I wanna know: what makes Jade and BitBox better than others?
Login to reply
Replies (9)
For jade, I believe the use of self hosted blind oracles
Also wanted to ask that👍
They bothered to implement anti-exfil (provably random nonces). This means that a malicious firmware or even malicious hardware wallet can’t steal your coin! For every other hardware wallet, you’re blindly trusting Amazon/UPS/five factories in China/the webserver you got the firmware from/etc/etc. The idea that none of these parties have anyone working there who might want to go steal people’s coin is absurd, frankly.
I think this is also a good time to bring this up. It's possible for Nunchuk and Coinkite to have malicious actors in their supply chain. They could collaborate and compromise someone's Tapsigner.
Gotcha, sounds like that should be common practice.
More on that in their blog:
Anti-Klepto protocol
To solve this, Shift Crypto and Blockstream developed Anti-Klepto. Instead of solely relying on the randomness that the hardware wallet provides for the nonce, additional randomness is provided by the host device. This prevents the hardware wallet firmware from manipulating the nonce in a way so that it contains hidden data.
BitBox Blog
How almost all hardware wallets can steal your seed
Hiding data in Bitcoin transactions could allow an attacker to extract your seed without you noticing.
@Matthew Kratter has tried to call attention to this many times
BitBox has something called Anti-Klepto that makes this attack impossible. You can read more about it here: 
BitBox Blog
Anti-klepto explained: how the BitBox02 protects you against leaking private keys
The BitBox02 is the first hardware wallet that offers protection against the nonce covert channel attack, by supporting a protocol called anti-klepto.
You're exaggerating. Every competent hww checks firmware signature. Something an average joe can't do kn their laptop.