Pages:
Author

Topic: Why all this hype with Hardware Wallets when Bitcoin Core is all you need? - page 2. (Read 712 times)

hero member
Activity: 882
Merit: 5834
not your keys, not your coins!
~snip~

So Bitcoin Core allows to do the same thing, most people have an old pc that they do not use, they can just install bitcoin core, generate a wallet, export descriptors to the online PC (the daily use PC), there you create a watch-only wallet, import descriptors and you will have a functional watch wallet (allowing to create new receiving addresses and create unsigned transactions) after a transaction is created you just copy the psbt file in a USB flash drive, bring to the offline PC, sign and bring back to the online PC to broadcast.

~snip~

Let me know your thoughts.

Basically a hardware wallet is a product, ready to use, with a company that can provide support for newbies. You don't need a hardware wallet, but it's easier to use for people in general. Bitcoin literally started with Bitcoin Core. Hardware wallets were created later on, for people that didn't want to deal with the setup.

You can of course just have an offline pc (A raspberry pi Zero is ideal for this as it doesn't have any networking hardware) and run Electrum in it. PSBTs can even be transferred using a webcam through QR codes, it's pretty cool. But this is a DIY solution, which is not ideal for everyone.
I've got to repeat myself, but let's not forget that there's a big difference in attack surface between an embedded device with secure element versus a full PC (Raspberry Pi counts as well) without secure chip and probably even without secure boot (old laptops, Raspberry), possibly even with outdated BIOSes that might be full of holes like a good Swiss cheese.

I'll leave this article as a very current example of a severe BIOS bug:
https://thehackernews.com/2022/03/new-dell-bios-bugs-affect-millions-of.html

Of course, you can have also Linux kernel bugs, library bugs, and the list goes on - as well as cold boot attacks and everything I mentioned. On a hardware wallet, you have the SoC, the firmware, and that's basically it. There's much less code to audit and keep secure & updated than on a full PC. Like, if you're really worried, it's realistic to read the whole codebase of a hardware wallet, but it's impossible for one person to read through all the code that runs on an airgapped 'old laptop wallet' or a SeedSigner. This would include kernel and all libraries and packages.
hero member
Activity: 1008
Merit: 960
~snip~

So Bitcoin Core allows to do the same thing, most people have an old pc that they do not use, they can just install bitcoin core, generate a wallet, export descriptors to the online PC (the daily use PC), there you create a watch-only wallet, import descriptors and you will have a functional watch wallet (allowing to create new receiving addresses and create unsigned transactions) after a transaction is created you just copy the psbt file in a USB flash drive, bring to the offline PC, sign and bring back to the online PC to broadcast.

~snip~

Let me know your thoughts.

Basically a hardware wallet is a product, ready to use, with a company that can provide support for newbies. You don't need a hardware wallet, but it's easier to use for people in general. Bitcoin literally started with Bitcoin Core. Hardware wallets were created later on, for people that didn't want to deal with the setup.

You can of course just have an offline pc (A raspberry pi Zero is ideal for this as it doesn't have any networking hardware) and run Electrum in it. PSBTs can even be transferred using a webcam through QR codes, it's pretty cool. But this is a DIY solution, which is not ideal for everyone.
jr. member
Activity: 32
Merit: 128
I just thought of an even easier protection against this: get a laptop with RAM soldered to the mainboard. No way someone's going to freeze it and desolder at the same time.
now you're talking!  Cool

That is a great advice!

Another thing would be to use the dedicated offline PC with tails, as far as I know it is not vulnerable to a cold boot attack since RAM is overwritten after shutting it down (assuming PC was not previously compromised).
sr. member
Activity: 1190
Merit: 469

There's no point in encrypting RAM: to use it, the same RAM needs to have the decryption key.

apparently there's methods to bypassing the ram and storing the decryption keys in cpu so what you're saying isn't true but anyhow. maybe only hardcore linux geeks can do that.

Quote
I just thought of an even easier protection against this: get a laptop with RAM soldered to the mainboard. No way someone's going to freeze it and desolder at the same time.

now you're talking!  Cool
legendary
Activity: 2212
Merit: 7064
I am asking this question since whenever I see someone asking about how to store bitcoin, all the answers I read is buy a HW, but I rarely see someone advising to just use Bitcoin Core... the most reviewed and secure client?
You are comparing apples and oranges here, and Bitcoin Core is not viable option for most newbies.
Most of them can't wait for hours and days for blockchain download and sync and they don't care at all about running full node.
If you recommend someone new to use Bitcoin Core he would say that it's slow and maybe he would never again use BTC.

I do understand that there is a lot of marketing involved and they want to sell it, but in reality what offers HW vs Bitcoin Core?
I don't care about marketing gimmicks of some hardware wallets, but they can offer nice balance of security and usability.
Good hardware wallets can be open source, air-gapped, offline devices that can be used for storing seed words and signing transactions.
Bitcoin Core need internet connection to work properly.

At the end what are we doing extra? Some air gaped wallets like coldcard we create the unsigned tx, copy to SD Card, sign with the device, and bring back to the online PC to broadcast. We are doing exactly the same thing or can be even more since if we don't use it directly with Bitcoin Core and instead we use electrum, we will need also need to have a server like electrs which makes the bridge between Bitcoin Core and electrum.
I don't like coldcard wallet after they changed their license and stop being open source, so I don't recommend them, but you are nor mixing Electrum SPV wallet and Bitcoin Core.
I honestly don't understand the point you want to make with your comment here.
Nobody is forcing you to use hardware wallets and they are not needed, if you have offline computer device with Electrum wallet.
jr. member
Activity: 32
Merit: 128
Source? I'm genuinely curious and I'm finding nothing on that matter.

For seed extraction I thought the old versions were vulnerable to Oled side channel  (ledger was vulnerable but not critical) not allowing seed extraction.

The charlatan has a great blog and he listed all hacks, if you want to check, here is the link:
https://thecharlatan.ch/List-Of-Hardware-Wallet-Hacks/
hero member
Activity: 882
Merit: 5834
not your keys, not your coins!
Sure seed plate is not needed, but that is the recommendations I use to see. Why not when using a latptop? Because with bitcoin core you just backup a wallet.dat
And backing up a file is less prone to errors and cheaper than backing up words on paper or steel washers?

You'd advise to do backups; sure, you can do that. But reliability of laptop storage would mean you might be looking at replacing that crappy old laptop HDD short time after setting it up, so having to buy a new one (or upgrade to SSD) will again cost you time and money to install, set up and restore. Lots of hassle.

Backups can be made in USB Flash Drive, DVD, SD Cards etc
Do you read my replies in full? I said when your HDD fails, you'll need to replace it. You can't just run off of your DVD backup. USB drive could work, but the performance will be bad; they don't hold indefinitely and 1 USB drive is at least 5 bucks while you can make a paper backup for a few cents.

Not 'many of them can be hacked easily'. The hacks that were possible, weren't too simple to perform (took multiple hours & good equipment + knowledge) and they were only on hardware wallets of the 'first generation' (without secure element) and on firmware versions that are ancient by 2022. I believe the Trezor hack utilized a 2016 firmware; that would be 6 years ago now. I also explicitly mentioned that I'd prefer a HW wallet with secure element over a laptop when it comes to physical attacks.

The way to exploit the trezor one is the same for the last version, both can not be fixed.
Again: do you even read? Both have no secure element. You're literally talking without having a clue.


That doesn't require a bug in Bitcoin Core. Assuming the same attacker model (access to the device for a reasonable, but equal amount of time), he'll just need to pull the HDD out of the laptop, while he'd have to perform a pretty advanced low-level hardware attack on the hardware wallet and might not pull it off in time for the owner to notice the loss, restore the seed and move the funds.

That completley goes out of the point, the bug was in ledger software making to loose funds because of change, so again, I do not imagine this kind of "bugs" happening in the most reviewed client such as Bitcoin Core
[/quote]
Again, when using a PC, it's not only running Core; also lots of other software that can have bugs, which gives an attacker access to Bitcoin Core, e.g. by exploiting something in the Linux kernel. Hardware wallets don't run an OS, so the attack surface is much smaller.

Source? And even if they did exist, as you say: it would be pretty complicated. Probably buying you enough time to move your funds.
https://www.youtube.com/watch?v=s3f1zNpzINY
And check their blog for more info how technique was improved recently.
I don't have time right now to watch videos, and this 'hacker movie' style make it appear pretty cringe and untrustworthy, but in the first few seconds they say that it's very difficult and requires lots of very sophisticated equipment and experience. That's what I said (if you bothered to read, which apparently you don't).
If you also take a look at how laptop HDDs are read out, you will quickly notice it's much easier and quicker, and even a cold boot attack will be easier to do than this.

Well first, you can put in a passphrase on a hardware wallet as well, so that's not an argument. And while you say more attacks will be developed, also better SE chips will be developed. It's a cat-and-mouse game and the attacker is always going to be a step behind. Until now, even the oldest of secure elements used in hardware wallets are secure, to the best of my knowledge.

So now we assume that if HW is seized can be compromised, so let's add a passphrase, if you add a secure  one entering will be so tedious in some models or nearly impossible to be easy of use, and in other HW you will have to type with the PC which is not a safe practice.
If someone doesn't use the passphrase, it's their fault, not the hardware wallet's fault. Only because on some models it's tedious, doesn't mean it must be so on all of them. For instance on my Foundation Passport it's very easy and quick to do. We're talking about the general concept of hardware wallets here; and the fact is that they're just more secure. Sure, something could be more tedious or whatnot; but it's not inherent to the concept. You could make a huge hardware wallet with a full-sized keyboard but running Passport code and with a Passport PCB in it.

Falling for scams is not HW fault, what I just said is that someone educated is less likely to fall for it, I do not see how ridiculous is this statement.
Because you're talking about arguments against hardware wallets and bringing up that people may enter the seed into a phishing webpage. They can do that with literally any wallet.

To store several copies of the wallet.dat you'll need several airgapped devices. If you store them all on the same device it's as good as having no backup at all.
Yes correct, several devices.
Do you trust to be able to keep multiple USB and DVD drives safe from damage (water, fire, rubble) as well as physical deterioration over time? Data rot.

i think you can just encrypt the ram.
There's no point in encrypting RAM: to use it, the same RAM needs to have the decryption key.

I just thought of an even easier protection against this: get a laptop with RAM soldered to the mainboard. No way someone's going to freeze it and desolder at the same time.
That's why I recommended MacBooks Cheesy Soldered RAM and SSD. Tongue I believe on the latest ones with M1... chip, the storage and RAM is even within the SoC actually.
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
i think you can just encrypt the ram.
There's no point in encrypting RAM: to use it, the same RAM needs to have the decryption key.

I just thought of an even easier protection against this: get a laptop with RAM soldered to the mainboard. No way someone's going to freeze it and desolder at the same time.
sr. member
Activity: 1190
Merit: 469

That requires the laptop to be shut down when getting into attacker's hands.

If it's on, you can just freeze the RAM and get the keys out.

hopefully someone would have a security protocol such that it was not possible for someone else to gain access to their laptop when it was turned on. a security protocol is more than just saying "i'm encrypting my laptop hard drive. done.". it could encompass other things too. freezing RAM i never hear of that but i think you can just encrypt the ram.

Quote
I also don't know that everyone running core has full disk encryption turned on.

we're talking about an individual with a sizeable amount of bitcoin right? Grin
legendary
Activity: 2534
Merit: 6080
Self-proclaimed Genius
That was on ledger, in version 0.13 if not wrong. Just search ledger lost funds chane address, you will find all information about it.
Got any more details? Google yields nothing and it must have been a different version than 0.13 since no such version exists in Ledger's release history.
Adding quotation marks to "change address" yields related results, specially these:

However, it's more of a client issue (Ledger Live) than the hardware wallet itself, fund is safe all along.
legendary
Activity: 3122
Merit: 2178
Playgram - The Telegram Casino
Quote from:  HeRetiK  link=topic=5391270.msg59634037#msg59634037 date=1648164085
Given full physical access and sufficient expertise the seed can be extracted from certain Trezor models, but AFAIK no such attacks have been successfully mounted on Ledger devices. Feel free to bring me up to date in case there's been any successful seed extractions from Ledger devices recently.

Recently I am not aware no, old ledger models yes but since nano X not that I am aware.

Source? I'm genuinely curious and I'm finding nothing on that matter.


Quote from:  HeRetiK  link=topic=5391270.msg59634037#msg59634037 date=1648164085
I guess you're referring to paper wallets? Since hardware wallets are commonly deterministic it's technically not possible to lose funds to unknown change addresses (though if you have any more info on that I'd love to hear it).

That was on ledger, in version 0.13 if not wrong. Just search ledger lost funds chane address, you will find all information about it.

Got any more details? Google yields nothing and it must have been a different version than 0.13 since no such version exists in Ledger's release history.

jr. member
Activity: 32
Merit: 128
I'm sorry, but you're actually talking out of your ass here.

Why would you include the cost of seed plates when using a hardware wallet, but not when using a laptop? It makes no sense. Either you factor in the cost with both or with none. I prefer none, because I won't assume how someone secures their seed based on their wallet choice.

Sure seed plate is not needed, but that is the recommendations I use to see. Why not when using a latptop? Because with bitcoin core you just backup a wallet.dat

You'd advise to do backups; sure, you can do that. But reliability of laptop storage would mean you might be looking at replacing that crappy old laptop HDD short time after setting it up, so having to buy a new one (or upgrade to SSD) will again cost you time and money to install, set up and restore. Lots of hassle.

Backups can be made in USB Flash Drive, DVD, SD Cards etc

Not 'many of them can be hacked easily'. The hacks that were possible, weren't too simple to perform (took multiple hours & good equipment + knowledge) and they were only on hardware wallets of the 'first generation' (without secure element) and on firmware versions that are ancient by 2022. I believe the Trezor hack utilized a 2016 firmware; that would be 6 years ago now. I also explicitly mentioned that I'd prefer a HW wallet with secure element over a laptop when it comes to physical attacks.

The way to exploit the trezor one is the same for the last version, both can not be fixed.

That doesn't require a bug in Bitcoin Core. Assuming the same attacker model (access to the device for a reasonable, but equal amount of time), he'll just need to pull the HDD out of the laptop, while he'd have to perform a pretty advanced low-level hardware attack on the hardware wallet and might not pull it off in time for the owner to notice the loss, restore the seed and move the funds.

That completley goes out of the point, the bug was in ledger software making to loose funds because of change, so again, I do not imagine this kind of "bugs" happening in the most reviewed client such as Bitcoin Core

Source? And even if they did exist, as you say: it would be pretty complicated. Probably buying you enough time to move your funds.
https://www.youtube.com/watch?v=s3f1zNpzINY
And check their blog for more info how technique was improved recently.

Well first, you can put in a passphrase on a hardware wallet as well, so that's not an argument. And while you say more attacks will be developed, also better SE chips will be developed. It's a cat-and-mouse game and the attacker is always going to be a step behind. Until now, even the oldest of secure elements used in hardware wallets are secure, to the best of my knowledge.

So now we assume that if HW is seized can be compromised, so let's add a passphrase, if you add a secure  one entering will be so tedious in some models or nearly impossible to be easy of use, and in other HW you will have to type with the PC which is not a safe practice.


Again BS: falling for phishing sites and giving away your seed words isn't due to the wallet being a HW wallet. That can happen with literally any wallet. How can this seriously be considered an argument against hardware wallets?
Or is it more leaning into whataboutism such as: 'Well, attacks that a HW wallet can't protect you against, do exist, so they're useless'?

There are reasons against hardware wallets, but the ones you present are so weak, it's ridiculous.

Falling for scams is not HW fault, what I just said is that someone educated is less likely to fall for it, I do not see how ridiculous is this statement.

* The average Joe will not save 400+GB on his HDD. He doesn't understand pruning, he doesn't want to wait days for the initial sync and doesn't understand why should he download such amount of data.
* The average Joe probably has Windows or mobile phone he wants to use Bitcoin with.
* The average Joe is not tech savvy and he would make mistakes if we would advise him use cold storage. I've seen case when one was claiming he has cold storage which he connects to the internet when he send transactions.
  (Yes, he got his money stolen by some malware/exploit).

Bitcoin core is great, but it's not for everybody.
Bitcoin core, if used as hot wallet, is as vulnerable as any hot wallet..

You are right, maybe I was wrong assuming that average Joe would be interested in learning more or could have concerns about delegating security.

If computer is compromised yes, it will not be safe, however I was referring in to use bitcoin core offline.

Quote from:  LoyceV    link=topic=5391270.msg59634037#msg59634037 date=1648164085
You don't see the average PC user do this, right? The average user who gets confused when the internet icon has moved sure can't handle this. And even if they can do it, it's a lot of work for making a transaction. That's okay if you do it once a year, it's not okay for daily use.

That was a good one  Grin
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
As far as I know, it's relatively commonly done in high-security level pentests and in critical practical attacks (mostly physical attacks against companies) as well. The technique has definitely attracted lots of research and it was proven to work quite well by lots of different folks.
I read about an arrest in the Netherlands not so long ago, where the SWAT team entered through the windows to prevent the guy from turning off his computer.
Okay, here's another solution: add a dead man's switch to your chair. If you get up, it disconnects the power to your PC. That's going to be seriously annoying to use, but for the truely paranoid that's a small price to pay.
hero member
Activity: 882
Merit: 5834
not your keys, not your coins!
you can just freeze the RAM and get the keys out.
Has that ever happened in a real life theft? That's some James Bond level burglary!
If you really worry about this:
Quote
the RAM can be safely moved to a different computer
Then glue the RAM into your computer. Good luck to any thief.
As far as I know, it's relatively commonly done in high-security level pentests and in critical practical attacks (mostly physical attacks against companies) as well. The technique has definitely attracted lots of research and it was proven to work quite well by lots of different folks.
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
you can just freeze the RAM and get the keys out.
Has that ever happened in a real life theft? That's some James Bond level burglary!
If you really worry about this:
Quote
the RAM can be safely moved to a different computer
Then glue the RAM into your computer. Good luck to any thief.
hero member
Activity: 882
Merit: 5834
not your keys, not your coins!

That doesn't require a bug in Bitcoin Core. Assuming the same attacker model (access to the device for a reasonable, but equal amount of time), he'll just need to pull the HDD out of the laptop, while he'd have to perform a pretty advanced low-level hardware attack on the hardware wallet and might not pull it off in time for the owner to notice the loss, restore the seed and move the funds.

not if the hard drive is encrypted...
That requires the laptop to be shut down when getting into attacker's hands. If it's on, you can just freeze the RAM and get the keys out.
I also don't know that everyone running core has full disk encryption turned on.

Since a laptop is a general-purpose device, it inherently has a larger attack surface. For example, older laptops and certain Linux distros (or both) may not support secure boot, allowing for other attack vectors that you don't have when a HW wallet boots up.
I'd argue it will be harder to crack a HDD password (offline attacks on an ISO of it etc.) than a hardware wallet's password (no way to extract the memory contents + limited amounts of tries before erasing itself.

I've taken the time to read the discussion. What's up with the continuing debriefing of the hardware wallets' disadvantages? It's clear that they are both needed; it's just that each satisfies the same needs, but for different people. (Except if they may also want altcoins etc.)

The reasons are portability, easiness on transferal and security simplified. I wouldn't buy a hardware wallet to avoid running my own full node; I'd rather give an extra buck to a Raspberry Pi and have my hardware wallet connected to my node. That way I could enjoy all the benefits.

If I didn't want to spare a single dollar to my Bitcoin node setup AND had an old dusty PC/laptop left over, I'd use it to run a node.
That's what I recommend. Smiley Core with electrs & connect a hardware wallet-compatible SPV wallet to it.


For instance, people are already taking pictures of seed words even though the software tells them not to
I do that too, but only for (mobile) wallets which I'll use for a very small amount. For convenience, I'm willing to risk it.
Shame! Grin


My own preference: I use different wallets for different purposes. I know the shortcomings (and I'm aware I might not even know everything), but it's enough to reduce the risk to an acceptable level without being inconvenient.
This is a kind of diversification that definitely makes sense. People also talk about getting hardware wallets with secure chips from different manufacturers to minimize risk of backdoors. This again goes towards 'paranoia-level security' as we often do around here, but I support the idea.
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
Most people i know don't bother buy seed plate if they decide to use hardware wallet.
I consider ordering anything dedicated to crypto bad OPSEC.
legendary
Activity: 2870
Merit: 7490
Crypto Swap Exchange
Yes buying a laptop will be more expensive, however when you see how much some hardware wallets cost + seed plates if they buy (it is the setup that I see most often people talking about) price does not go too far from a cheap laptop

Most people i know don't bother buy seed plate if they decide to use hardware wallet.

also about storage causing lost of funds we may assume that several copies of wallet.dat will be stored

There's additional cost if you store copy wallet.dat on different storage.

That doesn't require a bug in Bitcoin Core. Assuming the same attacker model (access to the device for a reasonable, but equal amount of time), he'll just need to pull the HDD out of the laptop, while he'd have to perform a pretty advanced low-level hardware attack on the hardware wallet and might not pull it off in time for the owner to notice the loss, restore the seed and move the funds.
not if the hard drive is encrypted...

The scenario mention access to physical device, so it's vulnerable against malware which target BIOS or boot partition (which usually separated and not encrypted).
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
So Bitcoin Core allows to do the same thing, most people have an old pc that they do not use, they can just install bitcoin core, generate a wallet, export descriptors to the online PC (the daily use PC), there you create a watch-only wallet, import descriptors and you will have a functional watch wallet (allowing to create new receiving addresses and create unsigned transactions) after a transaction is created you just copy the psbt file in a USB flash drive, bring to the offline PC, sign and bring back to the online PC to broadcast.
You don't see the average PC user do this, right? The average user who gets confused when the internet icon has moved sure can't handle this. And even if they can do it, it's a lot of work for making a transaction. That's okay if you do it once a year, it's not okay for daily use.

For instance, people are already taking pictures of seed words even though the software tells them not to
I do that too, but only for (mobile) wallets which I'll use for a very small amount. For convenience, I'm willing to risk it.
People have also lost funds stored in a hardware wallet after they entered their seed words in a phishing site. Lack of common sense is a great way to lose your money Sad

someone taking the time to learn and do all the process will be less likely to commit error, we see some users loosing all funds from HW because they fall for pishing sites asking seed etc.
In reality, most Bitcoin Core users run it on an online system, and most of them probably use Windows. That makes losing funds much more likely than it is when using a hardware wallet, even though human stupidity will always find a way.



My own preference: I use different wallets for different purposes. I know the shortcomings (and I'm aware I might not even know everything), but it's enough to reduce the risk to an acceptable level without being inconvenient.
legendary
Activity: 3668
Merit: 6382
Looking for campaign manager? Contact icopress!
I am asking this question since whenever I see someone asking about how to store bitcoin, all the answers I read is buy a HW, but I rarely see someone advising to just use Bitcoin Core... the most reviewed and secure client?

* The average Joe will not save 400+GB on his HDD. He doesn't understand pruning, he doesn't want to wait days for the initial sync and doesn't understand why should he download such amount of data.
* The average Joe probably has Windows or mobile phone he wants to use Bitcoin with.
* The average Joe is not tech savvy and he would make mistakes if we would advise him use cold storage. I've seen case when one was claiming he has cold storage which he connects to the internet when he send transactions.
  (Yes, he got his money stolen by some malware/exploit).

Bitcoin core is great, but it's not for everybody.
Bitcoin core, if used as hot wallet, is as vulnerable as any hot wallet.

So what other option we have for newbies? At least from my side it's not marketing; it's genuine attempt to help users keep their coins safe.


wanted to post in bitcoin and not bitcoin tehcnical support (since I do not think it is the correct place) but I can not delete it

Then move it. See bottom-left link.
Pages:
Jump to: