Author

Topic: Electrum/HWW Verification (Read 257 times)

legendary
Activity: 2758
Merit: 6830
November 26, 2019, 07:11:24 PM
#11
My Electrum+Nano S combo does not require this... but that is because I explicitly chose not to encrypt the wallet when setting it up! Wink Tongue
Looks like you are right. I have never noticed this option.

I just imported it again but this time with the option unchecked. This makes things easier, so... thanks. Smiley
HCP
legendary
Activity: 2086
Merit: 4363
November 26, 2019, 06:49:41 PM
#10
Just want to say that this does happen with the Ledger Nano S. Unless I create a watch-only address with my Ledger's xpub, I can't see anything about it unless I connect it and unlock with my PIN. After the wallet is unlocked, I can disconnect it.
My Electrum+Nano S combo does not require this... but that is because I explicitly chose not to encrypt the wallet when setting it up! Wink Tongue




So, I just get a warning on startup that the Nano isn't connected:


If I choose "No" the wallet is still opened and syncs like a "watching only" wallet.
legendary
Activity: 2758
Merit: 6830
November 21, 2019, 06:02:38 PM
#9
If you have a hardware wallet (I use a trezor with electrum), the wallet won't load up unless the trezor is plugged in so something must be done to decrypt the wallet (even if it is a public key on the device or an initial unique certificate associated to that seed maybe at an odd derivation path - using symmetric encryption).
Just want to say that this does happen with the Ledger Nano S. Unless I create a watch-only address with my Ledger's xpub, I can't see anything about it unless I connect it and unlock with my PIN. After the wallet is unlocked, I can disconnect it.
legendary
Activity: 3710
Merit: 1586
November 12, 2019, 02:06:48 PM
#8
This is quite an interesting question and I don't think anyone answered it (I also don't know the answer), the question is: what is used to encrypt the wallet file so only the hardware device has access to it.


A password derived from the xpub.
legendary
Activity: 1876
Merit: 3139
November 12, 2019, 02:00:03 PM
#7
If you have a hardware wallet (I use a trezor with electrum), the wallet won't load up unless the trezor is plugged in so something must be done to decrypt the wallet (even if it is a public key on the device or an initial unique certificate associated to that seed maybe at an odd derivation path - using symmetric encryption).

That's actually interesting because it does not apply to my setup. When I open my wallet, the following message box is shown.

.

When I select 'No' or simply close the box, I can see the list of all transactions. Everything looks as if I were using a watch-only wallet.

Edit: I quickly found out that I can enable the encryption manually just like in a normal Electrum wallet.

copper member
Activity: 2856
Merit: 3071
https://bit.ly/387FXHi lightning theory
November 12, 2019, 01:36:21 PM
#6
This is quite an interesting question and I don't think anyone answered it (I also don't know the answer), the question is: what is used to encrypt the wallet file so only the hardware device has access to it.

If you have a hardware wallet (I use a trezor with electrum), the wallet won't load up unless the trezor is plugged in so something must be done to decrypt the wallet (even if it is a public key on the device or an initial unique certificate associated to that seed maybe at an odd derivation path - using symmetric encryption).



I had to make a second watching only wallet in order to see transactions from my trezor for when I didn't have it avaliable to plug in.

e.g

legendary
Activity: 1876
Merit: 3139
November 12, 2019, 02:06:41 AM
#5
by the way if you are 'Ledger Nano S' use  so thing have interface for manage 'Ledger Nano S' why you used connect electrum ?

Ledger Live lacks some features which are available if you pair your hardware wallet with Electrum. The most notable feature is coin control. Private keys are not exposed to the computer in any way.
member
Activity: 868
Merit: 15
November 12, 2019, 12:24:05 AM
#4
I don't know exactly what you want !
by the way if you are 'Ledger Nano S' use  so thing have interface for manage 'Ledger Nano S' why you used connect electrum ?
but suggested electrum desktop wallet only.
copper member
Activity: 2338
Merit: 4543
Join the world-leading crypto sportsbook NOW!
November 11, 2019, 05:55:45 PM
#3
is verification only done during signing and prior to this the green ledger light on Electrum is an indicator only (trusting that the device holds the corresponding keys because the device says so)?

I think that's an accurate assumption.  I'm no programmer, but it's my understanding that Electrum can only assemble the transactions, then they are signed internally by the Ledger (any hardware wallet) then the signed Tx is broadcast by Electrum.  Electrum has no access the private keys, not even when the hardware wallet is connected.
legendary
Activity: 3710
Merit: 1586
November 11, 2019, 05:39:15 AM
#2
If you're not being asked for a PIN then it's not asking for any signatures. It'll only ask for them when you go to spend your coins.


jr. member
Activity: 32
Merit: 37
November 11, 2019, 05:03:32 AM
#1
When a Ledger Nano S is connected to Electrum, and the HWW contains the corresponding private keys for the attached Electrum wallet, the ledger symbol lights up in green.


How does Electrum confirm the device is holding the correct private key to spend the UTXO's contained in the Electrum wallet?


Does it simply receive the XPub stated by the device, and trust that the device holds the private keys for said XPub, or is there verification (ie: some type of signing) to confirm it?



In short, does Electrum verify that a device is accurately stating the private keys it holds or is verification only done during signing and prior to this the green ledger light on Electrum is an indicator only (trusting that the device holds the corresponding keys because the device says so)?
Jump to: