You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/content/threat-model/device-genuineness.md
+6-6Lines changed: 6 additions & 6 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -3,21 +3,21 @@ layout: threat-model
3
3
title: Threat Model - Genuineness
4
4
---
5
5
6
-
The ability to prove genuineness of the device is one of the main security features, from both hardware and firmware points of view. The hardware wallet must have a secure mechanism for this, and this is at the utmost importance. An attacker could otherwise have replaced a genuine device by a fake and backdoored one (through supply chain or evil maid attacks for instance). In this case, he would be able to access to the crypto assets afterwards.
6
+
The ability to prove genuineness of the device's secure element is one of the main security features, from both hardware and firmware points of view. The hardware wallet must have a secure mechanism for this, and this is at the utmost importance. An attacker could otherwise have replaced a genuine device by a fake and backdoored one (through supply chain or evil maid attacks for instance). In this case, he would be able to access to the crypto assets afterwards.
7
7
8
8
Anti-tampering seals (or holographic seals) can give a false sense of security: not only are they trivial to clone, but it is also easy to open and close a package without damaging the seal.
9
9
10
10
### Ledger Genuine Check
11
11
12
-
To prove the genuineness of Ledger signers, the following steps take place during the manufacturing (in secure environment):
13
-
- Each Ledger signer generates a unique pair of keys: a public key and a private key. The private key is kept secret to the device only and cannot be exported nor retrieved.
14
-
- The device sends its public key to Ledger’s HSM (Hardware Security Module). Our HSM signs the public key with the Ledger Root of Trust and sends it back to the device. This signed public key is the device’s attestation, which is stored inside the device.
12
+
To prove the genuineness of Ledger signers secure elements, the following steps take place during the manufacturing (in secure environment):
13
+
- Each Ledger signer secure element generates a unique pair of keys: a public key and a private key. The private key is kept secret to the device only and cannot be exported nor retrieved.
14
+
- The device sends its public key to Ledger’s HSM (Hardware Security Module). Our HSM signs the public key with the Ledger Root of Trust and sends it back to the device. This signed public key is the device’s attestation, which is stored inside the secure element.
15
15
16
-
After manufacturing, this attestation allows the user (through Ledger Wallet) to verify if the deviceis genuine. The HSM sends a challenge which must be signed by the device and sent back along the attestation. This allows the HSM to verify the attestation and the challenge signature and eventually tell whether the device is genuine or not. More details can be found in [this blogpost](https://www.ledger.com/a-closer-look-into-ledger-security-the-root-of-trust/).
16
+
After manufacturing, this attestation allows the user (through Ledger Wallet) to verify if the device's secure element is genuine. The HSM sends a challenge which must be signed by the secure element and sent back along the attestation. This allows the HSM to verify the attestation and the challenge signature and eventually tell whether the secure element is genuine or not. More details can be found in [this blogpost](https://www.ledger.com/a-closer-look-into-ledger-security-the-root-of-trust/).
17
17
18
18
### End User Physical Verification
19
19
20
20
Ledger signers are designed so users can check the integrity of their devices by themselves as detailed in [this support article](https://support.ledger.com/article/4404382029329-zd).
21
21
22
22
23
-
> **Associated Threats**: An attack allowing to extract a device is a major threat to device genuineness security mechanism. Generally speaking, any attack allowing a non genuine device to pass the genuine check is a valid attack.
23
+
> **Associated Threats**: An attack allowing to extract a device attestation is a major threat to the genuineness security mechanism. Generally speaking, any attack allowing a non genuine device to pass the genuine check is a valid attack.
0 commit comments