Over the past months I've tested various #bitcoin hardware wallets / signing devices using @SparrowWallet and @SpecterWallet multisig setups. Without going into their security models, here is the good, bad, and neutral of the devices in no particular order
Good @FOUNDATIONdvcs Passport (2 devices tested)
+ Solid build (except keypad)
+ Camera and QR signing
+ Removable battery
+ Bitcoin only
+ Solid build (except keypad)
+ Camera and QR signing
+ Removable battery
+ Bitcoin only
Bad @FOUNDATIONdvcs Passport
- Hard to remove the SD card, sometimes need to remove the back panel
- Lack of security functions like keypad scramble
- The keypad feels cheap and looks like it will wear out after some usage. Sometimes had to press keys more than once
- Hard to remove the SD card, sometimes need to remove the back panel
- Lack of security functions like keypad scramble
- The keypad feels cheap and looks like it will wear out after some usage. Sometimes had to press keys more than once
- "Security Words" experience poor, often found myself continuing to type when it was paused on the words
- No dice rolls for entropy, though may be available in future
- No dice rolls for entropy, though may be available in future
Neutral @FOUNDATIONdvcs Passport
~ Color display, but really brings no additional value at the moment
~ Might be too simple. Understand KISS and the device works, but seems to be bare minimum in security features
~ Color display, but really brings no additional value at the moment
~ Might be too simple. Understand KISS and the device works, but seems to be bare minimum in security features
~ Though accounts are in separate tabs, you do not need to be in a specific account to sign a transaction. Unexpected behavior but can avoid a heart attack if a transaction was rejected
~ Slightly larger than other devices and does not fit in "standard" faraday bags
~ Slightly larger than other devices and does not fit in "standard" faraday bags
Good @COLDCARDwallet Mk4 (5 devices tested)
+ Many security features such as duress pin and keypad scramble
+ Might seem complicated or overwhelming, but it is great for learning, and you quickly find your way around
+ Bitcoin only
+ Dice rolls for entropy
+ Overall good build
+ Many security features such as duress pin and keypad scramble
+ Might seem complicated or overwhelming, but it is great for learning, and you quickly find your way around
+ Bitcoin only
+ Dice rolls for entropy
+ Overall good build
Bad @COLDCARDwallet Mk4
- Initially the SD card got stuck, rubbing on the plastic casing. Of the 5 devices tested, had the issue on 2. After some usage it seems to no longer be an issue
- When using the magnetic USB adaptor, you cannot slide the protective cover on the back
- Initially the SD card got stuck, rubbing on the plastic casing. Of the 5 devices tested, had the issue on 2. After some usage it seems to no longer be an issue
- When using the magnetic USB adaptor, you cannot slide the protective cover on the back
- Controversial topic, but the code is not open source. Though not an issue for me, and they are free to choose the license they want, the discourse with the FOSS community often seems misleading and aggressive; unnecessary
Neutral @COLDCARDwallet Mk4
~ Seems with firmware updates, menu items often move around, creating confusion
~ Seems with firmware updates, menu items often move around, creating confusion
Bad @Blockstream Jade
- Wheel feels flimsy, on first device, it often got stuck
- Built-in battery that cannot be removed. Impractical for long-term storage
- Wallet setup requires software
- No dice rolls for entropy
- Poor camera
Neutral @Blockstream Jade
~ Build quality
- Wheel feels flimsy, on first device, it often got stuck
- Built-in battery that cannot be removed. Impractical for long-term storage
- Wallet setup requires software
- No dice rolls for entropy
- Poor camera
Neutral @Blockstream Jade
~ Build quality
Good @BitBoxSwiss BitBox02 (1 device tested)
Good
+ Solid product
+ Good for multisig
Bad @BitBoxSwiss BitBox02
- Not air-gapped
- Bitcoin-only firmware available, but also supports altcoins
- No dice rolls for entropy
- Wallet setup requires software
Good
+ Solid product
+ Good for multisig
Bad @BitBoxSwiss BitBox02
- Not air-gapped
- Bitcoin-only firmware available, but also supports altcoins
- No dice rolls for entropy
- Wallet setup requires software
Good @SpecterWallet DIY & Shield (1 of each tested)
+ Built with off the shelf components
+ Just feels good building your own device
+ Large screen which makes it is easier to read and display information
+ Dice rolls for entropy with additional app github.com
+ Built with off the shelf components
+ Just feels good building your own device
+ Large screen which makes it is easier to read and display information
+ Dice rolls for entropy with additional app github.com
Bad @SpecterWallet DIY & Shield
- Screen seems too reactive. If used with a 3d printed case, need to be careful with the case edges touching the screen
- (Shield only) Cannot remove battery without disassembling the device
- Screen seems too reactive. If used with a 3d printed case, need to be careful with the case edges touching the screen
- (Shield only) Cannot remove battery without disassembling the device
Neutral @SpecterWallet DIY & Shield
~ Large device
~ Stateless though with the Shield version you can use a smartcard
~ Specter Shield is probably more of a collectors item, difficult to obtain
~ Large device
~ Stateless though with the Shield version you can use a smartcard
~ Specter Shield is probably more of a collectors item, difficult to obtain
Good @SeedSigner
+ Full-fledged software and great UI
+ Built with off the shelf components
+ Just feels good putting together your own device
+ Great community
+ Dice rolls for entropy, though limited to 99
+ Full-fledged software and great UI
+ Built with off the shelf components
+ Just feels good putting together your own device
+ Great community
+ Dice rolls for entropy, though limited to 99
Bad @SeedSigner
- In an era government-imposed lockdowns impacting supply chains, it can difficult or expensive obtaining a Raspberry-Pi
- In an era government-imposed lockdowns impacting supply chains, it can difficult or expensive obtaining a Raspberry-Pi
Neutral @SeedSigner
~ Sateless, requires importing seed every time it is used
~ Best if used with a 3D printed case as the buttons and joystick on the waveshare hat can be rough edged
~ If not experienced, best get a Raspberry Pi with pins, as adding them can be difficult
~ Sateless, requires importing seed every time it is used
~ Best if used with a 3D printed case as the buttons and joystick on the waveshare hat can be rough edged
~ If not experienced, best get a Raspberry Pi with pins, as adding them can be difficult
.@Ledger devices
I just cannot recommend their devices. While I have used several in the past (Nano S), the company not aligned with the values of the Bitcoin community, instead focusing on altcoins. In addition the company continuously discredits itself by (just to name a few):
I just cannot recommend their devices. While I have used several in the past (Nano S), the company not aligned with the values of the Bitcoin community, instead focusing on altcoins. In addition the company continuously discredits itself by (just to name a few):
- Promoting horrible security
- Making deceptive claims and then the now deleted tweet "Technically speaking it is and always has been possible to write firmware that facilitates key extraction. You have always trusted Ledger not to deploy such firmware whether you knew it or not."
Overall, they are all great devices. My rating based on above is:
Favorites
1. @COLDCARDwallet Mk4
2. @SeedSigner
3. @FOUNDATIONdvcs Passport
Followed by
- @Trezor One & Model-T
- @SpecterWallet DIY & Shield
- @BitBoxSwiss BitBox02
Least preferred
- @Blockstream Jade
- Ledger
Favorites
1. @COLDCARDwallet Mk4
2. @SeedSigner
3. @FOUNDATIONdvcs Passport
Followed by
- @Trezor One & Model-T
- @SpecterWallet DIY & Shield
- @BitBoxSwiss BitBox02
Least preferred
- @Blockstream Jade
- Ledger
Loading suggestions...