Pages:
Author

Topic: Hardware Bitcoin Wallet - page 3. (Read 4810 times)

newbie
Activity: 43
Merit: 0
October 06, 2012, 03:50:55 PM
#24
It should be pronounced for blind users.
What about the deaf-blind? two metal handles that would shock you in Morse code? Smiley
legendary
Activity: 2142
Merit: 1010
Newbie
October 06, 2012, 03:41:12 PM
#23
Quote
OK, say you want to make a transaction. You fill out four things in the PC client: the wallet to transfer from, the amount of BTC, the destination address and the password for the wallet.
You press OK, and the transaction is sent to the device via USB for signing.
The Send-To address is changed by malware to another address before being sent to hardware wallet for signing. Hardware signs the transaction.

You cannot get any security on compromised computer! It is only a question how sophisticated is the malware.
That's why the destination address is displayed on the hardware display.

It should be pronounced for blind users.
newbie
Activity: 43
Merit: 0
October 06, 2012, 03:38:28 PM
#22
And how many people will be comparing them? We are talking about people with IQ consisting of only two digits who infect their own computers with malware and still operate them.

Generate addresses that have matching few first digits like 1dice for every starting digits and have the malware to select address with matching start digits to display on LCD.
I can do many things, but I can't fix stupid.
legendary
Activity: 1512
Merit: 1049
Death to enemies!
October 06, 2012, 03:27:12 PM
#21
Quote
OK, say you want to make a transaction. You fill out four things in the PC client: the wallet to transfer from, the amount of BTC, the destination address and the password for the wallet.
You press OK, and the transaction is sent to the device via USB for signing.
The Send-To address is changed by malware to another address before being sent to hardware wallet for signing. Hardware signs the transaction.

You cannot get any security on compromised computer! It is only a question how sophisticated is the malware.
That's why the destination address is displayed on the hardware display.
And how many people will be comparing them? We are talking about people with IQ consisting of only two digits who infect their own computers with malware and still operate them.

Generate addresses that have matching few first digits like 1dice for every starting digits and have the malware to select address with matching start digits to display on LCD.
newbie
Activity: 43
Merit: 0
October 06, 2012, 03:21:32 PM
#20
Quote
OK, say you want to make a transaction. You fill out four things in the PC client: the wallet to transfer from, the amount of BTC, the destination address and the password for the wallet.
You press OK, and the transaction is sent to the device via USB for signing.
The Send-To address is changed by malware to another address before being sent to hardware wallet for signing. Hardware signs the transaction.

You cannot get any security on compromised computer! It is only a question how sophisticated is the malware.
That's why the destination address is displayed on the hardware display.
newbie
Activity: 43
Merit: 0
October 06, 2012, 03:20:32 PM
#19
http://www.safenet-inc.com/software-monetization/sentinel-hasp/ could be used as a secure wallet. Without a screen and buttons though.
I don't see how. That product is when the computer software doesn't trust the user (to have the right license).
This product is for when the user can't trust the software on the computer (to do as he says).
legendary
Activity: 1512
Merit: 1049
Death to enemies!
October 06, 2012, 03:19:58 PM
#18
Quote
OK, say you want to make a transaction. You fill out four things in the PC client: the wallet to transfer from, the amount of BTC, the destination address and the password for the wallet.
You press OK, and the transaction is sent to the device via USB for signing.
The Send-To address is changed by malware to another address before being sent to hardware wallet for signing. Hardware signs the transaction.

You cannot get any security on compromised computer! It is only a question how sophisticated is the malware.
newbie
Activity: 43
Merit: 0
October 06, 2012, 03:16:54 PM
#17
I absolutely love this idea, but what if it needs an upgrade for some reason? Is it a flashable eprom? If this is the case then why not just have an external usb drive with your bitcoin data that  you just unplug? If it isn't flashable then would upgrades cost money?
If you use a normal USB drive to hold your bitcoin wallet, a well-written virus could simply steal that file when you connect it.
With this thing, once you put your wallet on it, you can't get it off again (so keep a paper backup).
There is a chance that the bitcoin network changes some day, and that could make this product obsolete. I chose this approach because:
  • It's the most secure. There is no chance that you load a malicious firmware that could expose the wallet.
  • It's simpler. The simpler, the lower the price. The simpler, the faster to market.
  • It's a pretty low cost thing anyway, at USD 12-15. A bit cynical maybe, but if you can afford one, you can afford two.
  • if the bitcoin network changes, it's quite possible that the hardware in this thing need to be replaced anyway.
legendary
Activity: 2142
Merit: 1010
Newbie
October 06, 2012, 03:08:52 PM
#16
http://www.safenet-inc.com/software-monetization/sentinel-hasp/ could be used as a secure wallet. Without a screen and buttons though.
vip
Activity: 1386
Merit: 1140
The Casascius 1oz 10BTC Silver Round (w/ Gold B)
October 06, 2012, 02:38:25 PM
#15
You know, someone could probably build the app to do this in C, targeting Linux as the OS, using serial as the interface, and it would probably run on gobs of hardware that's already out there for nearly free.  People could root their old 2nd generation iPod or whatever, and use it as a transaction verifier and be able to get into it for zero hardware cost (or pick one up on eBay).
Absolutely possible. The device software will certainly be written in C, and I fully expect to open-source it. The PC part of the software will also be open-sourced, and in the long run will be able to support a lot of different transaction-signers.
Getting it to run on all kinds of strange hardware will be a different project.

If your transaction signer simply assumed the existence of one standard serial port at /dev/something and was designed to call some other binary to ask user a question and get a response, then someone else could worry about the hardware by creating that other binary.
member
Activity: 98
Merit: 10
Capitalism rocks my world.
October 06, 2012, 02:24:28 PM
#14
I absolutely love this idea, but what if it needs an upgrade for some reason? Is it a flashable eprom? If this is the case then why not just have an external usb drive with your bitcoin data that  you just unplug? If it isn't flashable then would upgrades cost money?
newbie
Activity: 43
Merit: 0
October 06, 2012, 02:21:17 PM
#13
You know, someone could probably build the app to do this in C, targeting Linux as the OS, using serial as the interface, and it would probably run on gobs of hardware that's already out there for nearly free.  People could root their old 2nd generation iPod or whatever, and use it as a transaction verifier and be able to get into it for zero hardware cost (or pick one up on eBay).
Absolutely possible. The device software will certainly be written in C, and I fully expect to open-source it. The PC part of the software will also be open-sourced, and in the long run will be able to support a lot of different transaction-signers.
Getting it to run on all kinds of strange hardware will be a different project.
vip
Activity: 1386
Merit: 1140
The Casascius 1oz 10BTC Silver Round (w/ Gold B)
October 06, 2012, 02:03:03 PM
#12
You know, someone could probably build the app to do this in C, targeting Linux as the OS, using serial as the interface, and it would probably run on gobs of hardware that's already out there for nearly free.  People could root their old 2nd generation iPod or whatever, and use it as a transaction verifier and be able to get into it for zero hardware cost (or pick one up on eBay).

Sure, but that's a nerd thing.

We are targeting grandma's here.

Not exactly.  The goal isn't to make it a hobby project for nerds, the goal is to get the hardware cheap.  There is SO MUCH obsolete hardware that could run an application like this that people are throwing in the garbage.  It would be a sustainable business model to pick some old gadget, refurbish and recycle it into a low-cost bitcoin transaction verifier, and sell it on the open market to grandma.  An iPod modified to be a transaction verifier would be very grandma-friendly (if someone else does the modification, of course).
full member
Activity: 172
Merit: 100
October 06, 2012, 01:57:07 PM
#11
looks like nice, i like stuff like this.. if it will cost up to 2.5BTC i will buy it ..
legendary
Activity: 2576
Merit: 2267
1RichyTrEwPYjZSeAYxeiFBNnKC9UjC5k
October 06, 2012, 01:40:02 PM
#10
You know, someone could probably build the app to do this in C, targeting Linux as the OS, using serial as the interface, and it would probably run on gobs of hardware that's already out there for nearly free.  People could root their old 2nd generation iPod or whatever, and use it as a transaction verifier and be able to get into it for zero hardware cost (or pick one up on eBay).

That's an interesting idea. I have a portable digital storage oscilloscope that appears to have been built into an mp3player hardware. Maybe work from the rockbox project.
legendary
Activity: 1176
Merit: 1001
October 06, 2012, 01:38:56 PM
#9
You know, someone could probably build the app to do this in C, targeting Linux as the OS, using serial as the interface, and it would probably run on gobs of hardware that's already out there for nearly free.  People could root their old 2nd generation iPod or whatever, and use it as a transaction verifier and be able to get into it for zero hardware cost (or pick one up on eBay).

Sure, but that's a nerd thing.

We are targeting grandma's here.

@op, if you have nothing to offer but a cupple of ideas you better be good at organizing everything and being happy even with a little share. Good luck!
vip
Activity: 1386
Merit: 1140
The Casascius 1oz 10BTC Silver Round (w/ Gold B)
October 06, 2012, 01:29:03 PM
#8
You know, someone could probably build the app to do this in C, targeting Linux as the OS, using serial as the interface, and it would probably run on gobs of hardware that's already out there for nearly free.  People could root their old 2nd generation iPod or whatever, and use it as a transaction verifier and be able to get into it for zero hardware cost (or pick one up on eBay).
newbie
Activity: 43
Merit: 0
October 06, 2012, 01:23:11 PM
#7
Why do they need you?
Hehe, they don't. However, I have a few undisclosed ideas left.
sr. member
Activity: 477
Merit: 500
October 06, 2012, 12:05:47 PM
#6
How about  a smartcard with bitcoin wallet?

https://en.wikipedia.org/wiki/Java_Card

edit: with usb smart card reader it's quite close what you suggested
legendary
Activity: 910
Merit: 1000
★YoBit.Net★ 350+ Coins Exchange & Dice
October 06, 2012, 11:49:32 AM
#5
hmm.. that is kinda cool.

Pages:
Jump to: