Cyph3rp9nk on Nostr: It is a known vulnerability in trezor that is patched with a passphrase, in return ...
It is a known vulnerability in trezor that is patched with a passphrase, in return your software, firmware and hardware are open source.
In the next generation of trezor the problem of not using secure element is fixed with tropic square, an open source secure element.
Jade solves the problem of not using secure element by using a kind of software secure element, a kind of multi-signature, again all open source.
Although coldcard has a good architecture by using two secure elements to not trust each other, cryptography should not rely on black boxes, because that is trust and cryptography should not require trust.
In the next generation of trezor the problem of not using secure element is fixed with tropic square, an open source secure element.
Jade solves the problem of not using secure element by using a kind of software secure element, a kind of multi-signature, again all open source.
Although coldcard has a good architecture by using two secure elements to not trust each other, cryptography should not rely on black boxes, because that is trust and cryptography should not require trust.