On 17/11/13 01:42, Timo Hanke wrote: > p.s. The question about auditing entropy would only apply to the generator, > not the wallet. Is it yet documented how Trezor proves that external > entropy was used?
We'll probably use the most straightforward way: a) trezor prints entropy A on a display (probably in hex format, this step is triggered by sending a special flag in initialize message) b) trezor receives entropy B from external source c) trezor creates sha256(A + B) and uses that as a seed d) trezor prints used seed on a display (probably in BIP39 format) e) user can check on a trusted computer that everything was ok (note that steps b-d are the same regardless of whether the special flag was set) -- Best Regards / S pozdravom, Pavol Rusnak <st...@gk2.sk> ------------------------------------------------------------------------------ DreamFactory - Open Source REST & JSON Services for HTML5 & Native Apps OAuth, Users, Roles, SQL, NoSQL, BLOB Storage and External API Access Free app hosting. Or install the open source package on any LAMP server. Sign up and see examples for AngularJS, jQuery, Sencha Touch and Native! http://pubads.g.doubleclick.net/gampad/clk?id=63469471&iu=/4140/ostg.clktrk _______________________________________________ Bitcoin-development mailing list Bitcoin-development@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/bitcoin-development
