Actions

Cryptocurrency Hardware Wallet: Threat Model

From Whonix



Cryptohardwarethreat.jpg

How Bitcoin can be stolen even when using a hardware wallet.

Introduction[edit]

Info Hardware wallets might increase security under some threat models but this requires knowledge. Most users lack the required background knowledge and would still loose their cryptocurrency under many different attack models. [1]

Info Note: The term "account number" rather than "address" is used throughout this wiki entry in order to avoid confusion.

Hardware wallets [archive] are:

... a physical device on which a user stores their private keys to access their blockchain wallets. These devices don’t have to be electronic. Any physical item that can store a private key is considered a hardware wallet. From a general perspective, hardware wallets are convenient, secure, and immune to many of the hazards other wallet types can fall victim too.

It is absolutely crucial to understand the concept of an insecure display versus a secure display.

In essence, hardware wallets seek to secure users' funds under the sane assumption that the computer in use may be compromised by malware. Once infected this way, malware can:

  • secretly view all user actions without obvious signs;
  • manipulate the screen, such as showing one account number instead of another correct account number; and
  • capture all key strokes (sniff passwords), download files and perform other malicious actions.

For these reasons the computer display is considered an untrustworthy, an insecure display, while the display of the hardware device is considered trustworthy, a secure display. The reason for considering the hardware device's display to be trustworthy is that vendors of hardware wallets enforce a requirement that only signed software must be used. Unless the cryptographic verification process that prevents unsigned software from running on the hardware wallet can be subverted, the hardware wallet is considered to be free of malware and therefore a secure display. In other arenas, this security concept is referred to as "What you see is what you sign" (WYSIWYS [archive]). [2]

Hardware wallets are also an implementation of an air gap [archive]:

An air gap, air wall, air gapping or disconnected network is a network security measure employed on one or more computers to ensure that a secure computer network is physically isolated from unsecured networks, such as the public Internet or an unsecured local area network.

Threat Model[edit]

In order to perform cryptocurrency transactions securely, a number of threats must be averted so funds are not lost to attackers.

Table: Hardware Wallet Threats

Threat Domain Description and Recommendations
Failure to Understand Basic Threat Model Risk
  • Threat: Many users lack basic background knowledge such as the difference between a secure display and an insecure display as mentioned in the Introduction chapter of this page.
  • Conclusion: The computer screen could be modified by malware to fraudulently ask the user to enter the backup recovery seed phrase (recovery phrase) (perhaps under pretense of seed phrase verification) which would then give the attacker full access to all cryptocurrency holdings of the user.
  • Workarounds:
    • Learn how to use hardware wallets in combination with a malware free computer first with tiny amounts of cryptocurrency for testing purposes to learn the basic process. Later be suspicious about changes in the workflow and ask for trustworthy advice before proceeding.
Recipient Account Number Discovery Risk
  • Threat: It is difficult for the user view their own recipient account number on the hardware wallet's secure display.
    • Ledger Live has a "show address on device" ("show account number") feature, which shows the account number on the secure hardware wallet display.
    • In some devices, even if the account number is shown it is difficult to read from the display.
      • The Ledger Nano S [archive] only has a small display and the account number -- which can be 35-45 random characters long -- and is displayed as ticker text which automatically scrolls over the display at high speed. This means at best it is only possible to view the first few and last few characters, while skipping all those in the middle. This provides an opportunity for attackers to try to create an address where the start and end of the address match, but the middle section is under their control.
      • The Ledger Nano X [archive] does not have the above problem and shows the full account number at once, providing an opportunity to verify it in full.
  • Conclusion: The regular user of a ledger hardware wallet will have difficulty in discovering their own recipient account number in a secure manner, due to the risk of fraudulent modification by malware running on the computer. This means it is also difficult to tell senders of the correct recipient account number without potentially being misled by malware.
  • Workaround: Use multiple computers to discover the account number in the hope they are not all compromised.
Receiving Account Number Transmission Risk
  • Threat: When receiving coins -- such as when withdrawing cryptocurrency from the cryptocurrency exchange -- the user's recipient account number is entered into their computer, which is utilizing an insecure display.
  • Conclusion: The screen could be modified by malware to fraudulently redirect the withdrawal to an account number held in the attacker's wallet.
  • Workarounds:
    • Use withdrawal account number whitelists if they are offered by the sender.
    • This issue does not apply if the user can transmit the recipient account number through a trusted channel.
Account Balance Discovery Risk
  • Threat: Even if cryptocurrency has been received on the device, the balance is not shown on the hardware wallet secure display.
  • Conclusion: The user might mistakenly believe they have received more value than was actually transferred.
  • Workaround: Use multiple computers to check the balance (watch-only accounts), in the hope they are not all compromised.
Recipient Account Number Transmission Risk
  • Threat: When sending cryptocurrency to merchants or cryptocurrency exchanges, the recipient account number is shown on the computer's insecure display. It could be modified by malware to redirect the receiving account number to the attacker. Since the hardware wallet secure display will ask for confirmation (account number and amount), at least smaller transactions are protected. For example if the user has 1 Bitcoin but only wants to send 0.1 Bitcoin, there is an option to abort the transaction if the ledger display asks to confirm a transaction that is larger than expected.
  • Workarounds:
    • This issue does not apply if the recipient account number can be verified through a trusted channel. For example, multiple devices can be used (since it is unlikely they are all infected) or a personal meeting with the sender can occur beforehand.
    • It is possible to send funds in small installments and then confirm with the recipient via a secure channel they were received. This limits the amount of funds that may be lost to the size of the installment.
Clipboard Attack Risk
  • Threat: Quote EthClipper: A Clipboard Meddling Attack on Hardware Wallets with Address Verification Evasion [archive]:

    Hardware wallets are designed to withstand malware attacks by isolating their private keys from the cyberspace, but they are vulnerable to the attacks that fake an address stored in a clipboard. To prevent such attacks, a hardware wallet asks the user to verify the recipient address shown on the wallet display. Since crypto addresses are long sequences of random symbols, their manual verification becomes a difficult task. Consequently, many users of hardware wallets elect to verify only a few symbols in the address, and this can be exploited by an attacker. In this work, we introduce EthClipper, an attack that targets owners of hardware wallets on the Ethereum platform. EthClipper malware queries a distributed database of pre-mined accounts in order to select the address with maximum visual similarity to the original one. We design and implement a EthClipper malware, which we test on Trezor, Ledger, and KeepKey wallets.

  • Workaround: All characters of the account number should be verified on the hardware wallet secure display.
SPV Wallet Risk
  • Information:
    • There are two different types of wallets. Blockchain full validating and SPV wallets. Full validating wallets have higher system requirements but are more secure.
    • For example, electrum is a popular SPV wallet (which can be combined with hardware wallets) which eloquently documents it disadvantages. Quote Does Electrum trust servers? [archive]:

[...]

One of the servers, arbitrarily, is selected as the “main” server.

  • The client subscribes to its own addresses (nit: sha256 hashes of scriptPubKeys) so that it would be notified of new transactions touching them. It also synchronizes the existing history of its addresses. This means the client sacrifices some privacy to the server, as the server can now reasonably guess that all these addresses belong to the same entity.
  • As above, confirmed transactions are verified via SPV.
  • The server is trusted about unconfirmed transactions.
  • The server can lie by omission. That is, it can “forget” to mention (both confirmed and unconfirmed) transactions that are relevant to the client.
  • The main server is also used for fee estimates, and is trusted with those (low-high sanity limits are applied in the client)
  • The main server is also used to broadcast the transactions the client makes.

[...]

  • Threat: Most if not all official hardware wallet desktop or mobile applications provided by the vendor of the hardware wallet are SPV wallets. Thereby use of SPV wallets is encouraged.
  • Workarounds:
    • Some full validating crypto currency wallets might allow being paired with hardware wallets. Unfortunately, for Bitcoin the official Bitcoin Core has no hardware wallet support yet.
    • Therefore alternatively, a full validating node can be run in concert with a SPV wallet. The full validating wallet would run in watch-only mode, either permanently or occasionally whenever the user wants to double check incoming transactions and account balances.
    • Running a blockchain full validating node such Bitcoin Core for Bitcoin is a very good idea since it is much more secure than merely relying on a SPV wallet to verify incoming transactions and account balances. For the expense of setting up a full validating node (setup time, download quota, CPU utilization) a lot higher certainty of receiving real coins can be accomplished. Quote 10x Security Bitcoin Guide [archive]:

      Think of your bitcoin node as a fake bitcoin detector, it will confirm that bitcoin’s consensus rules are being followed so that when you receive a payment you can validate that you are getting real bitcoins.

Time of Compromise Matters
  • Once funds are on the hardware wallet they are safe - depending on the security of hardware wallet - until the user attempts to spend those funds.
  • This means if/when the user's computer is compromised later on (after stocking up funds), less funds are lost but all the aforementioned threats apply.
Unauthorized Physical Access (attacker gains physical access to the device)
  • If the hardware wallet and/or computer are stolen, all funds are safe as long as the user still has the backup recovery seed phrase (recovery phrase). This assumes the attacker is unable to circumvent the hardware wallet PIN entry and/or extract the keys from the device.
  • If the user stores the hardware wallet and PIN in the same place and loses it, all funds will be lost.
  • If the recovery phrase is lost and hardware wallet or PIN code is lost all funds are irretrievable.
  • Compared to full disk encryption:
Usability
  • easier to safely split bitcoin / bitcoin cash / bitcoin gold: yes
  • easy to carry: yes
  • easy to backup: yes
  • easy to replace device: yes
  • easier than Qubes OS (offline vault VM): yes
Usability Issues
  • browser support on/off
  • ledger device applications do not auto start
Miscellaneous
  • more obscure to attack than a "simple trojan horse": yes
Multisig
  • TODO: short explanation what multisig is
  • useful for diversification in multisig: yes
  • multisig is easier to use: no
  • easy restoration process: no
  • risk of restoration issues: higher
Non-Freedom Software
Low Quality of Randomness
  • Threat:
    • The quality of randomness required by the device to create the backup recovery seed phrase (recovery phrase) might be too low. An attack might find a a weakness in the Random Number Generator (RNG) which helps to attacker to guess other other user's recovery phrase and thereby steal their cryptocurrency.
    • Since well encrypted data is indistinguishable from random data, it would even be possible for an attacker to subvert the production process of a hardware wallet, thereby compromising the RNG. All tests for verification of randomness would pass but the attacker could have user a cryptographic algorithm and private key which turns the apparently random data into predictable data for the attacker only. Thereby the attacker could wait for the hardware wallet to be widely used before stealing huge amounts of cryptocurrency.
    • Suspicious and even proven to be broken RNG's exist. See this list of references.
    • security-misc [archive] (installed by default in Kicksecure ™ and Whonix) distrusts the CPU for initial entropy at boot as it is not possible to audit, may contain weaknesses or a backdoor.
    • Kicksecure and Whonix improve entropy generation due to pre-installed entropy generators. See wiki page Dev/Entropy for details.
    • Quote ledger hardware wallet on Quality of randomness [archive]:

      • Hardware RNGs like the one used in Ledger hardware wallets use several sources of randomness.

      • But does not elaborate on that page what these several sources of randomness are.
    • Trezor: has a lot more documentation. [6]
  • Conclusion: A hardware wallet should not be trusted with recovery phrase creation.
  • Workarounds:
    • Create the recovery phrase on a device with high quality randomness (i.e. a computer). This will be very difficult for most users since this requires a malware free computer to begin with.
    • Use a passphrase. Quote ledger hardware wallet [archive]:

      • The Passphrase is an advanced feature that adds a 25th word of your choosing of max 100 characters to your recovery phrase

      • The passphrase needs a good password strength. Ideally at least as strong as the password strength of recovery phrase since the recovery phrase is in question here. However, such as strong passphrase is difficult to generate for most users. (That is why the default workflow that most hardware wallet vendors lay out is for the recovery phrase to be generated by the hardware and not by the user.) Quote Wikipedia:

        • Human-generated passwords: People are notoriously poor at achieving sufficient entropy to produce satisfactory passwords.

        • Simplified: Most human generated passwords are insecure.
      • For information on strong password, see the Passwords page.
    • Would multisig be an enhancement if one of the signing keys was created on a device different device than a hardware wallet, i.e. a computer?
Impracticality of Workarounds Risk
  • Threat: As denoted by the term, a 'workaround' is not an actual fix. For workarounds to be effective, they require: awareness (of which there is probably very little); wide adoption (very few people are applying these), and easy steps (most are cumbersome due to bad usability).
  • Conclusion: It is likely most workarounds will be neglected during various phases due bad usability (difficult to use), limited awareness/skills and/or time pressure.

Recommendations[edit]

Quote Ben Kaufman [archive], Thread: 10 Rules for Verification on a #Bitcoin Hardware Wallet [archive]:

Rule #1: DO NOT TRUST THE COMPUTER SCREEN.

The very reason for using a hardware wallet is that your computer IS compromised, trusting it makes using the hardware wallet an expensive security theatre (or 2FA at best).

Always verify on the HWW device screen!

Indeed. This is a different way to put it than the formal wording above.

Rule #2: Verify your "receive" addresses BEFORE accepting funds. A compromised computer can be tricked into displaying addresses that belong to an attacker. The only way to make sure you own the addresses is to display them on the HWW device and verify they match.

Always use the "show address on device" feature of the hardware wallet.

Rule #3: Verifying change address should be done by the device when sending funds, not before like receive addresses!

It is pointless at best, and misleading at worst, to verify them beforehand like receive addresses... All hardware wallets support verifying the change address belongs to you AT TIME OF SIGNING A TRANSACTION.

Verifying before that is pointless and error-prone.

TODO: we need to document what a "change address" is.

Rule #8: For convenience, you may print out/ write down a large batch of your receiving addresses - verify all at the same time, and rely on that paper list for your day to day verification.

Consider ignoring this advice if all crypto currency addresses should remain concealed and secured by Full Disk Encryption.

Rule #10: Hardware wallets cannot verify your balances - and that's great!

Verifying balances requires getting information from the Bitcoin network - i.e. you need to be online - which would make hww more vulnerable... This is where a full node comes in! It is strongly recommended that you run your own Bitcoin full node - and use it as your main source for verifying your balances and transaction history! For redundancy, you could double-check against block explorers or another node (use a different device for either!). One last thing: These rules apply to any device you use as a segregated signing device - be it a "traditional" hardware wallet, an airgapped laptop, a mobile phone etc.

If you want to separate your keys without having a security theatre, you should verify on your signing device!

ledger feature request: show balance on hardware wallet screen [archive]

Capabilities and Limitations[edit]

It is crucial to understand the capabilities and limitations of a hardware wallet.

A hardware wallet can:

  • store a private key,
  • show an account number on the hardware wallet secure display,
  • sign a transaction to spend cryptocurrency.

A hardware wallet doesn't "know":

  • account balances,
  • if payment receipt account number (those the user intents to send payments to) is correct.

Hardware wallets cannot:

  • securely transmit an account number to a third party such as for example a cryptocurrency exchange.

A hardware wallet is not a complete cryptocurrency wallet. It is only the component of the wallet which - hopefully securely - stores the key to access the cryptocurrency. The user needs to be aware of the missing components of a hardware wallet and unfortunately entrust that functionality with the conceptually untrusted computer and its insecure display.

Donations[edit]

If this wiki page has contributed to safekeeping of crypto currency, please consider making a donation to Whonix ™ to help keep it running for many years to come.

Donate Bitcoin (BTC) to Whonix ™.

Bitcoin accepted here 35wdTVzyYGzRd7W2Wb2dunw3v5Am14sxPX

Whonix donate bitcoin.png

Monero accepted here Donate Monero (XMR) to Whonix ™. 

49sP9cMQ5jvhzKW477TH6NJJ2z3pqD8pYRqCyCAqN1Y7QYQMxKf7SPq356BBiNcRwzagpcjqkK66LG4wwr37YjSS3kY3x5P

Monero donate Whonix.png

See Also[edit]

Footnotes[edit]

  1. https://twitter.com/JWWeatherman_/status/1327712434572947456 [archive]
  2. In other words, just sign what you see.
  3. No actual reports of this happening in the media. More correct wording might be "would have been"?
  4. https://twitter.com/el33th4xor/status/925013437226221569 [archive]
  5. https://www.reddit.com/r/ledgerwallet/comments/6vgl1z/is_the_nano_ss_firmware_open_source/ [archive]
Fosshost is sponsors Kicksecure ™ stage server 100px
Fosshost About Advertisements

Search engines: YaCy | Qwant | ecosia | MetaGer | peekier | Whonix ™ Wiki

Follow: 1024px-Telegram 2019 Logo.svg.png Iconfinder Apple Mail 2697658.png Twitter.png Facebook.png Rss.png Reddit.jpg 200px-Mastodon Logotype (Simple).svg.png

Support: Discourse logo.png

Donate: Donate Bank Wire Paypal Bitcoin accepted here Monero accepted here Contribute

Whonix donate bitcoin.png Monero donate Whonix.png United Federation of Planets 1000px.png

Twitter-share-button.png Facebook-share-button.png Telegram-share.png link=mailto:?subject=Hardware Wallet Security&body=./Hardware_Wallet_Security link=https://reddit.com/submit?url=./Hardware_Wallet_Security&title=Hardware Wallet Security link=https://news.ycombinator.com/submitlink?u=./Hardware_Wallet_Security&t=Hardware Wallet Security link=https://mastodon.technology/share?message=Hardware Wallet Security%20./Hardware_Wallet_Security&t=Hardware Wallet Security

Want to make Whonix ™ safer and more usable? We're looking for helping hands. Check out the Open Issues and development forum.

https link onion link Priority Support | Investors | Professional Support

Whonix | © ENCRYPTED SUPPORT LP | Heckert gnu.big.png Freedom Software / Osi standard logo 0.png Open Source (Why?)

The personal opinions of moderators or contributors to the Whonix ™ project do not represent the project as a whole.

Retrieved from "https://www.whonix.org/w/index.php?title=Hardware_Wallet_Security&oldid=69820"
By using our website, you acknowledge that you have read, understood and agreed to our Privacy Policy, Cookie Policy, Terms of Service, and E-Sign Consent.
More information