Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

IDEA: Lock Trezor to work only with a particular host #32

Open
prusnak opened this issue Mar 26, 2019 · 2 comments
Open

IDEA: Lock Trezor to work only with a particular host #32

prusnak opened this issue Mar 26, 2019 · 2 comments
Labels
core Trezor Core firmware. Runs on Trezor Model T and T2B1. feature Product related issue visible for end user

Comments

@prusnak
Copy link
Member

prusnak commented Mar 26, 2019

It is possible to lock the device to communicate only with a particular host.

The implemenetation would look like this:

  • trezor bridge would collect various serial numbers (such as MAC addresses of LAN, Wifi, etc.) and compute a hash of them to create a 256-bit identifier
  • this identifier would be sent in the Initialize Messages
  • unless the identifier would be the same as the one stored in the device, the device will not respond to incoming messages
@slush0
Copy link
Contributor

slush0 commented Apr 5, 2019

I dislike using of MAC addresses, which is basically a public information. If ever, I would consider providing some "key file" to Bridge, stored somewhere in the user profile.

@prusnak
Copy link
Member Author

prusnak commented Apr 5, 2019

Another option is to use the keyfile in the bridge to encrypt the whole communication (v2 protocol) and ignore the communication with the wrong communication key.

@prusnak prusnak transferred this issue from trezor/trezor-core Apr 16, 2019
@prusnak prusnak added core Trezor Core firmware. Runs on Trezor Model T and T2B1. feature labels Apr 16, 2019
@prusnak prusnak added this to the backlog milestone Apr 16, 2019
@prusnak prusnak added core Trezor Core firmware. Runs on Trezor Model T and T2B1. and removed core Trezor Core firmware. Runs on Trezor Model T and T2B1. labels Apr 17, 2019
@ZdenekSL ZdenekSL added the W? label Oct 15, 2019
@matejcik matejcik mentioned this issue Aug 24, 2020
Closed
@tsusanka tsusanka added feature Product related issue visible for end user and removed W? labels Feb 19, 2021
@prusnak prusnak mentioned this issue Jul 9, 2021
Closed
@tsusanka tsusanka removed this from the backlog milestone Oct 6, 2021
@hynek-jina hynek-jina removed the LOW label May 6, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
core Trezor Core firmware. Runs on Trezor Model T and T2B1. feature Product related issue visible for end user
Projects
Firmware
Status: No status
Milestone
No milestone
Development

No branches or pull requests
6 participants
@prusnak @slush0 @tsusanka @hynek-jina @matejzak @ZdenekSL