Hrm, don’t really want to start this argument up again 😅 but SeedSigner has a lot more hardware risk than a ColdCard, except (perhaps) for targeted supply chain attacks — because a SS is widely available off the shelf stuff, it has ‘herd safety’ whereas CC is obviously only for Bitcoin so has a clear incentive to be attacked. SeedSigner is also more closed hardware than the ColdCard is (RasPi is very closed), though neither are fully open as CC give schematic but PCB layout is closed and Secure Elements are mega closed and the ST Microprocessor is also closed.
Similarly, for the software risk, ColdCard software stack is way way fewer (orders of magnitude) lines of code than what’s in a SeedSigner which AFAIK is running an entire Linux. CC firmware can be deterministically built, whereas SS doesn’t and that might be tricky to achieve.
So while both are great, they have slightly different security characteristics and for *most people* the ColdCard comes out as the stronger option
1f52b / 1F52B
npub1ra…tgns2
2023-04-26 16:14:49
in reply to nevent1q…8fqa
Author Public Key
npub1raftzmju5gq77twqxrumv5gnweew2t0p4v5upv8kku4vsz4j8jzq3tgns2Published at
2023-04-26 16:14:49Event JSON
{
"id": "3b96492d441e0cce925284b29d86fcb3dea517f70a6d335b9ef7c4c5e0b41393",
"pubkey": "1f52b16e5ca201ef2dc030f9b651137672e52de1ab29c0b0f6b72ac80ab23c84",
"created_at": 1682518489,
"kind": 1,
"tags": [
[
"e",
"33a9bfda867892f333021ae88b78b7922434db2380096995789dcdfa309034fe"
],
[
"e",
"6795e9cb1c476e6b2e6401437589fc5dbd169948850c8c33d957e806c61bd39e"
],
[
"p",
"04c915daefee38317fa734444acee390a8269fe5810b2241e5e6dd343dfbecc9"
],
[
"p",
"a4a6b5849bc917b3befd5c81865ee0b88773690609c207ba6588ef3e1e05b95b"
]
],
"content": "Hrm, don’t really want to start this argument up again 😅 but SeedSigner has a lot more hardware risk than a ColdCard, except (perhaps) for targeted supply chain attacks — because a SS is widely available off the shelf stuff, it has ‘herd safety’ whereas CC is obviously only for Bitcoin so has a clear incentive to be attacked. SeedSigner is also more closed hardware than the ColdCard is (RasPi is very closed), though neither are fully open as CC give schematic but PCB layout is closed and Secure Elements are mega closed and the ST Microprocessor is also closed.\n\nSimilarly, for the software risk, ColdCard software stack is way way fewer (orders of magnitude) lines of code than what’s in a SeedSigner which AFAIK is running an entire Linux. CC firmware can be deterministically built, whereas SS doesn’t and that might be tricky to achieve.\n\nSo while both are great, they have slightly different security characteristics and for *most people* the ColdCard comes out as the stronger option ",
"sig": "0936da68d3c3ac7408cea6858e843a598d6177feae9150458d2f9321fd15b060373ae3cff3ad0c1b5b4cc8ed563415397aee9e3ceb139ab9f0d8963d17ef40af"
}