[1/๐งต] You've heard of @XummWallet but aren't sure if you can #trust its #security?
You'll learn about @cossacklabs' most recent security assessment and why the #XUMM #wallet strives to maintain the highest security standards.
Follow along in this "all-in-one security ๐งต" ๐
You'll learn about @cossacklabs' most recent security assessment and why the #XUMM #wallet strives to maintain the highest security standards.
Follow along in this "all-in-one security ๐งต" ๐
[2/24] โ Outline โ
๐ธ Basic Introduction
๐ธ Hot #Wallet Fundamentals
๐ธ #XUMM Wallet Security
๐ธ #Security Audit (18.05.2023)
๐ธ XUMM @Tangem Cards
๐ธ #Tangem Card Facts
๐ธ Basic Introduction
๐ธ Hot #Wallet Fundamentals
๐ธ #XUMM Wallet Security
๐ธ #Security Audit (18.05.2023)
๐ธ XUMM @Tangem Cards
๐ธ #Tangem Card Facts
[3/24] โ Basic Introduction โ
After hearing the news of #Ledger willingly integrating a ๐-extraction mechanism into their FW if opted-in, I decided it was time to review #XUMM + @Tangem
This ๐งต is not sponsored in any way, & all of my praise comes from the bottom of my โค๏ธ
After hearing the news of #Ledger willingly integrating a ๐-extraction mechanism into their FW if opted-in, I decided it was time to review #XUMM + @Tangem
This ๐งต is not sponsored in any way, & all of my praise comes from the bottom of my โค๏ธ
[4/24] โ 1โฃ Hot Wallet Fundamentals โ
โถ๏ธ #XUMM is a hot, self-custodial ("unhosted") mobile-only #cryptocurrency wallet designed exclusively for the XRPL ecosystem, allowing users to securely store their private keys, make payments, and engage with the #XRPL via #xApps.
โถ๏ธ #XUMM is a hot, self-custodial ("unhosted") mobile-only #cryptocurrency wallet designed exclusively for the XRPL ecosystem, allowing users to securely store their private keys, make payments, and engage with the #XRPL via #xApps.
[5/24] โ 2โฃ Hot Wallet Fundamentals โ
Regardless of how secure the app is, "hot" desktop & mobile apps have access to the internet & are only as secure as their weakest link.
Keep the following in mind:
๐ธ Update your smartphone
๐ธ Don't use public WiFis
๐ธ Use strong passwords
Regardless of how secure the app is, "hot" desktop & mobile apps have access to the internet & are only as secure as their weakest link.
Keep the following in mind:
๐ธ Update your smartphone
๐ธ Don't use public WiFis
๐ธ Use strong passwords
[6/24] โ #XUMM Wallet Security โ
โ How long would it take an attacker to successfully exploit the app?
๐ธ ~99 quadrillion years โ secret number
๐ธ ~228 years โ 6 digit passcode
๐ธ There is basically no pw-length restriction for the signing password โ 200+ years (16 chars)
โ How long would it take an attacker to successfully exploit the app?
๐ธ ~99 quadrillion years โ secret number
๐ธ ~228 years โ 6 digit passcode
๐ธ There is basically no pw-length restriction for the signing password โ 200+ years (16 chars)
[7/24] โ 1โฃ #Security Audit โ
@XRPLLabs had a security assessment performed by #Cossacklabs that required over 240 person-hours of work and was publicly disclosed on 18.05.2023
The main takeaway was:
โ๏ธ "No critical vulnerabilities or immediate exploits were identified"
@XRPLLabs had a security assessment performed by #Cossacklabs that required over 240 person-hours of work and was publicly disclosed on 18.05.2023
The main takeaway was:
โ๏ธ "No critical vulnerabilities or immediate exploits were identified"
[8/24] โ 2โฃ #Security Audit โ BEFORE โ
During the 1st evaluation, #Cossacklabs noticed that "only" 28 of the relevant 65 standards had been met.
Sounds worse than it is since #XUMM users were never at risk as long as their ๐ฑ were updated and their passwords were kept safe. ๐ซก
During the 1st evaluation, #Cossacklabs noticed that "only" 28 of the relevant 65 standards had been met.
Sounds worse than it is since #XUMM users were never at risk as long as their ๐ฑ were updated and their passwords were kept safe. ๐ซก
[9/24] โ 3โฃ #Security Audit โ AFTER โ
Following the implementation of the solutions, #Cossacklabs verified that 58 of the necessary 65 criteria were met, significantly reducing the number of unresolved issues.
Consider how much effort went into resolving all of that. ๐ฅ
Following the implementation of the solutions, #Cossacklabs verified that 58 of the necessary 65 criteria were met, significantly reducing the number of unresolved issues.
Consider how much effort went into resolving all of that. ๐ฅ
[10/24] โ 4โฃ #Security Audit โ
Many cryptographic flaws and weaknesses, according to #Cossacklabs, were caused by insufficient security controls that were already in place but did not meet the highest criteria.
Many cryptographic flaws and weaknesses, according to #Cossacklabs, were caused by insufficient security controls that were already in place but did not meet the highest criteria.
[11/24] โ 5โฃ #Security Audit โ
As a result, @XRPLLabs opted to re-implement the whole cryptographic layer, thereby building on existing solid foundations to combat certain sophisticated edge cases.
As a result, @XRPLLabs opted to re-implement the whole cryptographic layer, thereby building on existing solid foundations to combat certain sophisticated edge cases.
[12/24] โ 6โฃ #Security Audit โ
Key takeaways:
๐ธ Even #XUMM is not foolproof
๐ธ No secrets were ever compromised
๐ธ Security has been upgraded based on WASP MASVS v1.5
๐ธ @XRPLLabs team is capable of fixing code related security issues
๐ธ Hot wallets will inevitably be attacked
Key takeaways:
๐ธ Even #XUMM is not foolproof
๐ธ No secrets were ever compromised
๐ธ Security has been upgraded based on WASP MASVS v1.5
๐ธ @XRPLLabs team is capable of fixing code related security issues
๐ธ Hot wallets will inevitably be attacked
[13/24] โ 1โฃ XUMM Tangem โ Firmware โ
There are @Tangem cards and #XUMM branded Tangem cards that both use one firmware that has been reviewed by #Kudelskisecurity with one exception:
The XUMM-branded #Tangem cards are not designed to sync the keys ๐
There are @Tangem cards and #XUMM branded Tangem cards that both use one firmware that has been reviewed by #Kudelskisecurity with one exception:
The XUMM-branded #Tangem cards are not designed to sync the keys ๐
https://twitter.com/WietseWind/status/1659541030163578883
[14/24] โ 2โฃ XUMM Tangem โ Firmware โ
Not only can the firmware not be upgraded by design, but the #firmware can never give out your #privatekey because it is physically only feasible to communicate through #NFC while keeping the secret truly offline at all times.
Not only can the firmware not be upgraded by design, but the #firmware can never give out your #privatekey because it is physically only feasible to communicate through #NFC while keeping the secret truly offline at all times.
[15/24] โ 1โฃ XUMM Tangem โ Best Practice โ
Here are some guidelines to make your cold storage genuinely secure:
๐ธ Create a #PIN / Password on your card using #XUMM
๐ธ Purchase 2 cards and configure your "Plan B" using the "Tangem Backup" #xApp within XUMM
Here are some guidelines to make your cold storage genuinely secure:
๐ธ Create a #PIN / Password on your card using #XUMM
๐ธ Purchase 2 cards and configure your "Plan B" using the "Tangem Backup" #xApp within XUMM
[16/24] โ 2โฃ XUMM Tangem โ Best Practice โ
Additional suggestions:
๐ธ Use 4 cards (2 #XRPL accounts) to separate your hot & cold wallets
๐ธ Do not 'root' or jailbreak your phone and use your cards on it
๐ธ Less is more, so use your cold storage to save your funds in the long run
Additional suggestions:
๐ธ Use 4 cards (2 #XRPL accounts) to separate your hot & cold wallets
๐ธ Do not 'root' or jailbreak your phone and use your cards on it
๐ธ Less is more, so use your cold storage to save your funds in the long run
[17/24] โ 1โฃ XUMM Tangem โ Hardware Chip โ
The "SE" within the card, which is practically indestructible, is the #S3D350A microchip from #Samsung
Entropy is created from the chip's inherent physical noise source via thermal noise amplification ๐
The "SE" within the card, which is practically indestructible, is the #S3D350A microchip from #Samsung
Entropy is created from the chip's inherent physical noise source via thermal noise amplification ๐
https://twitter.com/Tangem/status/1346555757009899520?s=20
[18/24] โ 2โฃ XUMM Tangem โ Hardware Chip โ
Now that we know the source of genuine randomness utilized to generate the secrets, what about the #CPU? ๐ค
#Tangem employs the "#Arm #SecurCore SC000 Core," one of the most extensively licensed 32-bit smartcard processors in the world
Now that we know the source of genuine randomness utilized to generate the secrets, what about the #CPU? ๐ค
#Tangem employs the "#Arm #SecurCore SC000 Core," one of the most extensively licensed 32-bit smartcard processors in the world
[19/24] โ 3โฃ XUMM Tangem โ Hardware Chip โ
The #Tangem microchip passed the "Common Criteria #EAL6+ Assurance Level," which is required if your chips are to be used in passports.
Fun fact: #Ledger also reached that level.
The #Tangem microchip passed the "Common Criteria #EAL6+ Assurance Level," which is required if your chips are to be used in passports.
Fun fact: #Ledger also reached that level.
[20/24] โ 1โฃ Tangem Card โ Facts โ
Here are some mind-blowing #Tangem facts:
๐ธ Tangem offers a 25+ year replacement warranty
๐ธ Withstands environmental extremes
๐ธ Withstands occasional mechanical deformation
๐ธ Withstands electromagnetic pulse (#EMP)
. . .
Here are some mind-blowing #Tangem facts:
๐ธ Tangem offers a 25+ year replacement warranty
๐ธ Withstands environmental extremes
๐ธ Withstands occasional mechanical deformation
๐ธ Withstands electromagnetic pulse (#EMP)
. . .
[21/24] โ 2โฃ Tangem Card โ Facts โ
. . .
๐ธ Withstands electrostatic discharge (#ESD)
๐ธ Withstands X-rays
๐ Within limits defined in #ISO7810.
Further:
๐ธ #Tangem App, an open-source in-house development, is capable of verifying the installed firmware on the card
. . .
. . .
๐ธ Withstands electrostatic discharge (#ESD)
๐ธ Withstands X-rays
๐ Within limits defined in #ISO7810.
Further:
๐ธ #Tangem App, an open-source in-house development, is capable of verifying the installed firmware on the card
. . .
[22/24] โ 3โฃ Tangem Card โ Facts โ
. . .
๐ธ Works from -25ยฐC up to 85ยฐC
๐ธ Works even underwater ๐
๐ธ #IP68 certified
๐ธ An Access Code may be set and even adjusted to prevent it from being removed from the card after it is set.
๐ If you lose this code, you lose everything.
. . .
๐ธ Works from -25ยฐC up to 85ยฐC
๐ธ Works even underwater ๐
๐ธ #IP68 certified
๐ธ An Access Code may be set and even adjusted to prevent it from being removed from the card after it is set.
๐ If you lose this code, you lose everything.
[23/24] โ TL;DR โ
๐ธ XUMM security upgraded (MASVS v1.5)
๐ธ XUMM Tangem account backup via xApp
๐ธ Tangem cards โ simple secure offline cold wallet
๐ธ Literally indestructible
๐ธ XUMM branded cards w/o key-sync
๐ธ Cutting-edge certified hardware security
๐ธ @XRPLLabs rocks!
๐ธ XUMM security upgraded (MASVS v1.5)
๐ธ XUMM Tangem account backup via xApp
๐ธ Tangem cards โ simple secure offline cold wallet
๐ธ Literally indestructible
๐ธ XUMM branded cards w/o key-sync
๐ธ Cutting-edge certified hardware security
๐ธ @XRPLLabs rocks!
[24/24] Hopefully, this gave you a solid introduction of #XUMM and #Tangem cards in terms of security.
Rest assured, there is more to come. ๐ฅ
Please follow me here:
@krippenreiter ๐
Feel free to contribute by sharing here: ๐
Rest assured, there is more to come. ๐ฅ
Please follow me here:
@krippenreiter ๐
Feel free to contribute by sharing here: ๐
https://twitter.com/krippenreiter/status/1660152428925276161?s=20
@threadreaderapp unroll
โข โข โข
Missing some Tweet in this thread? You can try to
force a refresh
ใ
