return on Nostr: The fact that most wallet providers are not already checking all the boxes really ...
The fact that most wallet providers are not already checking all the boxes really makes you wonder about the competence of the industry at large. A lot of people are talking the talk, but not doing the fundamental things. It’s disappointing.
The user has to trust that the basic fundamental security is taken care of by the provider of the product. The naïve notion that the majority of users will adequately educate themselves to secure their custody and privacy needs to be dropped. Even the technical folks are missing things. The product has to do it for the user almost completely. It cannot be complex. Privacy and security have to be the default. It’s been over a decade. The technology exists. Why are there still such large gaps?
Most people don't check software signatures (and never will), so hardware wallets like Coldcard, Trezor, Ledger do it for them.
Does this require trust? YES
Is it better than the alternative? YES
If your wallet doesn't also check firmware signatures for you, you are at risk!
Published at
2024-08-07 16:50:53Event JSON
{
"id": "7e6ecf3f6314e84488b3c80fe3e91cc380bb368086ed30bc61a133f37ace46b9",
"pubkey": "f6b1006cfee693eb859d0ad5d2e49e6b541c6a36ded90ae153e6b87fde39a99a",
"created_at": 1723042253,
"kind": 1,
"tags": [],
"content": "The fact that most wallet providers are not already checking all the boxes really makes you wonder about the competence of the industry at large. A lot of people are talking the talk, but not doing the fundamental things. It’s disappointing. \n\nThe user has to trust that the basic fundamental security is taken care of by the provider of the product. The naïve notion that the majority of users will adequately educate themselves to secure their custody and privacy needs to be dropped. Even the technical folks are missing things. The product has to do it for the user almost completely. It cannot be complex. Privacy and security have to be the default. It’s been over a decade. The technology exists. Why are there still such large gaps?\n\nnostr:note1c06r3pjj2erszj7lxkrtm676zy5r04hyw3rmc9l8j27flvqt295qmk2a69",
"sig": "919ed2a70bab02355b4f1e3618d1adef9f796be6bd2f67bf3632e3bb2e9013776cee07102b43ee2d50ec8c026ece0dbd3542c48ede246c58d59547f5d7e8f90c"
}
