Donjon Follow-up on PIN verification against side-channel attack: KeepKey Hardware Wallet Under The Scope 18 May 2020 We mounted a 2-steps side-channel attack on the PIN verification function storage_isPinCorrect_impl of the KeepKey hardware wallet. If an attacker has a physical access to the device, the attack exposes the user PIN
Donjon Lit by Laser: PIN Code Recovery on Coldcard Mk2 Wallets 18 May 2020 Coldcard is a Bitcoin hardware wallet from Coinkite manufacturer. The platform runs on a standard STM32 microcontroller paired with a secure memory which provides secure storage of the seed behind authentication protection. Relying
Donjon Ledger's CTF 2018 and side-channels 10 September 2019 In this article we will showcase one use of our tool named Rainbow: breaking a ‘whiteboxed’ AES encryption using Differential Computation Analysis.
Donjon Everybody be Cool, This is a Robbery! 9 August 2019 The Ledger Donjon spends significant time and effort to assess the security of every piece of Ledger technology — along with our industry’s. During a recent security audit we uncovered vulnerabilities in a
Donjon OLED screen (minor) vulnerability 7 August 2019 On May 7, security researcher Christian Reitter contacted us through our Bounty program to inform us of a side-channel vulnerability which could potentially allow an attacker to spy on users of hardware wallets,
Donjon Funds are SSSAFU - Stealing the funds of all HTC EXODUS 1 users 16 July 2019 HTC EXODUS 1 phones come with an integrated hardware wallet. This wallet allows to backup its [master seed](https://bitcoin.org/en/glossary/hd-wallet-seed) by splitting it and sending it to "trusted contacts". Three trusted contacts are normally required
Donjon Unfixable Seed Extraction on Trezor - A practical and reliable attack 1 July 2019 An attacker with a stolen device can extract the seed from the device. It takes less than 5 minutes and the necessary materials cost around 100$. This vulnerability affects Trezor One, Trezor T,
Donjon Extracting seed from Ellipal wallet 25 June 2019 The Donjon, Ledger’s security research team, recently spent some time and resources to analyse the security of hardware wallets. Our goal is to raise the bar for security in the ecosystem.
Donjon Breaking Trezor One with Side Channel Attacks 17 June 2019 A Side Channel Attack on PIN verification allows an attacker with a stolen Trezor One to retrieve the correct value of the PIN within a few minutes.
Donjon Extracting seeds from Wallets 11 June 2019 During Breaking Bitcoin conference last weekend, I presented the research we conducted in the past months at the Donjon. We spent significant time and efforts in order to raise the bar of security
Donjon Rainbow 14 February 2019 🌈Rainbow is a Python module designed for two purposes. The first one is to help embedded developers test their implementations against basic side-channel attacks (together with our side-channel analysis tool Lascar and at
Donjon Introducing Ledger Donjon 11 December 2018 At Ledger, we believe in true security. Security is not a term that we take lightly. To build secure systems, it is necessary to use secure hardware bricks and implement a secure Operating