Profile picture
, 16 tweets, 3 min read
My Authors
Read all threads
1) We are receiving many inquiries about the differences between the original Bitfi & the new Bitfi.2. Here is a brief summary. Of course both devices share the unique security mechanism where private key only exists for split second during transaction.
2) We developed Bitfi to address very serious security concerns that go well beyond what you will see with other wallets. With the design of the Bitfi.2, we removed any physical access (USB Data/Access to internal components) without those attempts visibly destroying the device
3) or making it obvious it was tampered with. We accomplished this through a series of modifications to original design. It is sealed & filled with a thermal shedding, heat resistant resin which bonds to the internal components after provisioning. One of the properties of this
4) resin is its high thermal resistance. The case & screen have a lower melting point than the resin which would stop attempts to access the device via a heat gun or hotplate. Both devices do not transmit any keys whatsoever (Transactions are built & signed on the device).
5) The Wi-Fi Drivers have been source code reviewed & fuzzed extensively. There are a variety of verification & validation mechanisms for ensuring that it only "talks" to our systems & use a 3 layered encryption method (SSL Pinning, ECDSA based communication Verification, & of
6) course the transactions themselves are encrypted although they contain no sensitive information. We’ve gone through AOSP hardening & the device isn't allowed to communicate with any other services beyond the ones designated as part of the Bitfi solution. All device features
7) & functions are stripped or completely locked out. We have gone through extensive dynamic and static code analysis (source code is available on Bitfi.dev for review). On both devices, keys are never permanently stored & there are several layers built into the
8) device to ensure memory is properly & immediately cleared. We moved to native libraries with V114 after going through a public source code review to address "in memory" side-channel attacks. USB/JTAG/UART/SPI are inaccessible & as mentioned above cannot be accessed
9) & board cannot be modified without destroying it. All devices have a unique hash which is calculated as the user begins typing their salt every time & is not stored on the device. This hash allows users to ensure their device has not been tampered with from a programmatic
10) perspective & is managed by a second administrative app which is verified by our services for integrity. Firmware updates are pulled by the device when they are made available, it then hashes all bytes to perform ECDSA check. These hash checks are performed server-side to
11) ensure they match with our update package & has not been tampered with. ALL transactions including updates with their corresponding signatures are available at bitfi.dev. Any attempt to flash the devices lower level bootloader or operating system OTA would
12) require an OTA update package specially built for our devices as well as the OTA secure update keys. These are not publicly available & even if they were lost or stolen the OTA update packages are not enabled on the device, rendering them useless. If attacker was able to get
13) our entire source code for our preloader, bootloader, OS, APP &even gained access to our servers & our admin application which monitors all wallet &device activity & prevents any communications or other changes to the device, they would still not be able to push a malicious
14) update because the update would require a signing key, & any attempt to push lower-level code changes will immediately wipe out the unique identifier & force the device into a default unprovisioned state. Provisioning is impossible without a special service & a series of keys
15) that are tightly controlled & air-gapped from all other systems. All application code compilation is done using deterministic builds & code signing is done on an air-gapped system & hashes are checked to verify they match after upload & by device & server when a device pulls
16) the update. As can be seen above these processes and the steps we have taken, while simplistic, are highly effective. We will be publishing more information and details on this innovative technology in the near future.
Missing some Tweet in this thread? You can try to force a refresh.

Enjoying this thread?

Keep Current with Bitfi - open source: bitfi.dev

Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @TheBitfi see all

Profile picture
Bitfi - open source: bitfi.dev
@TheBitfi
1) Think you really know just how deep the rabbit hole goes? Most of you are already aware the dollar is backed by absolutely nothing. The information we are about to share appears on web.archive.org/web/2009050816…, it takes you to the moment before it no longer existed.
2) Before this page disappears forever, we took screen shots that US Department of Treasury made a series of admissions, like “There’s no Federal statute mandating that a private business, person or organization must accept currency or coins as for payment for goods or services.
3) “Federal Reserve notes are not redeemable in gold, silver or any other commodity, and receive no backing by anything This has been the case since 1933. The notes have no value for themselves, but for what they will buy.”
Read 10 tweets
Profile picture
Bitfi - open source: bitfi.dev
@TheBitfi
(1/11) Our experience at Def Con 27 was incredibly helpful. We want to thank the infosec community members who met with us and shared their grievances, concerns and took their valuable time to listen to what we have been working on with regards to our tech and where it is going.
(2/11) Hundreds of hours have been spent over the past year by the infosec community reviewing Bitfi tech and claims, and we want to formally thank you for your honest feedback, your desire to protect consumers, and your willingness to share your findings.
(3/11) That effort was not in vain; it has pushed us to innovate and work harder. We owe each of you a big "thank you" for all that you have done. We also owe you an apology.
Read 11 tweets

Related threads

Profile picture
Andrew
@asallen
Many in tech are struggling with how to design & build more ethically. Here are a few simple ethics tests you can employ at any time for decisions large & small…
1. Universality Test: Would the world be a better place if everyone used X?
2. Kid Test: Would I let my kids use X? (replace "kids" with niece, younger sibling, etc where needed)
Read 7 tweets
Profile picture
Erin Gallagher
@3r1nG
Here's a few TBT from my #TranslationFail archives to help monoglots understand why it's so incredibly bad immigration officials are using machine translation tools to vet migrants' social media.
This headline *should* say "Police and shock groups evicted a sit-in of people opposing a highway project"
This sentence should say "They tried to hack Mansoor's iPhone using software called Pegasus, which is sold by the Israeli company NSO Group."

(Ahmed Mansoor was targeted with malware by his government. Here's info on his case if you're not familiar: en.wikipedia.org/wiki/Ahmed_Man…)
Read 13 tweets
Profile picture
Sophie Lewis
@aviandelights
Here's a brief summary of some of the our Australian #climate extremes research since 2013, a year that has nothing to do with any particular events, government or ideology
Australia's then record hot 2012/2013 summer was made substantially more likely because of climate change agupubs.onlinelibrary.wiley.com/doi/full/10.10…
Night time temperature increasing faster than day time temperature, a key fingerprint of climate change, though this feature is not well modelled agupubs.onlinelibrary.wiley.com/doi/full/10.10…
Read 18 tweets
Profile picture
Mike Stuchbery💀🍷
@MikeStuchbery_
Here's a reader suggestion from @_mattl - with so many people calling each other a 'quisling', what does that actually mean? Well, here's a brief overview of the man whose name has become synonymous with 'traitor'. /1
Vidkun Quisling was born in Norway in 1887. Relatively comfortable childhood, went and served in the military, got posted to the Soviet Union as a diplomat, then the Ukraine (where he met two of his wives). After the dust of WW1 settled, he went back to Norway... /2
At first he flirted with communism - just like a few other famous right-wing leaders - then increasingly found himself drawn to right-wing politics. He poured his holdings into setting up reactionary right-wing movements to fight Bolshevism. /3
Read 15 tweets
Profile picture
G. Elliott Morris📈🤷‍♂️
@gelliottmorris
#New PA cong. map increases D chance of winning the House majority by 4%. They only need a 6.8% generic ballot margin now (down from 7.7) to be favored.

Diff. will be closer to 10% in Nov when uncertainty from polls is ⬇️. Redraw is a very big deal.

One major reason the new PA map is such a big gain for Democrats is that it solidifies, not just tips, PA districts in Philly burbs. Also creates one additional vulnerable R district. (Easily seen in this map made by @JMilesColeman)
My forecasting model will have new PA map in the near future. This is not just a simple switch; it’s a coding redesign, restructuring of input, & drawing new geographic files. Takes a while (for me, a student).

In the meantime, just add 3-4% to the model: bit.ly/2018_house
Read 4 tweets
Profile picture
G. Elliott Morris📈🤷‍♂️
@gelliottmorris
New #PA Congressional map is pretty much the best one Democrats could have hoped for. At least 2 pickups in neutral environment, likely ability to win 11 in current D+6 environment. Post coming
PA redraw creates map that is almost entirely drawn from scratch. Huge shifts from 2016 plan all over the place. Dems favored to win 9 seats there in almost any national environment.
(big swings mostly from renumbering, but aggregate differences are clear)
Read 11 tweets

Trending hashtags

#InternationalWomensDay #DeepState #terrorist #QASAD #USSbriefs #Israel #SyrianAir #Gif #PCR #IslamicState #Security #worseposter #Garden #Love #Be #giraffes #Syrians #Recipient #SciOut18 #PeriodicTable #Islam #Iranian #AMPstories #cshlsymp19 #NHS
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!