Wu Says learned that, amid the controversy surrounding Tangem cards’ physical attack vulnerabilities previously disclosed by Ledger’s security team, and the fact that they could not be fixed due to the firmware being non-upgradable, Tangem’s CTO Andrey Lazutkin posted a defense of its minimalist design. He said the more hardware wallet components there are, the larger the attack surface; therefore Tangem uses an architecture with no screen, no battery, and non-upgradable firmware. Andrey believes that firmware upgrades themselves are also a long-standing code-injection entry point, and an immutable design can reduce the need for ongoing trust in the vendor. He also said that the mnemonic phrase in traditional hardware wallets is the main security weak spot, and that fully disclosing the underlying mechanisms of security chips could also provide attackers with clues.

View Original
This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.
  • Reward
  • Comment
  • Repost
  • Share
Comment
Add a comment
Add a comment
No comments
  • Pinned