Patrick Collins
@patrickalphac
Four more wallets entered my review lair. I only considered one acceptable for security researchers to use. Can you guess which one? Let's find out (NGRAVE, SafePal, useBurner, and BitBox02) 👇
2 replies
6 recasts
20 reactions
Patrick Collins
@patrickalphac
We will be uploading this data to @walletbeat (thanks @polymutex.eth!), so be sure to follow that resource. You can also optionally watch my video review on it here, or read the article. https://www.youtube.com/watch?v=-m1jcBFS0dc https://patrickalphac.medium.com/will-one-of-these-hardware-wallets-save-ethereum-cf73a4390386
1 reply
1 recast
5 reactions
Patrick Collins
@patrickalphac
Let's start with safepal I was at first excited because of all the compatibility this wallet had - it's own mobile device, it's own desktop extension, QR code reader, but the actual hardware device truncates the calldata and EIP-712 data!
1 reply
0 recast
2 reactions
Patrick Collins
@patrickalphac
Next, the @bitboxswiss It's a small wallet that's tricky to use, but this wallet actually passes my tests! You can read all the calldata, the architecture of open-sourced firmware with a secure chip is awesome. I would recommend this wallet to security researchers.
1 reply
0 recast
3 reactions
Patrick Collins
@patrickalphac
@useburner This wallet made me rethink how I rated Tangem. Burner is a card wallet, different from a hardware wallet. But even the "BurnerOS" which is used to sign txes doesn't show calldata.... So, this wallet is "fine" as a "tap-to-pay, don't keep much money on it" wallet.
2 replies
0 recast
2 reactions
