>> The benefit of our device over traditional web wallets is security. Our devices are embedded. Everything that we wrote lives on the firmware. You don’t have to trust any app.
Errrr.... 'embedded' does not mean secure. While you may not have the full software stack of, say, Android or iOS, that doesn't make it secure by default. There's a network interface, some sort of processor, a variety of input devices etc.
I would hope that before making claims like "malware/virus proof" they would get both the hardware and software audited, as credit-card terminals generally have to be.
Sell me a $100 set of cards, one that's fancy like this, but makes its own bitcoin transactions, no cooperation with a service provider like Case, and one less fancy one that just holds bitcoin private keys. You put the less fancy one in a safe at your bank, and you use the fancy one for your daily business. If you ever lose the fancy one, simply buy a new one, and load it up with the backup you keep at the bank.
I get why you're concerned, but I wouldn't dismiss them so quickly until we've heard all the details. They seem like a talented team, and I assume they've anticipated the possibility of social engineering.
Here's a snippet from the FAQ on their website: "During first time setup for the device, you can choose where you want your recovery key stored. The default option is to store it in a secure vault operated by Third Key Solutions. If you wish to store your own third key, you will be prompted during the setup flow to scan the public key of your recovery private key. Please note that you will be responsible for signing a transaction with this private key if your device is lost or stolen, and we recommend this only as an advanced option for expert users." [1]
Well, the third key is only useful if one has one of the other two.
Though there is the possibility that an adversary could get access to the third key and the key that they store for being tied to the biometrics?
But I think that that is probably sometimes a lower risk than the risk of "oops, I lost/forgot my bitcoin key" if one is using single signature? (depending on the person, and their adversaries)
Agreed, this is what some of the new startups that make something "secure" soo often overlook. They make put UX (if you can call it that), over real security. It's still possible to deliver a great user experience and backup solutions without compromising security, it's just not easy.
Companies that do succeed at this however should all receive an award for it, or at least be listed somewhere, because it's a really hard problem to solve at times.
I think in certain aspects Apple got this sort of stuff right with the iPhone, but I'm not sure about that, at least I hope iOS is as restrictive as it is for a reason.
Great presentation. Explaining the value proposition of bitcoin in simple terms is definitely not an easy thing to do.. and I think she nailed it right there.
FYI that vulnerability was fixed already by the time he wrote that post. He brought it to Trezor's attention, helped update the firmware, and published the article after the update was pushed.
While I appreciate that this is true - this is exactly what a lot of bitcoin people want - total control over their money without having to place trust in intermediaries or authorities.
I do not know much about bitcoins, but it seems online third-party solutions like Coinbase, Case, Trezor, Ledger Wallet are needed for posession and trading ?
So I may conclude bitcoin is not the ultimate answer to distrust and/or in-dependency ?
For trading them into 'real' currency you would usually use an exchange, yes. Coinbase (IIRC) simplifies things for merchants by accepting bitcoin and giving them the currency they want.
But for pure bitcoin transactions, no, you can run all the stuff yourself, maintain your own wallet and transact with anyone you like, all without needing anything other than functional bitcoin client software. You need to trust the bitcoin network as a whole, but not any individual authorities.
I'm really not a fan of BTC, personally, but I have looked into it quite a lot...
Errrr.... 'embedded' does not mean secure. While you may not have the full software stack of, say, Android or iOS, that doesn't make it secure by default. There's a network interface, some sort of processor, a variety of input devices etc.
I would hope that before making claims like "malware/virus proof" they would get both the hardware and software audited, as credit-card terminals generally have to be.