SeedSigner

https://github.com/SeedSigner/seedsigner

Build your own airgapped, stateless bitcoin signing device for less than most hardware wallets. 🤘

Public Key

npub17tyke9lkgxd98ruyeul6wt3pj3s9uxzgp9hxu5tsenjmweue6sqq4y3mgl

NIP-05 Address

[email protected]

Profile Code

nprofile1qqs09jtvjlmyrxjn37zv70a89csegcz7rpyqjmnw29cveedhv7vagqqpr3mhxue69uhkummnw3ez6un9d3shjtnhd3m8xtnnwpskxegfjgdga

Publishing to

nostr-relay.wlvs.space

Author Public Key

npub17tyke9lkgxd98ruyeul6wt3pj3s9uxzgp9hxu5tsenjmweue6sqq4y3mgl

Show more details

Last Notes

2024-09-18 20:34:09

- reply

At some point, Nunchuk stopped supporting static XPUBs. If you change your SeedSigner to the Sparrow export setting, it will animate the QR code that depicts the XPUB and the rest should work fine. I ran into this a couple of weeks ago as well.

2024-09-18 19:49:51

- reply

Functioning DM notifications.

2024-09-17 21:34:07

- reply

I'm just going to agree to disagree with you here. I strongly disagree with what you’re saying, but I just don’t have the time to refute every far fetched exotic attack scenario. Have a great afternoon.

2024-09-17 20:20:29

- reply

#nevent1q…kkmd

2024-09-17 20:19:58

- reply

We trust the manufacturer to do a lot less. We don't trust the device to validate software, we don't trust it to persistently store keys, and we don't trust it to make wireless or wired connections with other devices. We just trust it to execute SeedSigner code.

2024-09-17 20:17:40

- reply

As of right now, just one, but progress on more is ongoing. But you're missing the point, it's not worth it to target the entire RPi supply chain at this point, and even if you wanted to target individuals, less than 0.01% of RPi products likely will end up as SeedSigners, so who knows which ones to pick. Whereas, at a certain point in a HWW's life, it's known that the device will be used to store PKs, and an attacker further knows that just about every device is going to someone who will potentially use it for that purpose. Different tradeoffs.

2024-09-17 19:52:38

Yup.
And we will continue to be here with a compelling alternative model, that requires much less trust in manufacturers and distributors. https://image.nostr.build/ac3742a377e7691e41c3bf207faf4cb235c2bbf9641d1e1e0fb60ea1cc993df0.jpg

2024-09-17 13:22:52

It is an exceedingly simple process to verify and write new firmware/software to your SeedSigner, and it takes at most a couple of minutes. Users with any concern about their device can easily re-deploy to put those concerns to rest. The messaging put out there by both the Dark Skippy researchers and Odell/RHR was unfortunate, but those who have learned about our security model and been through the process know better. Myself and our contributors are as confident and bullish as ever on our project, which serves both those who may have difficulty acquiring cold storage tools, and those who are seeking more trustless cold storage solutions. #note12qt…hxpe

2024-09-14 22:22:42

This is the way.... #note1xww…r6u2

2024-09-14 22:22:32

- reply

Love the color choice for the enclosure. 🧡

2024-09-14 17:03:32

- reply

Coinkite guidance is that you should plan to replace your HWWs every 2-3 years, you may get a lot more mileage out of yours, but wanted to provide this info.

2024-09-14 14:17:00

- reply

Amen to this. Text input on mobiles is still such a pain point, phone companies seem oblivious.

2024-09-13 23:14:33

- reply

Visited Bern and Grindelwald earlier this year -- it's a beautiful country!

2024-09-12 21:44:12

- reply

🧡

2024-09-11 21:48:11

- reply

You paint a beautiful picture -- you're not the only one at all.

2024-09-11 01:09:02

File this as posted under the umbrella of my personal opinion, flowing from my "exorbitant privilege" as the creator and public face of our project, and not necessarily representative of the opinion of all, or even any, of our other contributors.
The tone of this note is not constructive will only cause more people to question the motives behind the rejection of Peter Todd's grant application.
A constructive response would at least make some reference to the specific proposal's faults, or the specific shortcomings in the applicant's credentials, but instead he childishly makes fun of Peter without even having the courage to mention his name.
It is absolutely detestable that this individual, who operates a company that profits from bitcoin products that are not open source, and that had to be publicly pressured to take down marketing claims of those products being open source, is in a position where he influences decisions on literally millions of dollars of funding for other, legitimate, open source builders.
OpenSats will continue to struggle with credibility and public perception as long as nvk has a role of influence there. #note1xwd…wf6n

2024-09-10 13:13:17

- reply

Yeah, this would be just for starting out, like when you want to tip a cab driver who doesn't own any bitcoin.

2024-09-10 05:18:04

After witnessing several orange-pilling sessions in Curaçao last week, am thinking that cashu.me with a solid mint like minibits is one of the lowest friction ways to quickly get some sats into a noob's hands.

2024-09-08 16:13:13

- reply

Briefly -- time and time again it has been demonstrated that guerilla warfare is an effective military combat strategy, and the firearms are already well-distributed across the country in both urban and rural areas. A tyrannical government might be able to control metropolitan, more populous areas, but you may also underestimate the size of America and that there is a stronger culture of gun rights and ownership in rural areas.

2024-09-07 20:27:59

- reply

You and Keith both, I am apparently in the minority on this. 🤣

2024-09-07 19:53:55

- reply

The see through logo is soooo painful! I regret that version ever getting out into the wild, LoL.

2024-09-06 20:09:16

I cosign this. #note1zmy…smw0

2024-09-06 18:41:02

- reply

Cool!

2024-09-06 18:28:45

Continue to appreciate every seller who donates back to our contributors. 🧡 #note1fh4…vdky

2024-09-06 17:32:44

- reply

Different set of tradeoffs that not all grok, in part likely because bitcoiners are perpetually bombarded with a marketing narrative declaring HWWs as the most secure way to interact with private keys. Different tools are appropriate for different people and different use cases, but SeedSigner is entirely a viable option "in practice".

2024-09-06 13:42:07

👀
If you purchase SeedSigner-related items, please buy from sellers who commit to donate a portion of their proceeds back to support our contributors.
And if you're a seller who does this, please let us know! 🧡 #note14y8…lgq0

2024-09-04 16:15:48

https://image.nostr.build/fae22e8bce782c48435f65c5a0a75ac079624093562cd48b0cb78ebd729033b4.jpg

2024-09-03 21:32:04

YubiKey has a larger security budget than your favorite HWW -- hardware security is a never-ending cat and mouse game.
Better to put your trust in functionally unsolvable math problems rather than "unhackable" hardware. https://image.nostr.build/4fac5912deb2f6f8387a9d6fba217b7158ac1e2a4dbcc46b45ef2971b8dc3544.jpg #note1704…a77f

2024-09-03 17:20:50

- reply

Lol, take it all with a grain of salt, but so far I'm proud of the results. 🤞

2024-09-03 17:15:33

- reply

The best part is that even if they find your SeedSigner, there's nothing there! 🙂

2024-09-03 17:14:00

- reply

Check out the links at https://seedsigner.com/hardware or have a look at @npub1l5p…4q0n

2024-09-02 18:02:05

Proud that our project has continued to reflect the ethos of bitcoin -- volunteer driven, collaboratively built, distributed at zero cost, permissively licensed, and highly accessible; while cultivating deeper understanding, personal responsibility & self reliance.

2024-09-02 17:00:49

Love to see it. 🫶 #note1amk…dh6v

2024-08-31 17:46:46

This, sooooo this. For all of the anal retentive timeliners out there -- we're following the people we're followong for a reason. #note1ut5…pj8x

2024-08-31 17:15:31

- reply

Software validation must always be done with another device, validation with Tails being the safest approach. 👍

2024-08-31 15:12:11

- reply

None of the coordinators support anti-exfil so in part it's a chicken and egg problem, but hoping deterministic signature validation is incorporated into the psbt standard, that would be the best ux solution, rather than a second round of QR code exchange. Validating and deploying authentic software takes less than a minute, and we've always been about long term saving with bitcoin with relatively few spends, so card swap attack risk seems overblown when validating software is so fast and simple. With great power comes great responsibility, for those who are willing to assume the responsibility. Also, take a closer look at those emphasizing these issues and their motivations; it speaks to conflicts of interest that you've spoken about.

2024-08-31 14:57:49

In addition to being an "I can't buy hardware wallets" option, SeedSigner is also an "I'm not comfortable trusting hardware wallets" option.

2024-08-31 06:32:02

"No one can serve two masters; for either he will hate the one and love the other, or he will be devoted to the one and despise the other."
Matthew 6:24

2024-08-28 18:30:01

- reply

I’m sorry that we don’t seem to be doing it in your approved manner. I was under the impression that bitcoin and nostr were open platforms and people had the freedom to use as they wished. ¯\_(ツ)_/¯

2024-08-28 18:23:29

- reply

Then I guess we won’t fit in around here.

2024-08-28 18:22:58

- reply

The individual operating the split service would be a money transmitter, unfortunately. This workflow we’ve set up was very intentional.

2024-08-28 18:11:03

"I had a few similar donations in the last week or so. Personally find it very encouraging."
(a quote from one of our contributors)
Now that we're about a week after the 0.8.0 release, if you're a SeedSigner user and you're getting value from the project, or if you just want to support freedom tools, please donate to our most active contributors. We have a lighting-enabled workflow that you can use to directly support those who have worked to build SeedSigner into the amazing tool that it is.
Even if it's a small amount, each donation gives these contributors a little bit of encouragement to keep going. 🧡
https://donate.seedsigner.com https://image.nostr.build/7cdd1b8c7101baaac98e8a2fe7c71de14d0644766a6f5aae1b34797334d413eb.jpg

2024-08-28 14:08:47

👀 #note1j4j…5ufq

2024-08-28 14:07:53

- reply

🧡

2024-08-27 15:52:21

- reply

All I can say is that the best developers I have worked with get excited when people find bugs in their code and they thrive on constructive feedback on things they've built. These should be communicated with tact, but if they're being processed primarily as criticism, then that says something about the builder.

2024-08-27 15:47:56

👀 #note1cqc…6lz4

2024-08-27 04:10:46

- reply

Not currently. This has been discussed but the decision to implement hasn't been made.

2024-08-27 02:26:28

- reply

Meh, just disabled the zaps, problem solved.

2024-08-27 02:10:22

- reply

Which is why I hadn't set up an LN address for the longest time, but people kept asking about it. Maybe you should be running this thing, LoL.

2024-08-27 00:35:25

- reply

Yes. Let us announce this specific thing publicly, LoL.

2024-08-26 18:38:05

- reply

Unfortunately, if I accept donations or tips on behalf of our other contributors, that makes me a “money transmitter”. 😕

2024-08-26 17:34:26

- reply

Have you tried sparrow wallet's software author verification module? It doesn’t get any easier than that.

2024-08-26 17:27:04

We don't have a PR budget or a marketing department, so it's up to me and our users to refute false claims made by established, or aspiring, hardware wallet makers.
If I have not been as clear on this as I could have been, or emphasized it enough: Our model has not changed since the outset of the project. Our software intentionally runs on simple, inexpensive, widely available commodity hardware with no software authenticity mechanisms.
This means that our users are responsible for verifying the integrity of the code they run on their SeedSigner, because you can run any code that you would want to on the device (with great power comes great responsibility). If maliciously modified software is run on a signer, there are exploits that can be attempted. Dark skippy is an optimization of an already known attack approach, but does not expose any new fundamental weakness to our approach to cold storage. If users verify they are running our released code (which is a quick and simple process) our security model remains robust and one that myself and all of our contributors fully stand behind.
Instructions to verify our releases are available in the repo, and if you haven't used your signer in a while, or if you have any concerns about who has had access to it, just re-verify and re-deploy our software and you are all set.
I will continue to beat the drum about this as best I can. Our L1 storage model is by design intended to be as trustless and permissionless as possible, for those who want to minimize their reliance on or trust in third parties, and also as a fallback for people in parts of the world where hardware wallets are unavailable or the attempted acquisition of them could come with personal risk.
If you love bitcoin and love freedom, even though our project may not be your preferred approach to cold storage, you should want SeedSigner and projects similar to it to not only exist, but to grow and flourish. https://image.nostr.build/71696a8100ed74f3e27d2e7c30b7553fda887a118b6dfee4964a0758dbec6840.jpg

2024-08-26 16:28:05

- reply

Sometimes I have this issue too!

2024-08-26 15:22:02

https://image.nostr.build/6cb41e67975a15ee6d4f545837f3b7c76ac2c7320056b0026d5a177813a577b0.jpg

2024-08-26 14:01:35

Max was the only podcaster who reached out after the dark skippy "novel" attack debacle, said that people seemed confused about it, and offered to have someone from the project on the show to explain how it related to SeedSigner. Literally the only one. He and QnA sincerely and passionately care about freedom tools. Consider putting them in your regular rotation if they are not already. #note165u…3pa4

2024-08-26 13:55:39

- reply

My family, who knows where the secrets are, also know which technically capable bitcoiners we trust and how to contact them if something happens to me. Multisig is the most theft-resistant and seizure resistant way to store bitcoin; if it isn't a good solution for most people then we're not doing it right yet.

2024-08-26 13:14:38

- reply

🔥

2024-08-26 00:32:34

- reply

https://image.nostr.build/956aa1ca93f58f382715e5d9850a31233b609b6b5a5e3768c219341e52d5b371.jpg

2024-08-25 23:04:22

The sleeping like a baby part has been my goal with our project all along. Different people have different concerns; given my unique background and perspective, SeedSigner is what has brought myself, as well as many others peace. Proud to be helping to build one of several different approaches to sleeping like a baby when it comes to saving with bitcoin. 🧡 #note162t…hfmp

2024-08-25 20:47:10

- reply

We intentionally include our UI/UX designer ( @npub1alr…2ynd ) in our project's solicited donations because of the tremendous value that he brings to our user interface. I agree with what you're getting at.

2024-08-25 20:02:01

X-posting this from the bird app, a continuation of my thoughts from earlier.
cc @npub1a2c…w83a
I continue to think about this and the challenge is that it's much harder to profit from freedom tech (it's users are generally more anonymous and the software more freely distributed); centrally controlled systems are much easier to monetize and extract value from.
But it realistically costs time and money to build things, especially to build them well, so if funding is given it has to come from a place of idealism and hope with few strings, rather than from a place that is in search of investment multiples. Even grant money for FOSS tech in the bitcoin/nostr spaces is often tied to for-profit business models -- the nexus of venture and grant funding is a tricky place fraught with ethical pitfalls.
Just find capable people with proven track records who are building for the greater good and support them. The @npub17xv…c9as does this best as an organization IMHO (kudos to @npub1trr…hdpu @npub1cf3…x7gk et al). But also, personally dig in and really learn about projects that build freedom tech, and then give directly to the ones you think are doing important work. There are tons of high quality devs who work on freedom tech part time, or who flatly won't provide identity info for money. Direct donations reach these individuals whereas grants & bundled funds primarily target those working full time and who are willing to provide identity info for payment.
Lastly, retroactive support for builders is highly underrated, and it's just ethically right. Capital allocaters and givers get too caught up in incentivizing what they think should be the next thing. If someone has built freedom tech that works and is contributing to the cause, financially thanking them puts some great incentives into play in that they feel appreciated (a deep human need), they will feel incentivized to improve / maintain what they've built, and they will often feel motivated to build the next important thing that no one else has thought of yet.
You’re asking some of the right questions, and coming at this from a place of humility is a great approach. https://image.nostr.build/9a5ee3f53270daede5ba71855720c523a0b770d7355b80f570855a858db51250.jpg

2024-08-25 18:26:28

Make it a great day. 🧡 https://image.nostr.build/da023646373320469a59b69db8717d944cbf0be93cad5056d092e7a22ffd8280.jpg

2024-08-25 18:15:03

- reply

Great for downloading and verifying software if you have concerns about your daily driver.

2024-08-25 01:17:27

- reply

It took me a minute but I see it now. 🙂

2024-08-21 03:43:08

- reply

🧡

2024-08-21 03:06:03

🚨 Announcing SeedSigner 0.8.0 ! 🚨
Our release notes have gotten so good that one of my release announcement threads doesn't make sense!
Just go and check out all of the details for yourself:
https://github.com/SeedSigner/seedsigner/releases/tag/0.8.0 https://image.nostr.build/305d63394c174a29c5384ec9f8e78b0df59ab9c6518b81f7165348cf89e7bd02.jpg

2024-08-20 03:44:41

👀 #note1xq9…qmv3

2024-08-19 17:13:17

- reply

The whole influencer army they seemed eager to muster always seemed like a high time preference approach to marketing. And hearing Klipstein talk about limiting their trading/hedging to low-leverage instruments was another red flag.

2024-08-18 16:23:12

- reply

In truth, I took a step back from SeedSigner development 3 or more years ago. 🤪 I wrote the initial versions of the software but I'm just an amateur coder and had the project been limited to my coding ability it wouldn't be what it is today. I focus more on helping connect contributors, helping others understand the project's raison d'etre, supporting users, designing enclosures, and other things that come up.

2024-08-17 15:57:49

- reply

I have not quit entirely but have scaled way back over the last couple months. Its definitely a net positive but I don't think as earth shattering as some might suggest. It definitely makes sense for me not to be an "every day" drinker. Have you noticed any positive changes?

2024-08-16 21:33:53

- reply

no, no. I mean the annunciation on the instrument. I’ve never played the trumpet, but it seems to be somewhat challenging to get clean starts and breaks. The annunciation seems really good.

2024-08-16 20:51:33

- reply

Kudos to @npub1alr…2ynd

2024-08-16 20:51:06

- reply

Very clean. 👍

2024-08-16 19:45:45

I hear this pretty frequently from our users. 🧡 #note185r…uzur

2024-08-16 19:36:23

- reply

(?)

2024-08-15 21:43:47

- reply

That would unfortunately technically make me a money transmitter. This is the reason why we set up the current donation process the way that it is. I appreciate your offer.

2024-08-15 18:27:38

- reply

This account isn't set up for zaps, I want LN donations to go to our technical contributors -- there's a form for that on the linked page. 🧡

2024-08-15 18:26:46

- reply

It's not representative of everyone who has contributed to the project, those five are the most consistent, responsive and active contributors. 🙂

2024-08-15 18:07:01

Software development grants can be a great source of financial support for full-time, technical, open source contributors, especially those working on projects that are close to the bitcoin core protocol.
Our project only has one contributor who is both technical and available for full-time work. To support our other most active contributors, please visit the link below and purchase a tshirt/hoodie, some Entropia tablets, or donate directly to our most active contributors via LN:
https://donate.seedsigner.com

2024-08-13 18:55:25

- reply

All analogies eventually break down but I think a pen makes a good analog for a signer. It documents/conveys info and can generate signatures, but when passed from user to user it doesn't retain info about what the last user did.

2024-08-12 00:55:10

- reply

I'm curious to see if it feels like Nostr hits differently.

2024-08-12 00:40:56

Un-installed Twitter from my phone today; was consuming too much time / energy.

2024-08-11 23:50:05

- reply

Congratulations on the new gig, appreciate your work.

2024-08-11 17:04:58

- reply

Holy wow!

2024-08-11 05:03:08

- reply

I feel you here.

2024-08-09 20:27:02

- reply

Official recommendation from coinkite is that HWWs should be replaced every 2-3 years IIRC.

2024-08-08 23:54:07

- reply

You are 100% correct, good memory! Looks like second release is where txn signing started, in Jan of '21. The release preceding this pod episode came out in late August, and included the features below, that were new as of that version... https://image.nostr.build/fefd1a3b8675f6f1e93331e50969037f57a51d74bdf65a562795afe661328d5e.jpg https://image.nostr.build/1c596aa558bbb1c72a8853e8625d8dc27b5117ffc0752a0100db106689d0ea77.jpg

2024-08-08 21:48:55

- reply

For sure, check out:
https://btcpay.btchardwaresolutions.com
🙏

2024-08-08 17:18:37

If you didn't have a solid reason to go to @tabconf (there are already many) here is another; @npub1alr…2ynd is an amazingly talented UI/UX designer.
https://github.com/TABConf/6.tabconf.com/issues/78 https://image.nostr.build/98bec56164d25a38a9c19fafca1d3993dd3b5c3146855ef3e0f19635da0d1588.jpg

2024-08-07 23:20:10

SeedSigner unfortunately left out of this one. 😕 #note18gm…76c2

2024-08-07 03:43:13

- reply

Clue: #nevent1q…8yxh

2024-08-07 03:35:48

- reply

Our lead developer gifted you a signer at Pacific Bitcoin -- what did you think of it?

2024-08-07 02:56:50

If for-profit companies are able to effectively shout down and sideline open source projects, without any real merit to their assertions, what the fuck are we even doing here?

2024-08-07 00:26:14

If you're within reasonable driving distance of Lake Satoshi in Michigan for their annual event this weekend (or even within slightly unreasonable driving distance), definitely do it.
https://lakesatoshi.com
Really appreciate Mike for showing me around today, he has a *great* group of bitcoiners I got to meet who are helping put things together. https://image.nostr.build/418f410854b54d30fb8ad5142e7f997ed75b92143b00212aa828a808704921f9.jpg https://image.nostr.build/dde76a44531cad651d882789fb8f77df4ce1807a0f3be5a2062fd5f909f846cf.jpg https://image.nostr.build/ab61798f1f27dcd902c0dd33c2b8e4a8b5e7628bd692f04f2b513fd2f08d0334.jpg https://image.nostr.build/be87504ca69f99a86504967c7ec6b8c3fd2945f13d2d4635a8d22d15cf449ccf.jpg

2024-08-06 20:42:32

- reply

👆

2024-08-06 17:18:28

- reply

if you could explain that to him, maybe that would help, lol.

2024-08-06 17:08:14

Pushing back in ways like this is probably the only way it stops. #note12k2…qfff

2024-08-06 03:27:06

- reply

This is possible but would require a second round trip of QR codes to check the signatures. There are no wallet coordinators that support this, so there would need to be at least one before it would make any sense to consider implementing. You can view a video here that demonstrates how to verify your signer produces signatures consistent with Sparrow and bitcoin core:
https://x.com/seedsigner/status/1788945526806700091?s=46

2024-08-06 00:05:22

Research and responsible disclosures are important and appreciated, but nothing fundamentally novel here -- as with previously demonstrated exfiltration attacks, this requires running a modified version of our software with malicious code inserted. Trade-offs, all the way down. #note1ra4…k7md