Home Foren Trezor Wallet Trezor 3 sicheres Element Frage

Ansicht von 4 Antwort-Themen
  • Autor
    Beiträge
    • #3076539
      root_s2yse8vt
      Administrator
      Up
      0
      Down
      ::

      Hallo!

      Ich habe gerade deine neue Trezor-Wallet und das eingeführte sichere Element gesehen. Ich bin mir nicht sicher, wie das die Trezor One- oder T-Architektur verbessert.

      Ich habe von einer Passphrase für das sichere Element neben der PIN gelesen. Ist das eine andere Passphrase als die 25, die wir für unseren Seed festlegen können?

      Bitte, detaillierte Informationen über all dies sind sehr willkommen, um besser zu verstehen, wie die Sicherheit verbessert wurde.

      Danke /u/stickac /u/slush0 /u/yo_haan

    • #3076540
      matejcik
      Gast
      Up
      0
      Down
      ::

      So there’s your **seed**, right? It is stored in the general-purpose MCU (main chip) of the Trezor. It’s the thing that is the source of all your keys. This is your family jewels. You don’t _ever_ want it leaked.

      So we don’t want to store it just as it is. In normal conditions just “being in the chip” makes it inaccessible. But if a hacker manages to read the memory somehow, they could just get at the seed.

      So you add a PIN, and encrypt the seed with the PIN. Now, any hacker who reads out the memory needs to brute-force the PIN, otherwise they can’t decrypt the seed phrase. That is nice — if your PIN is around 15 digits, the hacker basically can’t do it.

      Well, but most people’s PINs are 4 to 6 digits, and that is also much nicer for usability.

      So what happens is, the Secure Element contributes some data too. In gross oversimplification: you send the PIN to the secure element, it encrypts it by a key that only exists in the secure element, and returns a 256-bit secret. Then you use this secret, together with the original PIN, as the encryption key.

      So if someone wanted to get your seed by brute-force, they would need to crack not just your PIN, but also the very secret encryption key that only lives in the Secure Element.
      Which probably can’t be done at all, and definitely not for any reasonable amount of money.

      (And if the attacker doesn’t _know_ the right PIN, they can ask the Secure Element to encrypt _something_ and they will get out _some result_, but it’s gonna be a wrong result that doesn’t decrypt your seed.)

      The passphrase is a completely separate thing, and no, it is still the one “25th word” passphrase as before. There is no new SE-specific phrase.

      And it goes like this: when you _finally_ after all that trouble decrypt the seed, then you can _add_ the passphrase _to the decrypted seed_.

      This is actually the most secure thing of all, because the passphrase is never saved anywhere. Even if an attacker manages to grab your seed somehow, they don’t know the passphrase, and without it, they can’t get to your wallet.

    • #3076541
      noxtare
      Gast
      Up
      0
      Down
      ::

      Would alsp like to know if its using the open source tropic secure element?

    • #3076542
      bitcornhodler
      Gast
      Up
      0
      Down
      ::

      Does the pass phrase have to be entered into the computer keyboard? Or can it be done on the device?

    • #3076543
      [deleted]
      Gast
      Up
      0
      Down
      ::

      [removed]

Ansicht von 4 Antwort-Themen
  • Du musst angemeldet sein, um auf dieses Thema antworten zu können.