Pages:
Author

Topic: What if the Trezor server got compromised? - page 2. (Read 3549 times)

sr. member
Activity: 278
Merit: 254
January 12, 2015, 01:52:26 PM
#29
This is why we need Maidsafe. Servers are deprecated and only create trouble.

I run a Trezor off a bitcoin node that runs in my house.  The Trezor talks to an electrum 2.0 beta client and the electrum 2.0 beta client talks to an electrum server which talks to the bitcoin node.  The electrum server and the bitcoin node are physically in my home office.

It all works.  It's very fast. It's easy to use. The Trezor is presently connected via USB to a Windows 7 workstation and the Electrum server and  bitcoin node are running on a small Linux machine that I had lying around.



Have you written up how you set this up? It would be nice to see some docs about how to do this.

The biggest part of the problem was becoming familiar with compiling software and installing it on the operating systems that were involved:  Ubuntu 14.04 and Windows 7.  Initially, I just focused on Ubuntu.  I started out running it in a VMware virtual machine (free version) that ran under Window 7, but this was interfering with the performance of other things I use the machine for, so I spend $300 and put together an Atom based Intel NUC system with 120 GB SSD and 8 GB of RAM.  I installed Ubuntu 14.04 LTS on this machine.  Initially I was using a spare keyboard and mouse and VGA display, but after I got the system running OK and set up SSH I have managed the system headless using PUTTY from my Windows 7 machine.

I went to the Electrum web site and then to Github and found the instructions for installing Electrum Server, which involve building it from source. This was pretty straightforward, just involved tracing down some dependencies.  I am no Linux expert, so a certain amount of Googling was needed to interpret error messages and figure out how to do things, such as increasing the number of open files.  The first part of the directions was to build a bitcoin node from source on this machine.  After I got this working, and installed on the system and it seemed to be working OK, I moved on to the electrum server and got it to work with electrum clients on one of my other machines (the release version, not the Trezor version. At this point I was running a couple of PUTTY terminal windows.  The last thing to do on this box was to rig it so that bitcoind and Electrum server started up automatically at boot. The machine runs unattended and draws almost no power (less than 15 watts) and sits behind a  UPS, so it does not glitch with my frequent power interruptions.  The Electrum Server is not very robust and if the system is shut down without waiting for the Electrum server to finish processing, the database can be corrupted and this can take hours to recover, so don't do this.

The next step was to get an Electrum 2.0 client running.  I did this first under an Ubuntu virtual machine on my Windows system. The directions are at the Electrum git-hub site. Again, some tracing down dependencies and loading them with apt-get.  At this point the next step was to get the Trezor running.  This requires installation of appropriate routines to allow Python programs to access the Trezor via the USB. This is the Python Trezor code, also available from Github. It includes a "hello world" test program to verify that a Python program can talk to the Trezor.  I ran into one obscure problem getting this to work. I had to find the utility to see what was going on on the (virtual) USB, bypassing the "Cython" wrapper that connected Python to the C code that talked to the USB. I thought something was seriously broken, but then I discovered that everything worked fine so long as I was running as root.  Once I set up the USB protections so the account used for the my normal login was permitted to access the Trezor (both read and write) then everything was fine.  At this point it was just a matter of starting with no wallets in the .electrum directory and Electrum 2.0 prompted me for the rest and my Trezor based wallet showed up.

I ran this way for a month.  Eventually, I got bored and curious and figured out how to get Electrum 2.0 to run under Windows 7.  This involved installing Python, Python-Qt and a development environment for C code.  This was another learning experience on my part, but it was all possible by downloading free software.  I got waylaid for a few hours until I realized that the free C compiler I had used was only 32 bits, and so I had to redownload and reinstall the appropriate versions of Python and Python-Qt.

For someone with more skill that I had, all of this would be an easy process.  The longest time required was the time for the initial download and block sync of bitcoind and the downloading of the electrum server database and initial sync of the electrum server.   If all you want to do is use Trezor via Electrum, none of this server work is needed, but then you will have to trust the electrum servers, which means you had better not be paranoid.

I deliberately picked a low end Intel Nuc (1.4 GHz single core) for a server machine  to see if it would be fast enough. It takes less than 10 percent of CPU time for bitcoind to keep up with the network, even where 1 MB blocks are back to back.  I can't say as much for the Electrum Server.  The CPU seems to be saturated and uses about 30-40 percent of the CPU on this slow machine for large blocks.  This seems unnecessary, as I understand it, but I don't know enough about Python to know how to profile the software and speed it up.  (I'm sure that this can be done, because running an Electrum Server doesn't involve verifying transactions in the block chain, which is the time consuming part of bitcoin processing.  The server is just doing database processing which ought to be lightening fast with 8 GB of RAM and an SSD.)

I would not recommend doing this if you aren't already an expert or (as in my case) you "enjoy" learning experiences. :-)

https://github.com/spesmilo/electrum-server
https://github.com/spesmilo/electrum
https://github.com//trezor/python-trezor




legendary
Activity: 1302
Merit: 1008
Core dev leaves me neg feedback #abuse #political
January 12, 2015, 01:37:04 PM
#28
can you enter you own seed made from dice rolls or coin flips?

can you even simply generate a new seed?
You can change the seed, but not to something you can choose yourself, it is automatically generated.

Then it is not trustless.
hero member
Activity: 609
Merit: 506
January 12, 2015, 12:16:04 PM
#27
This is why we need Maidsafe. Servers are deprecated and only create trouble.

I run a Trezor off a bitcoin node that runs in my house.  The Trezor talks to an electrum 2.0 beta client and the electrum 2.0 beta client talks to an electrum server which talks to the bitcoin node.  The electrum server and the bitcoin node are physically in my home office.

It all works.  It's very fast. It's easy to use. The Trezor is presently connected via USB to a Windows 7 workstation and the Electrum server and  bitcoin node are running on a small Linux machine that I had lying around.



Have you written up how you set this up? It would be nice to see some docs about how to do this.
hero member
Activity: 658
Merit: 500
January 12, 2015, 10:31:10 AM
#26
Trezor private keys are stored in Trezor, so everything is ok  Grin
AGD
legendary
Activity: 2070
Merit: 1164
Keeper of the Private Key
January 12, 2015, 04:39:54 AM
#25
I would trust an offline wallet more than any centralized service.
To be 100% sure about the randomness of your private key, use a coin and flip it 160 times. Google for a "how to generate a private bitcoin key with a coin"
full member
Activity: 139
Merit: 100
January 12, 2015, 04:30:50 AM
#24
The Trezor device has access to your private keys. Therefore, it is correct to assume that if the device is compromised, you could lose the BTC stored on it.

Can the device be compromised? For instance, can the attacker convince it to run software supplied by the attacker?

From time to time, the firmware on the device has to be updated. The update is downloaded from the site of the producer and signed with several (3? Don't recall any more) secret keys of the developers. The signatures are checked with the public keys of the developers, which are stored in the firmware of the device. Can this process be subverted?

If the PC downloading the new firmware is compromised, the malware on it can modify the new firmware - but it would invalidate the signatures. Therefore, a different approach is needed.

One possibility is if the signing (secret) keys of the developers are compromised - either by a disgruntled employee, or because they go rogue, or because the company is hacked. Such things have happened in the past. However, several keys would have to be compromised (and the breach not noticed); just one would not be enough. While not impossible, I consider this highly unlikely.

There is another approach, however - one that exploits not cryptography but human nature. We call is "social engineering" but it's basically lying and manipulation. Suppose that the malware on the compromised PC intercepts all communications to and from the company server and changes the firmware update page. It puts a HUGE warning that the company's keys have been compromised, there are new ones and the new firmware is signed with them, so trust us and ignore any warnings from the device - with screen shots of what to do and everything. (The same thing can be achieved by hacking the company's site - but that would be noticed and fixed fast enough.)

While many people will realize that something is fishy, many more would not. And a successful scam doesn't have to work on everybody - it only needs to work on enough people to be profitable.
hero member
Activity: 616
Merit: 500
I got Satoshi's avatar!
January 12, 2015, 01:35:57 AM
#23
Trezor is one of the most secures ways to have your bitcoins stored.

I don't agree, paper wallet or offline computer wallet is more secure and free
He said one of the most, not the most. Paper wallets are more secure (depending on how they are generated), but they serve a different purpose and are usually used for storage only and have to be swept into another wallet in order to make payments.

The trezor is the safest way to store coins and have them available to spend all the time. I'm going to the Isle of Man in June and I'm not taking my desktop pc with me, in this case it's the safest way to store coins and be able to make payments from any pc.
hero member
Activity: 616
Merit: 500
I got Satoshi's avatar!
January 12, 2015, 01:28:20 AM
#22
can you enter you own seed made from dice rolls or coin flips?

can you even simply generate a new seed?
You can change the seed, but not to something you can choose yourself, it is automatically generated.
hero member
Activity: 658
Merit: 500
January 12, 2015, 01:22:31 AM
#21
Trezor software is open source. Anyone can audit the code and if he thinks there is a security issue, you can voice out.
legendary
Activity: 1834
Merit: 1094
Learning the troll avoidance button :)
January 12, 2015, 01:17:26 AM
#20
Trezor is standalone so as far as I know no server
Assume offline generation as well so no server to transfer the stolen data from.
Plus Slush pools still running  Wink
legendary
Activity: 1302
Merit: 1008
Core dev leaves me neg feedback #abuse #political
January 12, 2015, 12:32:33 AM
#19
can you enter you own seed made from dice rolls or coin flips?

can you even simply generate a new seed?
member
Activity: 70
Merit: 10
BtcMarkets - Australian Bitcoin Trading Platform
January 11, 2015, 11:32:24 PM
#18
http://lmgtfy.com/?q=What+happens+if+the+SatoshiLabs+servers+are+hacked+and+the+firmware+signing+key+is+stolen&l=1


What happens if the SatoshiLabs servers are hacked and the firmware signing key is stolen?

First off, this won’t happen Wink. The SatoshiLabs master key is kept very safe. However, you don’t need to rely on the SatoshiLabs signature. You can verify the build yourself. Our hope is that a few trusted TREZOR users will make a habit of verifying firmware checksums. If you are concerned about this, we suggest making a habit of checking our blog or social news channels such as reddit before applying any updates. If there ever was a problem with the firmware not matching the source code, you can be sure someone will have written about it.

You don’t need to worry about the firmware being updated by a computer virus. Your TREZOR will ask you to manually confirm the update before anything is written to the TREZOR’s memory.
I don't think this answers the question. You get a "seed" that you can use to restore your wallet in the event that you need to replace your trezor. What happens if whatever server that is storing the connection between the seed and the private keys get compromised?

The seed is most likely unique to the device, So the hacker would need your seed and physical access to your Trezor
legendary
Activity: 2296
Merit: 1014
January 11, 2015, 11:29:29 PM
#17
Trezor is one of the most secures ways to have your bitcoins stored.

I don't agree, paper wallet or offline computer wallet is more secure and free
full member
Activity: 209
Merit: 100
January 11, 2015, 11:13:19 PM
#16
http://lmgtfy.com/?q=What+happens+if+the+SatoshiLabs+servers+are+hacked+and+the+firmware+signing+key+is+stolen&l=1


What happens if the SatoshiLabs servers are hacked and the firmware signing key is stolen?

First off, this won’t happen Wink. The SatoshiLabs master key is kept very safe. However, you don’t need to rely on the SatoshiLabs signature. You can verify the build yourself. Our hope is that a few trusted TREZOR users will make a habit of verifying firmware checksums. If you are concerned about this, we suggest making a habit of checking our blog or social news channels such as reddit before applying any updates. If there ever was a problem with the firmware not matching the source code, you can be sure someone will have written about it.

You don’t need to worry about the firmware being updated by a computer virus. Your TREZOR will ask you to manually confirm the update before anything is written to the TREZOR’s memory.
I don't think this answers the question. You get a "seed" that you can use to restore your wallet in the event that you need to replace your trezor. What happens if whatever server that is storing the connection between the seed and the private keys get compromised?
sr. member
Activity: 278
Merit: 254
January 11, 2015, 10:37:35 PM
#15
This is why we need Maidsafe. Servers are deprecated and only create trouble.

I run a Trezor off a bitcoin node that runs in my house.  The Trezor talks to an electrum 2.0 beta client and the electrum 2.0 beta client talks to an electrum server which talks to the bitcoin node.  The electrum server and the bitcoin node are physically in my home office.

It all works.  It's very fast. It's easy to use. The Trezor is presently connected via USB to a Windows 7 workstation and the Electrum server and  bitcoin node are running on a small Linux machine that I had lying around.

member
Activity: 70
Merit: 10
BtcMarkets - Australian Bitcoin Trading Platform
January 11, 2015, 10:03:36 PM
#14
I highly doubt any of the Trezors come in contact with an online machine or server while in production. If they were to store the private keys on their servers it would go against the whole point of the Trezor device.
hero member
Activity: 700
Merit: 501
January 11, 2015, 09:11:03 PM
#13
This is why we need Maidsafe. Servers are deprecated and only create trouble.
sr. member
Activity: 434
Merit: 250
Loose lips sink sigs!
January 11, 2015, 09:04:30 PM
#12
Having not seen a Trezor hack doesn't mean it's not possible.

Absolute security is relying on NO ONE else to give you your private keys.
legendary
Activity: 1120
Merit: 1000
January 11, 2015, 08:51:30 PM
#11
Trezor is one of the most secures ways to have your bitcoins stored.

The private keys of your trezor never go out from it, and you can always check in its screen the transaction parameters to see if they are correct or not.

I have not seen yet any trezor hack.
hero member
Activity: 714
Merit: 503
January 11, 2015, 08:41:09 PM
#10
you should understand how trezor works

trezor private keys are stored in trezor ,and they never go out from it

so trezor server does not matter to hack your bitcoins
Pages:
Jump to: