My new TREZOR

[HurtK]

https://lh3.googleusercontent.com/-KGFOWugeSlc/UzvCXEn1l7I/AAAAAAAAGJU/EKvFI4k_qig/w1664-h1232-no/IMG_20140401_195446.jpg

Why is the confirm button on the right? General convention is that yes/confirm buttons are on the left

see https://www.google.cz/search?tbm=isch&q=yes%20no%20dialog&hl=cs#hl=cs&q=yes+no+dialog&tbm=isch

[stick]

Why is the confirm button on the right? General convention is that yes/confirm buttons are on the left

(reposting from reddit)

We always put "positive" actions (next, confirm, ok) on the right and "negative" on the left (previous, abort, cancel) button.
It makes sense when you realize that in order to confirm transaction you have to press "next" several times (for each output) and then "confirm". I guess you agree that putting Next on the left and Back on the right is not a good idea.

[Velkro]

show us some more shots how it works, how it looks when accessing through USB by PC etc. managment panel etc.

[lensgrabber]

show us some more shots how it works, how it looks when accessing through USB by PC etc. managment panel etc.

A video would be pretty great.  I've heard of TREZOR but really have no idea how it's supposed to work. 

[AmDD]

Very cool, glad to see one in the 'wild'. Cant wait for them to open up ordering.

[bryant.coleman]

There are no third party vendors (as of now). If you have found any then you had found a scam.

Oh... so it is impossible for new users to obtain Trezors. 

[knight22]

So the software is being installed from the device?

[slush]

So the software is being installed from the device?

Trezor works as HID (mouse, keyboard) and does not need any system drivers. Device does not carry any desktop software (it would be security hole otherwise), but you can connect it with other software. Multibit and Armory teams are actively working on Trezor support. And in the meantime there's mytrezor.com, our webwallet talking to Trezor over browser plugin.

[Chef Ramsay]

Glad to see these finally are a go and yes, they look fantastic. Just curious as to when my pre-order (8-9-13) will arrive? Should also check your emails from time to time.

[chriswilmer]

Yes, Trezor supports bip32 "as they spec'd", it passes all test vectors and it has been tested also with other bip32-compatible software (Bits of proof server) that it generates same bip32 trees. No need to ask bitcoin core devs...

Shouldn't this also be a way to check for backdoors and/or whether the device has been tampered with? Wouldn't any change to the core part of the firmware result in getting different answers with the test vectors?

I hope you don't mind my bumping this question, but I really want to know about how a back door or otherwise tampered electronic device could get around the test vectors? Or am I misunderstanding something fundamentally?

[Mike Hearn]

The risk with a backdoored TREZOR is not that it generates public/private keys incorrectly (which is what the BIP32 test vectors test). It's that it can leak the private keys/seed via some side channel, or can be told to sign transactions bypassing the usual user confirmation logic.

For leaking private keys via side channels, there are virtually none available, except the ECDSA k value. Deterministic ECDSA is the solution to this. A backdoor that allows the computer to tell the device to empty itself out cannot really be defended against easily, because it's hard to know what software the device is truly running, but the reputation of the creators is sufficient to give good assurance for genuine/unmodified TREZORs. In future software remote attestation techniques might be interesting.

[roslinpl]

Yes it looks lovely! after all that delays it should looks and works great

I hope you will enjoy using Trezor!

Regards!

[chriswilmer]

The risk with a backdoored TREZOR is not that it generates public/private keys incorrectly (which is what the BIP32 test vectors test). It's that it can leak the private keys/seed via some side channel, or can be told to sign transactions bypassing the usual user confirmation logic.

For leaking private keys via side channels, there are virtually none available, except the ECDSA k value. Deterministic ECDSA is the solution to this. A backdoor that allows the computer to tell the device to empty itself out cannot really be defended against easily, because it's hard to know what software the device is truly running, but the reputation of the creators is sufficient to give good assurance for genuine/unmodified TREZORs. In future software remote attestation techniques might be interesting.

Well, one of my fears (perhaps unfounded) is that a tampered device will ignore my randomly generated input seed, and instead use some kind of weak method for generating the master private key. If all of the algorithms are published however, I should be able to test whether the device is using the input seed as intended right? (i.e., compare the master public key generated on my laptop using the same algorithm as the public key generated by the trezor, where both used the same input seed).

Just to clarify, when I say "seed" what I really mean is the random data (dice rolls or whatever) that are used as a source of entropy.

[stick]

Well, one of my fears (perhaps unfounded) is that a tampered device will ignore my randomly generated input seed, and instead use some kind of weak method for generating the master private key.

That is a valid concern. What TREZOR does is that it shows its internal entropy on display (if asked to) before requesting an external one. Once provided, these two entropies are mixed (using hash) and you can verify that external was used and not omitted.

[dserrano5]

Are there theme'able devices in the roadmap? I'd kill for a red and white Hello Kitty one =^).

[roslinpl]

Soon trezor should think about "trezor watch" - that could be a great idea

[cor]

Are there theme'able devices in the roadmap? I'd kill for a red and white Hello Kitty one =^).

that's sweet  if there's enough hello kitty lovers we could make it possible...

[MarketNeutral]

Any more information on this?

Awesome development—truly!

Keep up the amazing work. 

[Swordsoffreedom]

That is cool I wanted a trezor but then they sold out of course they open sourced it for people to get later
But I will wait for a batch 2  

Are there theme'able devices in the roadmap? I'd kill for a red and white Hello Kitty one =^).

that's sweet  if there's enough hello kitty lovers we could make it possible...

O_O I would buy a batch of Gundam Themed ones

[marcus_of_augustus]

I don't have any financial relationship or otherwise with SatoshiLabs, other than the pre-order I made, which is now delivered. It's just a project I think is important.

Thanks. I agree TREZOR, and other user-friendly hardware wallets, are for me the most pressing bottleneck for bitcoin adoption.

Good work all around guys!