noisevault on Nostr: There are good archetectures for hardware signers that do not require secure ...
There are good archetectures for hardware signers that do not require secure elements.
See the #blockstream #jade for example.
Different tradeoffs. Jade requires communication with a server. Blinded, secure, but centralized. And you can also run your own. But this means Jade is also truly capable of being fully open source at the hardware level. Something with a proprietary secure element can never be.
You either trust the blind blockstream oracle, or the chip and irs manufacturer.
Secure chips have been proven to be compromisable as well.
Food for thought on this interesting topic.
See the #blockstream #jade for example.
Different tradeoffs. Jade requires communication with a server. Blinded, secure, but centralized. And you can also run your own. But this means Jade is also truly capable of being fully open source at the hardware level. Something with a proprietary secure element can never be.
You either trust the blind blockstream oracle, or the chip and irs manufacturer.
Secure chips have been proven to be compromisable as well.
Food for thought on this interesting topic.