Bitcoin.Review Podcast with NVK & Guests BR041 - Sparrow, River, COLDCARD, Trident, 10101 + MORE ft. Craig Raw, Rob Hamilton & Alex Leishman
Jun 29, 2023
01:52:09
Verify Builds And Check Signatures
- Verify and reproducibly build firmware before trusting a hardware wallet release.
- Use project-provided build scripts and check signatures to detect tampering.
Centralized Repos Increase Supply-Chain Risk
- Centralized platforms like GitHub are single points of failure for distributing binaries.
- Attackers or state actors can target central repos to deliver malicious releases to specific demographics.
Keep Seeds In Secure Vaults And Use HSM Mode
- Use hardware wallets for multiple seeds via secure vaults rather than exposing seeds in insecure places.
- Leverage HSM modes to sign safely and record local logs for auditability.
Get the Snipd Podcast app to discover more snips from this episode
Get the app 1 chevron_right 2 chevron_right 3 chevron_right 4 chevron_right 5 chevron_right 6 chevron_right 7 chevron_right 8 chevron_right 9 chevron_right 10 chevron_right 11 chevron_right 12 chevron_right 13 chevron_right 14 chevron_right 15 chevron_right 16 chevron_right 17 chevron_right 18 chevron_right 19 chevron_right 20 chevron_right 21 chevron_right 22 chevron_right 23 chevron_right 24 chevron_right 25 chevron_right 26 chevron_right 27 chevron_right 28 chevron_right 29 chevron_right 30 chevron_right 31 chevron_right 32 chevron_right 33 chevron_right 34 chevron_right 35 chevron_right 36 chevron_right
Introduction
00:00 • 5min
The Benefits of a Binary Watch Bot for GitHub
04:58 • 3min
How to Update Your Software on a Mac
08:02 • 3min
How to Use Cold Card HSM to Sign Only Valid Page Joins
11:05 • 2min
How to Integrate With Sparrow for C Bunker
13:20 • 4min
Apple's Iron Hand on the Waldgarden
17:28 • 3min
The Future of Cryptocurrency Apps
20:12 • 2min
The Problem With the Modern Browser
22:24 • 5min
The Trade Offs of Hardware Wallets
27:21 • 2min
Code Card 5.1.3: New Features, Batch Sign, Advanced Tools, File Management
29:30 • 6min
How to Secure Your Bitcoin
35:10 • 1min
How to Leverage Bitcoin Script to Make It More Programmable Money
36:18 • 3min
How to Create a Detachable Signature in Sparrow
39:26 • 2min
How to Increase Your Fee Rates With Sparrow
41:18 • 2min
How to Use BIP 329 to Save Time and Money
43:40 • 3min
The Future of Label-Based Synchronization
46:30 • 3min
The New Version of Bitcoin Core Will No Longer Crash Bitcoin Core
49:34 • 2min
Bitcoin DevKit: The Open Source Cryptocurrency Wallet
51:27 • 2min
The Future of Bitcoin Scripts
53:30 • 5min
The Future of Cold Storage
58:54 • 3min
The Future of Bitcoin
01:01:37 • 3min
U3xO: A Lightweight Optimization for Bitcoin Clients
01:04:58 • 3min
The Future of Bitcoin
01:08:02 • 2min
How to Use Book 47 to Automate Bitcoin Withdrawals
01:10:32 • 3min
The Future of Hardware Wallets
01:13:28 • 3min
How to Be a Successful Bitcoin Broker
01:16:08 • 3min
Bitcoin Explorer and Citadel OAS
01:18:44 • 5min
eClaire 0.9.0 Dual Financing
01:23:19 • 2min
Lightning Privacy and Splicing Channel T Bus
01:25:30 • 5min
Optak News and Not Worthy
01:30:36 • 3min
Bitcoin's AI Spirit of Satoshi
01:33:20 • 2min
The Future of Cryptocurrency
01:35:24 • 5min
The Future of Cryptography
01:39:55 • 3min
The Path of Maximum Pain
01:42:49 • 3min
The Unsung Hero for the PSBT and Output Description
01:46:14 • 3min
How to Survive Bitcoin Ripps
01:49:29 • 3min
I'm joined by guests Craig Raw, Rob Hamilton & Alex Leishman to go through the list.
Housekeeping
- 00:01:53 #LearnToBuild
- 00:09:18 COLDCARD PRs
- 00:17:44 Censorship rant: Damus vs Apple
Security Updates
- 00:24:11 Firmware Extraction: Evil-Maid Attacks on Blockstream Jade Hardware Wallet
Bitcoin
• Software Releases & Project Updates
- 00:31:04 COLDCARD
- 00:41:08 Sparrow
- 01:00:26 Nunchuk iOS
- 01:00:37 Blockstream Green Desktop
- 01:01:15 Keeper
- 01:01:53 Trezor
- 01:02:09 Umbrel
- 01:04:14 StartOS
• Project Spotlight:
- 01:18:58 mnemonikey
- 01:19:44 Runcitadel
- 01:19:54 BitcoinExplorer.org
- 01:20:32 tapsim
Lightning
• Software Releases & Project Updates
- 01:20:42 Alby
- 01:21:09 Blink
- 01:21:32 cashu
- 01:22:06 Mutiny Wallet
- 01:22:58 mutiny-node
- 01:24:21 Eclair
- 01:26:05 TORQ
- 01:28:53 Voltage Surge
- 01:29:05 Boltz
- 01:29:18 Lightning Terminal
- 01:29:28 Zebedee
- 01:29:33 Stacker News
• Project Spotlight
- 01:29:46 LDK Node
- 01:29:59 Coffee Plugin Manager
- 01:30:15 cashu-rs-mint
- 01:30:21 Lightning Piggy
Nostr
• Software Releases & Project Updates
- 01:30:29 Primal One-Tap Zaps:
• Project Spotlight
- 01:30:47 Oak Node
Boosts
- 00:44:10 Shoutout to top boosters: @apemithrandir, @dubravko, @michaelmatulef
Bitcoin Optech Newsletter
- 01:32:11 [256] - Proposal to extend BOLT11 invoices to request two payments
- 01:32:27 [255] - Discussion about the taproot annex: & Draft BIP for silent payments
News & Noteworthy
• Bitcoin
- 01:32:38 Ledger Recover Cryptographic Protocol White Paper
- 01:33:01 Bitkey invites first external customers in Beta launch
- 01:33:06 Binance Pool launches the BTC Transaction Accelerator
- 01:33:11 Ministry of Nodes Bitcoin Nodebox
- 01:33:42 Bitcoin Centric-ai "Spirit Of Satoshi" Unveiled
• Lightning
- 01:34:13 Binance joins the lightning network
- 01:34:49 Lightning network is approaching ATH levels
- 01:34:58 Santander blog post highlights benefits of LN on scalability
• Misc
- 01:35:06 taproot-assets
• Finance
- 01:36:34 Crypto custody firm Prime Trust has a "shortfall in customer funds
- 01:41:51 The Bitcoin ETF Race
- 01:42:10 Hong Kong's HSBC allows customers to trade Bitcoin ETFs
• Shitcoin Wreckage
- 01:42:22 Unregistered Securities Removed from Robinhood
• Security
- 01:42:29 North Korean Hackers Pocketed More Than $100M in Atomic Wallet Hack
- 01:43:30 Malicious 'Trezor Wallet Suite' App in Apple AppStore Steals Crypto
• Funding
- 01:47:24 New Spiral grantee - Matthew Ramsden
• Mining
- 01:47:53 Riot Purchases 7.6 Eh/s Of Next Generation Miners From MicroBT, Manufactured In The United States
Reads
- 01:48:00 Deep Dive into Zero-Knowledge Proofs: A detailed exploration of zero-knowledge proofs
- 01:48:08 Ark Layer 2: A Groundbreaking Development in Bitcoin Transactional Landscape
- 01:48:13 Bitcoin as a Nonviolent Tool Against State Financial Censorship
- 01:48:27 The Grug Brained Developer
Links & Contacts
- Website: https://bitcoin.review/Podcast
- Twitter: https://twitter.com/bitcoinreviewhq
- NVK Twitter: https://twitter.com/nvk
- Telegram: https://t.me/BitcoinReviewPod
- Email: producer@coinkite.com
- Nostr & LN:⚡nvk@nvk.org (not an email!)
Full show notes: https://bitcoin.review/podcast/episode-41