Oddbean new post about | logout
ИΛKΛDΛI | 10 months ago (raw) | root | parent | reply | flag +4 
 Use jade as a stateless signing device.
https://help.blockstream.com/hc/en-us/articles/20144489592857-Use-Jade-as-a-stateless-signing-device
ИΛKΛDΛI | 10 months ago (raw) | root | parent | reply | flag +1 
 When using Jade as a hardware wallet with PIN, your seed is encrypted in cooperation with a blind oracle. This requires Jade to communicate with a companion device to perform the decryption. Using Jade as a stateless signing device does not require any PIN entry or communication with a companion device.
Bass [Old] | 10 months ago (raw) | root | parent | reply | flag 
 Is there an option to host your own oracle server?
Bass [Old] | 10 months ago (raw) | root | parent | reply | flag 
 Jades decryption is odd to me. When I save a customers password in the database, we dont need to decrypt it to give them access into their account. Login process takes their password value, encrypts it, and checks with our database copy of their encrypted password to verify they match without a decrypt process, and through a match, they login. The fact that the seed itself is able to be decrypted tells me that they are using non SHA256 encryption, that their oracle server can potentially be holding those keys that are "decryptable" at their convenience. If they arent using SHA256 encryption universally, which is incapable of being decrypted, is there good reason to believe they would only be able/willing to decrypt part of your credentials?