Oddbean new post about login | logout YubiKey has a larger security budget than your favorite HWW -- hardware security is a never-ending cat and mouse game. Better to put your trust in functionally unsolvable math problems rather than "unhackable" hardware. https://image.nostr.build/4fac5912deb2f6f8387a9d6fba217b7158ac1e2a4dbcc46b45ef2971b8dc3544.jpg nostr:note1704j6qaly6kxssg59trza396yzluaym5alkxv2kppk5px63grwuqx4a77f
I can't zap you 🤔
Agreed. Nothing is unhackable.* Multivendor multisig is best in class. I wish more multisig services would add seedsigner support. * except maybe this https://blog.blockstream.com/codex32-a-shamir-secret-sharing-scheme/
🎯
Antes de entrar en pánico pregúntese si usted vale, para su oponente más de 11,000 USD y la contratación de hackers expertos en criptografía y matemáticas Si es así, efectivamente, debería leer muy atentamente la nota que comparte SeedSigner, si no, de todas formas lea 👇👀👀👇 nostr:note1tq7q5vhv5sdr9wzavzf64yv0l2gkp9qsuh8txu4asdlwkvw5c45s4r0c3m
If someone gains physical access to my passkey they can use it to access my accounts (which are also password protected) regardless of whether they have some fancy way of copying it I think this is a theoretical vulnerability rather than a real vulnerability Maybe if I was a spy or diplomat or something I'd have to be concerned about Chinese customs cloning my key, but for a normal person if an attacker gets a hold of my key they're probably going to keep it rather than clone it
