Pages:
Author

Topic: 🔥Seedkeeper🔥 Hardware device to backup your seedphrase - V2 out now! (Read 439 times)

legendary
Activity: 2730
Merit: 7065
Since the Seedkeeper can generate BIP39-compatible recovery phrases and store them on the card, maybe you will consider adding support for the creation of SLIP39-compatbile seed backups in the future. Brands like Trezor already favor these compared to regular 12/24-word BIP39 seeds and we will surely see more adoption in the future from other companies.
full member
Activity: 310
Merit: 151
Hardware and open source software solutions.

-----------------------------------------------------------------------------------------------------------------------------------------------------------------
Seedkeeper
The new version is finally available
-----------------------------------------------------------------------------------------------------------------------------------------------------------------


Exciting news

I’m thrilled to announce the launch of the new version of Seedkeeper, your go-to manager for passwords and seedphrases.

Available now on https://seedkeeper.io




------------------------------------------------------------------------------------------------------


What is Seedkeeper?

Seedkeeper is a smartcard-based secrets manager, featuring an EAL6+ secure element and running on 100% open-source firmware.
In simple terms, it's a password manager built directly into a smartcard for enhanced security.

This new version of Seedkeeper allows you to:

- Import:
-- an existing BIP39 seedphrase (12-18-24 + passphrase) on the Seedkeeper;
-- an existing passwords (with your login and URL info);
-- your Bitcoin wallet descriptors;
-- some free text to import whatever you want into the secure element.


- Generate:
-- a new (random) BIP39 mnenomic with the tool and store it on your Seedkeeper card;
-- a strong password for your everyday digital life (upper case, lower case, symbols and numbers). You can also use the "Easy to Read" feature to create a strong yet easy-to-remember password.

- Export all you secrets from the chip if you provide the right PIN code access.


Where the current version of Seedkeeper can store several seeds in its secure memory (up to a dozen); the new version brings a huge improvment regarding the memory management:
- You'll be able to store up to 100 secrets in the chip's memory!
- A label can be attached to each secret stored in secure memory. This can be used to provide a short description (in less than 128 characters).
- Seedkeeper will also support QRcode based information and the SeedQR format for a better integration with hardware signing devices such as Seedsigner.
- It was asked by many of you: you'll be able to delete a secret from the card  Grin



------------------------------------------------------------------------------------------------------


Mobile & Desktop app


Your Seedkeeper card has a dual-interface meaning you can use it with a smartcard reader on your desktop but also on mobile thanks to the NFC.
We will release a mobile application for you to manage your secrets at your fingertips:
- iOS app
- Android app



And a brand new desktop application with a better UI/UX.





------------------------------------------------------------------------------------------------------

Note:
- the current version of Seedkeeper V1 is compatible (out-of the box) with both mobile and desktop app.
- the Seedkeeper beeing sold on the Satochip webshop are now the V2.


Don't miss the latest news, go to https://seedkeeper.io.

------------------------------------------------------------------------------------------------------


Contact

Telegram: https://t.me/Satochip
Twitter: https://twitter.com/satochip
Website: https://satochip.io
GitHub: https://github.com/Toporin
Youtube: https://www.youtube.com/channel/UCPmmfB5PpuwMtha9mbaRNlg



legendary
Activity: 2212
Merit: 7064
- You'll be able to store up to 100 secrets in the chip's memory!
This sounds amazing, but I would also suggest adding support for SLIP39 format that has 20 words as standard.
Trezor recently started using it with all their new hardware wallets, and I think more devices will follow soon.
I hope the price for Seedkeeper v2 cards won't be two times more expensive Wink
full member
Activity: 310
Merit: 151
Hardware and open source software solutions.

-----------------------------------------------------------------------------------------------------------------------------------------------------------------
Seedkeeper
Video teaser
-----------------------------------------------------------------------------------------------------------------------------------------------------------------




Video link: https://www.youtube.com/watch?v=8IPiYmkt8mM

full member
Activity: 310
Merit: 151
Hardware and open source software solutions.

-----------------------------------------------------------------------------------------------------------------------------------------------------------------
How to use Seedkeeper
A step-by-step tutorial
-----------------------------------------------------------------------------------------------------------------------------------------------------------------



Are you sure to use the good hardware to safely store your seedphrases?


If you’re embarking on your crypto adventure and want to keep your assets yourself, the question of how to keep your seedphrase will arise fairly quickly.

If you do a quick search on the Internet, which we encourage you to do, you’ll quickly discover that all methods (even the most extreme) are out there when it comes to securing your seedphrase (aka mnemonic or seed) and keeping it as safe as possible.

Generally speaking, it’s always advisable to have several backups of your seedphrase. Just as it’s advisable to have several backups of your hard disks when they contain sensitive information, so as not to lose access to them permanently, it’s just as important to ensure that you never lose access to your seedphrase.

It is therefore possible to use a variety of storage methods, as long as they offer adequate security.

One of the simplest methods is to use Seedkeeper to save your recovery phrases.

Read more

full member
Activity: 310
Merit: 151
Hardware and open source software solutions.
-----------------------------------------------------------------------------------------------------------------------------------------------------------------
New release : Seedkeeper-Tool v0.1.3
Patch BIP39 seed import wizard to a Satochip (#12)
-----------------------------------------------------------------------------------------------------------------------------------------------------------------





--------------------------------------------------------------------------
Context
--------------------------------------------------------------------------

A bug in SeedKeeper-Tool v0.1.2 and previous versions is affecting the import of a seed in a Satochip card.

Because of this bug, when importing a (BIP39) mnemonic from the SeedKeeperTool wizard to a Satochip card (in plaintext), the mnemonic type is not identified correctly,
and the wrong seed derivation algorithm (the one normally used for Electrum mnemonic) is used.
Consequently the addresses derived from the seed are not compatible with standard BIP39 as should be expected.

The bug only affected the user of SeedKeeper-Tool v0.1.2 (and previous versions) who used SeedKeeperTool
to import a BIP39 seed in a satochip card in plaintext (through the "Import a Secret" menu, then "Mnemonic phrase" option).

That bug was patched in SeedKeeper-Tool v0.1.3.


--------------------------------------------------------------------------
Who is affected?
--------------------------------------------------------------------------

If you are not sure whether you are concerned, you can confirm that your are affected by this bug by following this procedure:

- Open your hardware wallet in Electrum-Satochip, then check balance and generated addresses
(you can also go to "Wallet" in the menu, then select "Information" option and copy the "Master Public Key").
- Create a new Electrum software wallet by importig your BIP39 seed in Electrum. Check the balance and adresses (or the Master Public Key as in the first step).

If the balances and addresses (or equivalently, the Master Public Keys) do not match between the hardware and software wallets, you are affected by the bug.


--------------------------------------------------------------------------
My wallet is affected, what should I do?
--------------------------------------------------------------------------

If you are affected by the bug and have access to your wallet, it is recommended to transfer all your funds to a new wallet with the correct seed import format to ensure compatibility in the future.

However, if you only have your seed backup for an affected wallet and need to recover the funds, you can use the SeedKeeperTool-patch12 to recover your wallet,
by following the procedure described in the next section.

This small utility (SeedKeeperTool-patch12) allows a user affected by this bug
to recover a wallet derived from the BIP39 seed with the non-standard derivation, either to a new Satochip card, or through Electrum.



--------------------------------------------------------------------------
How to use the SeedKeeperTool-patch12
--------------------------------------------------------------------------

Install the python script dependencies:
Code:
python -m pip install -r requirements.txt

Run the script:
Code:
'python SeedKeeperTool-patch12.py': python SeedKeeperTool-patch12.py

Based on your seed, the script will generate masterseed, xpriv, ypriv and zpriv that can be used to set up a wallet.

-----------------------------------
Recover through a Satochip card

Use the latest SeedKeeperTool release to import the masterseed into a Satochip.

-----------------------------------
Recover through electrum (for Bitcoin only)

Provide the BIP39 backup and (optionally) passphrase when prompted by the tool.
The tool will then generate the xpriv, ypriv and zpriv corresponding to your mnemonic, as derived (in a non-standard way) using the electrum derivation.
The xpriv is used for legacy wallet (BIP32 derivation path m/44h/0h/0h). The zpriv is used for segwit wallet (BIP32 derivation path m/84h/0h/0h).
The ypriv is used for p2sh-segwit wallet (BIP32 derivation path m/49h/0h/0h).

Launch electrum (https://electrum.org/) and create a new wallet using the wallet creation wizard (see also the printscreens in folder):

- Create new wallet: choose "Standard wallet"
- Keystore: choose "Use a master key"
- Create a keystore from a master key: enter the xpriv/ypriv or zpriv then click next

Your wallet generated from the seed with the non-standard derivation algorithm should be created.


--------------------------------------------------------------------------
Contact
--------------------------------------------------------------------------

Telegram: https://t.me/Satochip
Twitter: https://twitter.com/satochip
Website: https://satochip.io
GitHub: https://github.com/Toporin
Youtube: https://www.youtube.com/channel/UCPmmfB5PpuwMtha9mbaRNlg

full member
Activity: 310
Merit: 151
Hardware and open source software solutions.

-----------------------------------------------------------------------------------------------------------------------------------------------------------------
Seedkeeper can help you to...
Solve your cryptocurrency inheritance problem.
-----------------------------------------------------------------------------------------------------------------------------------------------------------------





What's the crypto inheritance problem?


To better understand the challenges you’ll face when passing on your crypto assets to your children, let’s take a look at the technical aspects specific to this field.
The tangible representation of a cryptocurrency such as Bitcoin can be explained by cryptography and key pairs. Public and private key pairs play a fundamental role, serving as the means to secure and control ownership of digital assets within blockchain-based systems.
Let’s break down how they work and why they are crucial for possessing cryptocurrencies in this article.

Read more

full member
Activity: 310
Merit: 151
Hardware and open source software solutions.


-----------------------------------------------------------------------------------------------------------------------------------------------------------------
Seedkeeper Software Ecosystem
A bunch of hardware and open source software solutions to assist you in your BTC journey.
-----------------------------------------------------------------------------------------------------------------------------------------------------------------


Seedkeeper works in conjunction with an open-source, lightweight software client.
Here is the Seedkeeper software ecosystem: https://satochip.io/setup-use-seedkeeper-on-desktop/




full member
Activity: 310
Merit: 151
Hardware and open source software solutions.
For French speaking people, we hosted a Space a few days back.

Topics:
- Security,
- Seed storage,
- Best practice


Here is the link: https://twitter.com/i/spaces/1BdGYylepNDGX?s=20
full member
Activity: 310
Merit: 151
Hardware and open source software solutions.

I just see this on my local board, Husna sharing this tool, I still don't know how it work, when the function still uses electronics as media for storing the seed, is that function can still be hacked from the internet even if it is offline?. (cookie, history and etc)

Is available for storing besides BIP39 seed such as Electrum seed?, because when I read how-to, there is generate a random seed, when different seed (electrum) from the default (BIP39), I doubt it will generally not as usual and make the confused when use for restoring it.

What material? SS304, Titanium, or PVC (ATM Card)?

how to restore when forget PIN CODE?
Quote
Your Seedkeeper card is protected by a PIN code: a 4-16 characters password used to unlock it



Seedkeeper is "offline". If you generate a masterseed "on chip", it's completly air-gapped. Meaning the hosting computer, neither the user is able to see it.
Of course, if you use our Seedkeeper-tool to generate a new seed or import an existing one and your computer has a keylogger, you might be compromised.

You can store any seed on the device.

Cards are made out of PVC like your ATM card.

If you forgot your PIN code, you wont be able to recover it. It's a security measure. But Seedkeeper-Tool comes with a one click backup solution. So you can initialize several Seedkeeper cards with different PIN code and import the same backup on each one.

How many digits codes? is that Seedkeeper have a number 0 for a pin?. because I'm just a little bit uncomfortable, Trezor hasn't Number 0 to create a pin which is my favorite number.

Why you don't make it like another seed keeper using steel?, the function will be more perfect, we don't need to worry about fire and we can keep it on a wood cupboard. And I don't know why we need to PIN for each mnemonic phrase where PIN/Password is we can use for an additional phrase using the same mnemonic seed to create another wallet/address.


Regarding the PIN code, you dont need a dedicated PIN for each seed you want to save in the Seedkeeper memory.
The PIN is unique, from 4 to 16 chars and can include 0-9 but also a-Z or any other char. You will be able to put "ImInLoveWith0" as a PIN code.
This code is needed everytime you want to access the chip memory.

Using a metal plate instead of the PVC will not be more secure or wont last longer in time. And metal plate isnt suitable for NFC communication. Seedkeeper card is NFC ready, the antenna is hidden in the PVC layers.
legendary
Activity: 2366
Merit: 2054

I just see this on my local board, Husna sharing this tool, I still don't know how it work, when the function still uses electronics as media for storing the seed, is that function can still be hacked from the internet even if it is offline?. (cookie, history and etc)

Is available for storing besides BIP39 seed such as Electrum seed?, because when I read how-to, there is generate a random seed, when different seed (electrum) from the default (BIP39), I doubt it will generally not as usual and make the confused when use for restoring it.

What material? SS304, Titanium, or PVC (ATM Card)?

how to restore when forget PIN CODE?
Quote
Your Seedkeeper card is protected by a PIN code: a 4-16 characters password used to unlock it



Seedkeeper is "offline". If you generate a masterseed "on chip", it's completly air-gapped. Meaning the hosting computer, neither the user is able to see it.
Of course, if you use our Seedkeeper-tool to generate a new seed or import an existing one and your computer has a keylogger, you might be compromised.

You can store any seed on the device.

Cards are made out of PVC like your ATM card.

If you forgot your PIN code, you wont be able to recover it. It's a security measure. But Seedkeeper-Tool comes with a one click backup solution. So you can initialize several Seedkeeper cards with different PIN code and import the same backup on each one.

How many digits codes? is that Seedkeeper have a number 0 for a pin?. because I'm just a little bit uncomfortable, Trezor hasn't Number 0 to create a pin which is my favorite number.

Why you don't make it like another seed keeper using steel?, the function will be more perfect, we don't need to worry about fire and we can keep it on a wood cupboard. And I don't know why we need to PIN for each mnemonic phrase where PIN/Password is we can use for an additional phrase using the same mnemonic seed to create another wallet/address.
hero member
Activity: 882
Merit: 5834
not your keys, not your coins!
Our readers are sourced from a trusted third party. It does not require any specific drivers as we are using well known chip that uses verified OS drivers. Eg: Realtek or Alcor.
That's very good to know, that you don't need to install some sketchy drivers and they work out of the box. Especially important with the current mess of 'Amazon card readers' that are apparently affected at huge scale.

The contractor purchased a $15 card reader sold by Saicoo on Amazon. The device has 4.5/5 stars and 11,700 ratings and appears in the sponsored listing section at the top of the Amazon search results for “PIV (Personal Identity Verification) card reader” or “CAC card reader.” The listing and reviews would suggest that this particular CAC reader is a safe and reputable device. However, when the contractor plugged the device into his computer running Windows 10, he was met with a message saying that the device’s drivers weren’t functioning properly. Windows advised that he find newer drivers on the vendor’s website.

The contractor followed this instruction and found drivers for the device on Saicoo’s website, but didn’t install them right away. He instead uploaded the file to Virustotal, which scanned the file for malware with 63 different antivirus tools. 43 of these tools indicated that the file contained malware, specifically the Ramnit worm.
full member
Activity: 310
Merit: 151
Hardware and open source software solutions.
Regarding the card reader, you are completly right. But that's the exact same thing with every hardware that needs to be connected to the computer:
- USB cable can onboard a malware as well as bluethoot communication.
True, however, this is a very recent / current issue that was recently figured out; I also read about that. In theory, you can build MITM USB cables and whatnot [1], but it's not an acute widespread issue right now, unlike the card reader situation.

We are selling our own chip card reader because we can trust this hardware. But as you said, it is and will be a major concern in regards of the global security. Just as any other connection: people has to be careful.
Are you actually making your own card reader or sourcing it somewhere? Because if it's the latter, it could be affected, too. The issue is in the drivers.

Here's the first article I can find about it:
https://krebsonsecurity.com/2022/05/when-your-smart-id-card-reader-comes-with-malware

Would be worth checking your products / drivers you ship if they're affected too or not.

[1] https://mg.lol/blog/badusb-cables/

Our readers are sourced from a trusted third party. It does not require any specific drivers as we are using well known chip that uses verified OS drivers. Eg: Realtek or Alcor.


hero member
Activity: 882
Merit: 5834
not your keys, not your coins!
Regarding the card reader, you are completly right. But that's the exact same thing with every hardware that needs to be connected to the computer:
- USB cable can onboard a malware as well as bluethoot communication.
True, however, this is a very recent / current issue that was recently figured out; I also read about that. In theory, you can build MITM USB cables and whatnot [1], but it's not an acute widespread issue right now, unlike the card reader situation.

We are selling our own chip card reader because we can trust this hardware. But as you said, it is and will be a major concern in regards of the global security. Just as any other connection: people has to be careful.
Are you actually making your own card reader or sourcing it somewhere? Because if it's the latter, it could be affected, too. The issue is in the drivers.

Here's the first article I can find about it:
https://krebsonsecurity.com/2022/05/when-your-smart-id-card-reader-comes-with-malware

Would be worth checking your products / drivers you ship if they're affected too or not.

[1] https://mg.lol/blog/badusb-cables/
full member
Activity: 310
Merit: 151
Hardware and open source software solutions.
Seedkeeper is purely designed to store sensitive information. Secured by a PIN code.
You can use it to initialize a Satochip card or save an existing seed. It's useful to add an extra security layer and as a backup of your metal plate.
This means that in theory I could just erase wipe out my Seedkeeper card, and load it with open source code provided for Satochip or Satodime?

We are selling chip card readers because: 1) we have not release mobile app (and thus NFC communication) for Satochip and Seedkeeper products (not yet). 2) NFC reader are very expansive. Much more than a chip card reader.
Chip card readers could be serious problem and single point of failure for your product, for example I recently heard a news about card readers that came with malware infected drivers.
I didn't know that there is list of approved card readers, so anything that was not approved or certified could have some code hidden inside of them.
Even approved card readers can have some government installed backdoor, so I have hard time trusting any of them.
Is the card reader you are selling approved or not, and what kind of code it's using?
https://krebsonsecurity.com/2022/05/when-your-smart-id-card-reader-comes-with-malware/

For security reason, cards we are selling through our shop are "locked" to prevent any malware installation while in transit.
BUT, as everything is open source, we are also selling blank javacard that you can buy and load by yourself.
One applet at a time can run on the chip. And yes, if you want to load the Seedkeeper applet for testing purpose, then erase it and load the Satodime one or the Satochip one, you can.
Check out our compatible Javacard: https://satochip.io/product/satochip-diy-and-developer-card/

Regarding the card reader, you are completly right. But that's the exact same thing with every hardware that needs to be connected to the computer:
- USB cable can onboard a malware as well as bluethoot communication.
We are selling our own chip card reader because we can trust this hardware. But as you said, it is and will be a major concern in regards of the global security. Just as any other connection: people has to be careful.
full member
Activity: 310
Merit: 151
Hardware and open source software solutions.
I see this as a less safe version of a laminated paper backup (since it can be damaged by heat, cold or radiation), but maybe a bit more convenient. Though I wonder how often you make and restore seed words backups (probably not very often). However I do like the other products Tibu makes and will probably try Satochip in the future. Indeed, it's much more stealthy to carry around a regular card instead of a bulky hardware wallet and it might be a replacement for the software wallet I use for on-the-go payments. It's just a pity that while the device itself is as slim and inconspicuous as it gets, you always need a bulky reader to actually use it.

-> Our products are also great in combination with existing one... Such Ledger or Trezor. You can have a Satochip card as a backup or as a "traveller" hardware wallet while you keep your Ledger in the bank safe.
I was mostly referring to the seedkeeper; I don't really get the benefits of doing a seed word backup on a smartcard instead of laminated paper. Since restoring seeds is something you typically do so rarely that the convenience of a smartcard is not really needed. Manually typing them in in those rare occasions is totally enough, in my opinion.


I totally missed that they have NFC; then it might actually be a pretty cool device to use in conjunction with a phone, since more phones have NFC than PCs or laptops. It would also be relatively inconspicuous quickly holding a card to the back of your phone even in public spaces. I'm generally not a fan of NFC or other wireless technologies on hardware wallets, but in this form factor and for this application (small amounts for usage on the go) it could actually make sense.
But if I understand correctly, unfortunately their software only runs on desktop OSes - missed opportunity in my opinion. If I can carry a laptop, I can also carry a Foundation Passport.

You are right. Our "NFC' mobile application protfolio is weak at the moment. We only have the Satodime Tool on Android.
But we are working on the iOS version and the mobile app for Seedkeeper. We can easily imagine to integrate Seedkeeper with Blue Wallet or Muun Wallet (non custodials soft wallet). And when a user want to create a new wallet, he can just tap his Seedkeeper and the seed is store within the card. It's easy and straight forward. It will be easier for newcomers to start with such software wallet as they would'nt have to deal with the seed. -Store in a dedicated device and forget -
Is this technologically (API-wise) possible on iOS? Since I believe no NFC-capable wallet exists so far that works with iOS, does it? Therefore I assumed it's a kind of software limitation by Apple. But I can definitely be wrong on this; I don't have a lot of knowledge on this topic.
The question arises whether you trust a smartcard's secure element more than your phone's, but I am sure that 'mobile' will be the most useful application for such a device. Since as I said before, as soon as you carry even a tiny purse or a bag, like when carrying a laptop with you, you already have enough space and carrying capability for something like Trezor or Passport. These things are already tiny, but obviously don't fit in a wallet. So I don't see a need for smartcard cryptowallets unless you're in a situation where you only carry your wallet and phone, and nothing else.

Regarding your first statement, Seedkeeper is not only a memory. It encrypts and stores your secrets within a dedicated element, tamper-proof. With a piece of paper, the biggest problem is not really the material itself but the fact that the seed is usually written in plain text. Thus if someone finds it, he got it. But indeed, the seed is something you dont have to deal on a daily basis. But that's also a problem because when you need it, maybe the time has passed and you cant remember where you put your seedphrase  Grin

Regarding the iOS part, yes it is. Apple does allow NFC enabled app since iOS 14 released back in 2020. But you are right, before this date, it was barely impossible to use the NFC with an iPhone.
legendary
Activity: 2212
Merit: 7064
Seedkeeper is purely designed to store sensitive information. Secured by a PIN code.
You can use it to initialize a Satochip card or save an existing seed. It's useful to add an extra security layer and as a backup of your metal plate.
This means that in theory I could just erase wipe out my Seedkeeper card, and load it with open source code provided for Satochip or Satodime?

We are selling chip card readers because: 1) we have not release mobile app (and thus NFC communication) for Satochip and Seedkeeper products (not yet). 2) NFC reader are very expansive. Much more than a chip card reader.
Chip card readers could be serious problem and single point of failure for your product, for example I recently heard a news about card readers that came with malware infected drivers.
I didn't know that there is list of approved card readers, so anything that was not approved or certified could have some code hidden inside of them.
Even approved card readers can have some government installed backdoor, so I have hard time trusting any of them.
Is the card reader you are selling approved or not, and what kind of code it's using?
https://krebsonsecurity.com/2022/05/when-your-smart-id-card-reader-comes-with-malware/
hero member
Activity: 882
Merit: 5834
not your keys, not your coins!
I see this as a less safe version of a laminated paper backup (since it can be damaged by heat, cold or radiation), but maybe a bit more convenient. Though I wonder how often you make and restore seed words backups (probably not very often). However I do like the other products Tibu makes and will probably try Satochip in the future. Indeed, it's much more stealthy to carry around a regular card instead of a bulky hardware wallet and it might be a replacement for the software wallet I use for on-the-go payments. It's just a pity that while the device itself is as slim and inconspicuous as it gets, you always need a bulky reader to actually use it.

-> Our products are also great in combination with existing one... Such Ledger or Trezor. You can have a Satochip card as a backup or as a "traveller" hardware wallet while you keep your Ledger in the bank safe.
I was mostly referring to the seedkeeper; I don't really get the benefits of doing a seed word backup on a smartcard instead of laminated paper. Since restoring seeds is something you typically do so rarely that the convenience of a smartcard is not really needed. Manually typing them in in those rare occasions is totally enough, in my opinion.

I totally missed that they have NFC; then it might actually be a pretty cool device to use in conjunction with a phone, since more phones have NFC than PCs or laptops. It would also be relatively inconspicuous quickly holding a card to the back of your phone even in public spaces. I'm generally not a fan of NFC or other wireless technologies on hardware wallets, but in this form factor and for this application (small amounts for usage on the go) it could actually make sense.
But if I understand correctly, unfortunately their software only runs on desktop OSes - missed opportunity in my opinion. If I can carry a laptop, I can also carry a Foundation Passport.

You are right. Our "NFC' mobile application protfolio is weak at the moment. We only have the Satodime Tool on Android.
But we are working on the iOS version and the mobile app for Seedkeeper. We can easily imagine to integrate Seedkeeper with Blue Wallet or Muun Wallet (non custodials soft wallet). And when a user want to create a new wallet, he can just tap his Seedkeeper and the seed is store within the card. It's easy and straight forward. It will be easier for newcomers to start with such software wallet as they would'nt have to deal with the seed. -Store in a dedicated device and forget -
Is this technologically (API-wise) possible on iOS? Since I believe no NFC-capable wallet exists so far that works with iOS, does it? Therefore I assumed it's a kind of software limitation by Apple. But I can definitely be wrong on this; I don't have a lot of knowledge on this topic.
The question arises whether you trust a smartcard's secure element more than your phone's, but I am sure that 'mobile' will be the most useful application for such a device. Since as I said before, as soon as you carry even a tiny purse or a bag, like when carrying a laptop with you, you already have enough space and carrying capability for something like Trezor or Passport. These things are already tiny, but obviously don't fit in a wallet. So I don't see a need for smartcard cryptowallets unless you're in a situation where you only carry your wallet and phone, and nothing else.
full member
Activity: 310
Merit: 151
Hardware and open source software solutions.
Tibu can you tell us how exactly is Seedkeeper different from Satochip or Satodime cards?
If I understand correctly this is alternative option for storing and writing seed words on paper or metal.
One potential problem I see with Seedkeeper is that it can only work with Seedkeeper Tool, and only protection is short PIN code that could be hacked in theory.
I do like standard credit card format, that won't bring much attention from other people.

Sorry for the late reply, very busy weeks...

Satochip is a pure hardware wallet, you generate a new seed or import and existing one. Card is protected by a PIN code.
Your keys, your coins. It's a personnal storage for crypto-currencies and other crypto assets.

Satodime is more like a cold storage, you don't have to deal with a seed, a password or a PIN code. Everything is done by the chip and you can use a mobile app to load and check the wallet's balance.
It's not a personal product, more like a gift card. Best product to orange pill someone or for crypto newcomers.

Seedkeeper is purely designed to store sensitive information. Secured by a PIN code.
You can use it to initialize a Satochip card or save an existing seed. It's useful to add an extra security layer and as a backup of your metal plate.

The 3 products share the same hardware and the same chip. Changes come from the code which is open source.



One potential problem I see with Seedkeeper is that it can only work with Seedkeeper Tool
That's a good point. One might ask what would happen if the Seedkeeper tool or Satoship as a company isn't around in a few years? How do I get access to my seeds Tibu?
The software appears to be open source: https://github.com/Toporin?tab=repositories
So you could download, compile, modify and even write your own software to interface with it, I suppose. It's probably a very standard Java Card so you might even be able to use other Java Card software as well.



-> Yup that's true. Even if Satochip S.R.L. dies, you will be able to keep it running. Our software products are open-source.


and only protection is short PIN code that could be hacked in theory.
You can use up to 16 characters, so it's not that short. And there is really no protection of the words if your seed phrase is written down on paper or engraved in steel or wood either. You can use a passphrase though with your standard paper wallet or the seed you store in your Seedkeeper.    
I see this as a less safe version of a laminated paper backup (since it can be damaged by heat, cold or radiation), but maybe a bit more convenient. Though I wonder how often you make and restore seed words backups (probably not very often). However I do like the other products Tibu makes and will probably try Satochip in the future. Indeed, it's much more stealthy to carry around a regular card instead of a bulky hardware wallet and it might be a replacement for the software wallet I use for on-the-go payments. It's just a pity that while the device itself is as slim and inconspicuous as it gets, you always need a bulky reader to actually use it.

-> Our products are also great in combination with existing one... Such Ledger or Trezor. You can have a Satochip card as a backup or as a "traveller" hardware wallet while you keep your Ledger in the bank safe.



I just see this on my local board, Husna sharing this tool, I still don't know how it work, when the function still uses electronics as media for storing the seed, is that function can still be hacked from the internet even if it is offline?. (cookie, history and etc)

Is available for storing besides BIP39 seed such as Electrum seed?, because when I read how-to, there is generate a random seed, when different seed (electrum) from the default (BIP39), I doubt it will generally not as usual and make the confused when use for restoring it.

What material? SS304, Titanium, or PVC (ATM Card)?

how to restore when forget PIN CODE?
Quote
Your Seedkeeper card is protected by a PIN code: a 4-16 characters password used to unlock it



Seedkeeper is "offline". If you generate a masterseed "on chip", it's completly air-gapped. Meaning the hosting computer, neither the user is able to see it.
Of course, if you use our Seedkeeper-tool to generate a new seed or import an existing one and your computer has a keylogger, you might be compromised.

You can store any seed on the device.

Cards are made out of PVC like your ATM card.

If you forgot your PIN code, you wont be able to recover it. It's a security measure. But Seedkeeper-Tool comes with a one click backup solution. So you can initialize several Seedkeeper cards with different PIN code and import the same backup on each one.



- A piece of paper can be easily lost, damaged or destroyed;
Your card can't be lost, damaged (have you tested the influence of electromagnetic fields and other influences of the surrounding world on the safety of information on the memory module) or destroyed (how is a plastic card better protected from burning compared to paper?)

I do like standard credit card format, that won't bring much attention from other people.
I would add here the ability to randomize the appearance of card. For example, to apply an image as a gift or to give the appearance of a bonus card of any store in order to disguise it.

The way information is stored on a similar map makes me once again think that there is no ideal way to store seed-phrase. There will always be vulnerabilities in any method and the choice of how to store it, for example, on paper, metal or such a card, will depend on your goals and preferences. It is possible that some investors will want to store their seeds on such cards.


Well, of course the card can be lost, damaged or destroyed. But what I mean behind this sentence is: a paper is easily damageable; by the UV of the sun, by a wet surrounding air or just lost because it's a small piece of paper. Furthermore, your seed is usually written in plain text. That's why we dont recommand to store a seed on a sheet of paper (and for example, Ledger still sells its hardware wallet with a "seed paper card" to allow you to write your seed down").

But the card is waterproof and shock proof. It can be heat and cold resistant. And the secure element is tamper proof.

Regarding the card customization, you can already do it for the Satochip and the Satodime cards... We will soon launch the customization module for the Seedkeeper one.
Just like your favorite T-Shirt, you can download your own picture and customize the front and the back of the card.

"The way information is stored on a similar map makes me once again think that there is no ideal way to store seed-phrase." I agree 100% with you. There is no "best way" to store a seed. But some tools/products are a bit safer/better than other.



You can use up to 16 characters, so it's not that short. And there is really no protection of the words if your seed phrase is written down on paper or engraved in steel or wood either.
Minimum you can use is 4 characters and people tend to use minimal pin if they can.
If I use paper or metal backup I can always add additional protection with one or more passphrases, and I am not sure how that works with Satochip products.

You have a point, but you can also use it with laptops that already have built-in NFC chips.
This could be alternative option but I don't think all of their card wallets and products work with NFC technology, that is why they are offering big readers.
Using NFC for hardware wallets and seed words could mean opening new can full of worms, and I wouldn't be surprised if scammers find a way to abuse it soon.
This is similar like wireless, it even has small miniature antenna inside chip, but it's with shorter range.


Hey  Wink

Our products are all NFC compatible. Our card are equiped with NFC antenna and work like a charm when using a NFC reader.
For example, our Satodime card can be read on your mobile phone while using our app. That's really important for us because you can esaily check if a keyslot is sealed or unsealed and check the balance. Even on street while dealing some sats for a watch.  Tongue

We are selling chip card readers because: 1) we have not release mobile app (and thus NFC communication) for Satochip and Seedkeeper products (not yet). 2) NFC reader are very expansive. Much more than a chip card reader.

"Using NFC for hardware wallets and seed words could mean opening new can full of worms, and I wouldn't be surprised if scammers find a way to abuse it soon." I dont get your point.
NFC is really secure. And even if you try to scan and skim a NFC card, you wont be able to perform any sensitive action as it will require the PIN code.



It's just a pity that while the device itself is as slim and inconspicuous as it gets, you always need a bulky reader to actually use it.
You have a point, but you can also use it with laptops that already have built-in NFC chips.
I totally missed that they have NFC; then it might actually be a pretty cool device to use in conjunction with a phone, since more phones have NFC than PCs or laptops. It would also be relatively inconspicuous quickly holding a card to the back of your phone even in public spaces. I'm generally not a fan of NFC or other wireless technologies on hardware wallets, but in this form factor and for this application (small amounts for usage on the go) it could actually make sense.
But if I understand correctly, unfortunately their software only runs on desktop OSes - missed opportunity in my opinion. If I can carry a laptop, I can also carry a Foundation Passport.

You are right. Our "NFC' mobile application protfolio is weak at the moment. We only have the Satodime Tool on Android.
But we are working on the iOS version and the mobile app for Seedkeeper. We can easily imagine to integrate Seedkeeper with Blue Wallet or Muun Wallet (non custodials soft wallet). And when a user want to create a new wallet, he can just tap his Seedkeeper and the seed is store within the card. It's easy and straight forward. It will be easier for newcomers to start with such software wallet as they would'nt have to deal with the seed. -Store in a dedicated device and forget -
hero member
Activity: 882
Merit: 5834
not your keys, not your coins!
It's just a pity that while the device itself is as slim and inconspicuous as it gets, you always need a bulky reader to actually use it.
You have a point, but you can also use it with laptops that already have built-in NFC chips.
I totally missed that they have NFC; then it might actually be a pretty cool device to use in conjunction with a phone, since more phones have NFC than PCs or laptops. It would also be relatively inconspicuous quickly holding a card to the back of your phone even in public spaces. I'm generally not a fan of NFC or other wireless technologies on hardware wallets, but in this form factor and for this application (small amounts for usage on the go) it could actually make sense.
But if I understand correctly, unfortunately their software only runs on desktop OSes - missed opportunity in my opinion. If I can carry a laptop, I can also carry a Foundation Passport.
Pages:
Jump to: