 |
submitted by /u/Mafalzon [link] [comments] |
source https://www.reddit.com/r/btc/comments/sex5jk/been_such_a_pleasure_to_be_here_in_st_kitts_nevis/
Saturday, 29 January 2022
Been such a pleasure to be here in St. Kitts & Nevis working on my next documentary!
source https://www.reddit.com/r/btc/comments/sex5jk/been_such_a_pleasure_to_be_here_in_st_kitts_nevis/
Friday, 28 January 2022
The Bitcoin Cash Podcast #37: 1 Year Anniversary & Bear Market Survival Guide
Jett and I discuss 1 year anniversary, Kim Dotcom failing to deliver K.im, Tesla accepting #Doge, surviving a bear market
Price: 1mBCH. Free in a week.
[link] [comments]
source https://www.reddit.com/r/btc/comments/se5o75/the_bitcoin_cash_podcast_37_1_year_anniversary/
PSA: Trezor doesn't have the oft-mentioned seed extraction vulnerability. Use a strong PIN.
Contrary to popular belief, Trezor no longer has the oft-mentioned seed extraction vulnerability, which was discovered by Ledger and confirmed by Kraken. SatoshiLabs fixed it in mid 2021 (June for Model T in firmware version 2.4.0 and May for Model One in firmware version 1.10.0).
The seed phrase is encrypted before stored in Trezor. The encryption algorithm used is ChaCha20, which is known to be secure. Data encrypted with ChaCha20 is uncrackable if done right. ChaCha20, or any other secure encryption algorithm for that matter, can be breakable if the encryption key is too weak. It needs 128 bits of entropy to be absolutely unbreakable. With a weak key, decryption may be successfully performed in a bruteforce manner.
Trezor uses the PIN as the encryption key. Before mid 2021, the PIN was up to 9 digits. There is less than 30 bits of entropy in a 9-digit PIN. Because of the low entropy, the extracted encrypted data could be easily decrypted with bruteforce and the seed could be extracted.
For a PIN to be absolutely secure, namely it has 128 or more bits of entropy, it needs at least 39 digits. Trezor's firmwares released in mid 2021 increased the upper limit of the PIN length to 50. A randomly generated PIN of 39 or more digits can guarantee absolute security of the seed even if an adversary gains the physical access to the device and successfully performs the data extraction trick. The seed can no longer be extracted.
[link] [comments]
Subscribe to:
Posts (Atom)
-
Crypto is pretty much the only reason I used Reddit anymore, and I'd like to stop using this website. submitted by /u/TheTruthHas...
-
submitted by /u/FearlessEggplant3036 [link] [comments] source https://www.reddit.com/r/btc/comments/12gt49l/supposedly_insiders_in_t...
-
submitted by /u/KillerHurdz [link] [comments] source https://www.reddit.com/r/btc/comments/a6bm9y/discussing_bitcoin_power_dyn...
![[link]](https://i.redd.it/agak3xuu0he81.jpg){kind=link}
![[link]](https://i.redd.it/x0ce1i5x78e81.jpg){kind=link}
![[link]](https://i.redd.it/v7es0ejpq9e81.jpg){kind=link}