the end you have to trust someone and Trezor devs can be trusted in my opinion more than some random guys that appear out of nowhere with their ultra cool android wallets.

The way you can test this RFC is used:
1. Reconstruct private keys from the trezor seed (using wallet32 or some other software).
2. Sign any transaction using Trezor.
3. Do a lot of math or coding to check that the signature was made using deterministic k.

Or just trust what the readme says...
klokan
Full Member
***
Offline Offline

Activity: 120
Merit: 100


View Profile
June 10, 2014, 10:51:39 PM
 #1440


  The answer to your question is NO. There is no simple way to chech this. There is a difficult way to test that in your particular test scenario RFC6979 is used.

One more comment: If I understand this correctly, the Trezor use case for signing transaction never reuses adresses. If k=1 was used all the time, only the private keys of the dead address will be revealed. There is still no known way to steal your BTC in this scenario. So the RFC6979 is good to have, but you are safe even without it.

Please correct me if I'm wrong.
Pages: « 1 ... 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 [72] 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 ... 265 »
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!