Tangem Wallet Pack of 2 - Secure Crypto Wallet - Trusted Cold Storage for Bitcoin, Ethereum, NFT's &

Tangem Wallet Pack of 2 - Secure Crypto Wallet - Trusted Cold Storage for Bitcoin, Ethereum, NFT's &
Key item features Ultimate Security: Generates a private key that remains on the card, safeguarding crypto and NFTs from hackers with EAL6+ certification and audited firmware. Versatile Compatibility: Manages over 13,000 tokens across 70+ blockchains, supporting DeFi, NFTs, and DeEx without wires, Bluetooth, or USB. Effortless Operation: Utilizes NFC for secure transactions via a mobile device and the Tangem app, enabling buying and selling crypto with various payment methods. Smart Backup: Features a second Tangem Wallet as a backup, eliminating the need for paper, pictures, or seed phrases for recovery. Durable Design: Boasts IP68 protection against environmental conditions, ensuring longevity and robust physical security. Comprehensive Support: Compatible with Bitcoin, Ethereum, Solana, XRP, USDT, and over 6,000 cryptocurrencies, integrating with dApps and WalletConnect.

LBANK

LBANK

How is Blockstream Jade's PIN secure?

I think I understand the purpose of a blind oracle: to not have our encryption key stored in Jade so that an attacker can't perform a physical key extraction by manipulating the hardware.

The oracle serves as a form of "secure element" and helps keep Jade fully open-source by being in an external server.

We can get the secret key to unlock the wallet using an Elliptic Curve Diffie-Hellman (ECDH) key exchange, which is only available after we set the PIN correctly.

However, I don't understand how is the PIN itself secured.

Question: Wouldn't the PIN be subject to the type of key extraction the oracle is supposed to protect us from, since it is not stored in a secure element?

If yes, sounds like getting the PIN would be just an additional step, but once the attacker has it, he is capable of obtaining the secret key by performing the ECDH himself, which doesn't sound much safer.

Can someone explain to me what I'm getting wrong here?

Thanks!



from Recent Questions - Bitcoin Stack Exchange https://ift.tt/tf8oKgh
via IFTTT

Popular posts from this blog

Crypto Exec Warns Tokenization Is Moving Faster Than Expected

Image
According to a post shared on X by Keith Grossman, president of crypto payments firm MoonPay, finance is heading toward an onchain future that could unfold over several years. The view comes as large banks and asset managers begin product tokenization, a move that once seemed extreme but is now being treated as a practical step by major institutions. Regulatory Signals Push Institutions Forward Based on reports cited by Grossman, progress has accelerated because rules are becoming clearer. Legislative efforts, regulatory guidance, bank involvement and accounting standards are starting to line up. That combination reduces uncertainty, which is often what slows large pools of capital. BlackRock has already launched tokenized funds, while Franklin Templeton is running tokenized money market funds on public blockchains. Those actions suggest that tokenization is no longer confined to pilot labs or internal trials. It is being used with real assets and real clients. Bank of Ameri...
Read more

Bitcoin Mining Could Be Strengthening The Ruble, Russian Central Bank Says

Image
Bitcoin mining may be providing incremental support to the Russian ruble, Central Bank Governor Elvira Nabiullina said, while cautioning that the effect is difficult to measure because much of the sector still operates in a legal and reporting gray zone. Bitcoin Mining May Support The Ruble Responding to a question at a press conference, Nabiullina said it is “probably difficult to quantify” mining’s influence “because a significant part of mining is still in a gray area.” Still, she added that mining is “indeed one of the additional factors contributing to the strong ruble exchange rate.” As Russian business news portal for RBC reported , her remarks come as Russian officials increasingly frame mining and crypto flows as macro-relevant, not just a niche tech or energy story. Earlier, Maxim Oreshkin, deputy head of the presidential administration, said ruble forecasts have been thrown off by the underestimation of financial flows tied to mining and cryptocurrency. In his view, the s...
Read more

Nigerian SEC Partners With Police To Tackle Crypto Ponzi Schemes – Details

Image
The Nigerian Securities and Exchange Commission (SEC) is maintaining an intense focus on the local cryptocurrency industry, as indicated by recent developments. While introducing minimum capital requirements for previously unregulated virtual asset service providers (VASPs), the securities regulator has also formed an alliance with the Nigeria Police Force (NPF) against cryptocurrency fraud, among other illegal operations. Nigerian SEC Looks To Improve Crypto Investors’ Protection According to local media Voice of Nigeria , the SEC is ramping up efforts aimed at investor protection and transparent market operations in the crypto ecosystem. In a recent meeting with the NPF, the Commission’s Director-General (DG), Dr. Emomotimi Agama, communicated to the Inspector General of Police (IGP), Kayode Egbetokun, concerns over malicious actors in the financial markets who exploit investors’ trust for personal gains.  Dr. Agama said: They cloak their deceit in the glamorous but misunder...
Read more