you could use it at a merchant with no worries

No worries for who? You or the merchant? Just go into a store tomorrow and ask them if you could plug your Trezor (or a USB stick or a keyboard or something) into their cash register to pay .

I'm not saying it can't be done, I just don't see merchants installing and securing a separate computer for Bitcoin payments (something you could safely (for them) plug any USB device in). Look at that link I've sent you, that rubbery ducky USB flash drive is actually a keyboard that instantly types a set of commands to hack your computer the moment you've inserted it into an USB port. No need for autorun, as far as your system is concerned, it's a keyboard, typing commands. Have a look, it's nice (and scary at the same time).

This isn't even advertised to MOVE private keys, they are supposed to stay. You can give a hint about your seed that way. I'm not spreading fud. Either you don't understand what this device is or you want to hack people.

Those accusing bitpop of being malicious:

He's not. He is simply informing you all with perfectly accurate information. Hardware wallets are the next step in securing our coins, but they are certainly not bulletproof and (as with anything) should still be treated with care and without negligence.

Ok well I've already bought one. I don't intend using it like that and I'm sure it's safe. I just don't think it's good to get comfortable sharing usb devices. As said earlier, you can quickly infect your computer or the merchant with a fake device.

Even if this device is bullet proof which I don't think anything can be when you have physically possession, I can quickly infect a merchant using a fake usb device and a 0 day.

It will be hacked
http://www.securitydirectornews.com/commercial-and-enterprise/researchers-hack-popular-smartcard-used-access-control

http://m.slashdot.org/story/131116
Tpm had been too and that's identical to this. But they need physical access and you're giving it to them. Without physical access, you're safe.


Buy one! I did! Just use it responsibly! The network is a condom, be safe. There's no reason to be transferring keys.

thanks for clearing that up. this is REALLY big. just plug it into the usb hub at the merchants and click ok. now people with 0 computer literacy will be able to participate in the bitcoin economy.

maybe though the merchant would have to be worried that your trezor wasn't really a trezor and was actually designed to infect their system with malware?

*edit* maybe the next step for you guys is a hardware devise for merchants which they can use to protect them selves from devises that look like trezors but are actually not.

grandma isnt going to do that. grandma might however plug it into a usb slot at the check out counter and press ok.

It would be a second computer, with a limited interface to the main/cash/online computer. This second computer does nothing than create a transaction, let the Trezor sign it, verifies the signature, and sends it to the main computer.
Sounds totally 'spy vs spy', and indeed makes sense! Could be a tablet phone/computer with USB-OTG, and a softwaresolution.
Throw NFC and a QR-receipt-printer at it for good measure.

I like!

Ente

bitpop: You are spreading FUD.

Ok, so now the merchant needs a second computer, with a secure interface to the main computer cash register, with Internet access (since it needs to see the blockchain) and software developed for both the main computer and this computer. Yup, that will work ...

Also, you keep saying that the Trezor doesn't have to trust the computer - you keep forgetting that they have an electrical connection - what if a merchant decides to apply let's say 500V on the +5V line of the USB connector. Poof goes your 1 BTC (or 3 BTC) wallet (unless it has some sort of discharge protection - does it?). The same works in reverse, what if I make a Trezor lookalike with a supercapacitor that discharges over the USB port of whatever I plug it into. Poof goes the super-secure second computer cash register.

I'd rather have it work over NFC, that's a much better idea.