-
@ Leo Wandersleb
2024-03-30 23:10:13Opinion about SeedSigner (hardware)
The SeedSigner right now is subject to some drama as hackers managed to "abuse" the board used in the SeedSigner(?) to connect to a "commercially available" LoRa receiver 120m away even if the board with the no radio components is being used.
While this is a good wake-up call to those who blindly trust the provider's marketing that goes about like this: "With no radio and with companion apps being able to detect key exfiltration and no state that somebody could extract when finding the device, this device is super secure. Can't steal what's not there.", those jumping to the defense of SeedSigner make good points, too: If your device can be compromised with some evil software at your home then it's probably also possible to just solder an RF chip there, too or swap the whole board with one that talks to cellphone towers.
But I'm worried about another attack than an evil maid patching your SeedSigner. What about the software distributed by SeedSigner themselves? I have not audited it but I have compiled it and I have verified that following their build instructions I got the same binary as the one they distributed and with that being the case and with keeping the SeedSigner as secure as the actual seed - yes, with this device you keep your seed on a piece of paper unless you want to remember 12 words which is a good way of destroying bitcoin when you get hit by a bus - your funds should actually be pretty secure.
You can always use a passphrase with your seed, rendering the paper backup less of an immediate key to your coins but of course that again opens the door to forgetting the passphrase. Keep it safe somewhere.
Other than that, the SeedSigner is an air-gapped device that comes with a tiny display and a camera to use for signing transactions. You can use it for example in a multi signature setup with the Sparrow desktop app.
All in all it's a bit more a hands-on device with many nice features and as long as you understand the implications of it not magically keeping that paper with your seed secure, I can recommend it.
WalletScrutiny #nostrOpinion