Currently using a ColdCard Mk4 (it's pretty awesome with it's features, durability, and reliability) with PSBT micro-SD and a ColdPower, but looking for comparable products from other companies in terms of ethos and security for a multi-sig setup.
I have some Ledgers laying around, but for a number of reasons I don't wish to use them any longer.
Ideally I'd like to use something with PSBT (device not be plugged into a computer) and has been both OS and hardware vulnerability vetted against private key extraction (comparable at least to a ColdCard).
I'd also prefer it to be a Bitcoin only device.
For software Sparrow is my go to and won't be using software or an app that comes with any hardware.
I was looking at Foundation, but don't have any deeper insight than a surface look.
Anybody have any recommendations that they've been using for awhile and hit those checkboxes?
Thanks for any feedback!
why not just build your own cold wallet? All it needs is a simple USB, practical and does not catch unnecessary attention @DarthCoin has a great guide for that.
All these tools seem really cool and overcomplicated things somehow, and maybe you might want to minimize dependence on any companies?
reply
Thanks, I'll check the guides out.
Hopefully can find some options for it outside of Rasp Pi for hardware (not exactly security purpose built hardware, nor designed to be).
If you're going Multisig, then we'd highly recommend the SeedQR route. It adds security, drastically reduces complexity and also means you don't need to buy/learn/use multiple hardware wallets.
Others have mentioned the SeedSigner which is fantastic and also avoids supply chain risks... but if you don't want to build it yourself the Blockstream Jade is great too. The Foundation Passport is gorgeous and super great quality, but more expensive than the Jade. Passport doesn't fully support SeedQR (yet) but will soon.
Basically using SeedQR means you can just use the SeedSigner / Jade as a temporary signer. If you have a 2-of-3 multisig you have have 3 QR codes and that's it. That's all you ever need to remember or protect. No PINs, no HWWs to care about. Just the QR codes (and the multisig descriptor file of course).
So a 2-of-3 setup might look like:
  • 1 x Jade (blank so can be stored anywhere)
  • 3 x SeedQR codes stored in different locations
  • 3 x Output Descriptor files stored with each of the SeedQR codes
If you want to send funds, you create your transaction then to sign it you grab your Jade, scan in a QR code, sign it, then turn it off, grab and scan the second QR code, sign it and it's good to broadcast!
If you don't want to go the SeedQR route, then our top recommendations are:
You can see all 40+ HWWs we've reviewed and rated as well as how they score (click the i button) here
Note: if you haven't already hooked everything up to your own Full Node then you should 100% be focusing on THAT first, not another HWW. We just dropped a super detailed, step-by-step guide on How To Build A Sexy Umbrel Node For $300
reply
That's all you ever need to remember or protect. Thanks for the thorough response.
This is a huge help and provides some context I was missing (such as SeedQR).
As a bonus, I've now also come across the Athena Alpha website which looks to be a really nice source of reviews and guides. Always a win when coming across more resources to help with learning.
reply
That's what we're here for 🙂
We're Bitcoin only and aim to provide top tier level education and guidance for as many people as possible, from beginners all the way up to financial planners or those wanting to deploy a 7-of-9 multisig wallet backed by their own full node running on all FOSS.
reply
I'd say if you're really going for the multisig/psbt feature, go for the passport. Using microSD cards is super cumbersome and CC's open source grifting isn't something I would support. If not, I'd suggest taking a look at the BitBox02.
You might want to look into Anti-Klepto rather than "airgapped", which fixes actual security issues compared to made up security benefits.
(Disclosure: I'm working at BitBox)
reply
I like the anti-klepto thing (which I also hadn't heard of) because it makes it very clear that this whole "trustless" issue is a matter of degree. It would be nice if people understood this better.
reply
Thanks, I'll check it out. Haven't heard of anti-klepto before, sounds like I got some reading to do.
reply
I will always say:
  • hww are for dumb people that are not comfortable with software and basic security.
  • multisig must be used only in a corporate situation, when more than 1 person is managing the compay funds. Multisig for only 1 user is overcomplicating for nothing.
  • keep it simple stupid.
And I can prove it. Please try to open this wallet:
reply
Foundation Passport ticks all your boxes. I would advice looking deeply into it, I would expect you to love it.
reply
$199 bruh, no, no no. you must stack, not waste sats. get a cheap raspberry pi and build your own SeedQR (SeedSigner).
reply
I agree but its also about opportunity cost. The time required to source parts and build is a part of the equation. There is a place for both pre-built and DIY.
reply
Buying the parts and building your self is part of the fun. But if you really really don't care about DIY, there are many stores that sell pre-built SeedSigners.
reply
Very true. Love SeedSigner.
reply
SeedSigner
Nothing else.
reply
100% the Blockstream Jade is the best bang-for-buck hww. 10% off using the aforementioned link:
  • open source
  • air-gapped
  • batter powered
  • Bitcoin only
  • super affordable
  • color screen
  • choice of color
  • small & lightweight
reply
37 sats \ 1 reply \ @xz 26 Oct 2023
Blockstream Jade can also be built using compatible HW and there are instructions on their Github repo for doing that. I guess DIY might not be everyone's choice. It can be quite rewarding to learn how to build with components.
I've not heard anything said on Trezor's new model yet.
As already mentioned by others: Seedsigner is the go-to wallet if you value security and transparency in the code. The lack of a dedicated secure element is seen as a feature, since the device is completely stateless and heavily based on the SeedQR standard to quickly import seeds, being them smple ones or part of a multi-sig setup. Then, the fact that it's air-gapped adds extra security, something that I never liked about Trezor and Ledger, for example.
Another big plus: it's extremely funny to build a Seedsigner from scratch, and it's a very nice educational activity that you can do together with friends. Great for orangepilling ;)
reply
Blockstream JADE
Another one is I heard about SATslink I don't know much about it but always DYOR
reply
I actually just entered a competition for the new X1 SafePal bluetooth wallet.
Here is the link to the tweet
not affiliated or linked anyway, just happened to see it on my timeline
reply
deleted by author
reply