molecular

Legendary



Offline



Activity: 2730

Merit: 1016









DonatorLegendaryActivity: 2730Merit: 1016 DarkWallet + Trezor = couple of the year? April 05, 2014, 08:04:16 AM #1



Why not marry DarkWallet and Trezor?



DarkWallet:

+ stealth address support

+ coinjoin support

+ multisig

+ BIP-32

+ (hopefully) diverse backend infrastructure



- stores keys on host machine

Trezor:

+ secure key storage

+ tx signing

+ BIP-32

- (seems to me) centralized backend

? not sure about coin control features

So how about taking "the best of both worlds" and do away with DarkWallets insecure (?) key storage and the privacy issues (?) of the myTrezor wallet? It seems to me one project has what the other lacks.



Both projects are opensource and I'm sure darkwallet devs would welcome a trezor pull request if done well enough. Trezor team is looking for wide-spread wallet integration so I can't imagine they would be opposed in any way.



Should we go for it?

What are the technical hurdles to overcome?

What are potential problems?

Who's going to do it?

I just had an idea (probably not the first to have it, though):DarkWallet:Trezor:So how about taking "the best of both worlds" and do away with DarkWallets insecure (?) key storage and the privacy issues (?) of the myTrezor wallet? It seems to me one project has what the other lacks.Both projects are opensource and I'm sure darkwallet devs would welcome a trezor pull request if done well enough. Trezor team is looking for wide-spread wallet integration so I can't imagine they would be opposed in any way.Should we go for it?What are the technical hurdles to overcome?What are potential problems?Who's going to do it? PGP key molecular F9B70769 fingerprint 9CDD C0D3 20F8 279F 6BE0 3F39 FC49 2362 F9B7 0769

caedes



Offline



Activity: 44

Merit: 0







NewbieActivity: 44Merit: 0 Re: DarkWallet + Trezor = couple of the year? April 05, 2014, 03:15:01 PM

Last edit: April 05, 2014, 03:25:10 PM by caedes #10 DarkWallet dev here,



Regarding securing your keys with trezor, this comes to using the darkwallet without the private keys in your machine (or browser, depending what you consider a safe environment), or as a multisig wallet. This is going to be totally supported, but it's kind of feature we will put in place for the beta, not alpha (wait a couple weeks).



We will love to include trezor support, either by integrating someone's work or doing it ourselves, we also think the following ways to secure your wallet will be available:



* Sign from trezor or similar devices

* Sign with airgapped device (2 way scanning of qr's)

* Sign with android or desktop 2fa component (just asks to sign the tx's so you can confirm somewhere out of your browser or your machine)



We can use "no keys" approach, or "multisig" approach, we will see. Anyways I hope you get the picture of where we are going.



Ie, it's not "use trezor or your keys are doomed". We will support, even recommend and possibly enforce proper securing of the keys.



The dark wallet is designed with offline signing of transactions (and gathering any amount of extra signatures) in mind, in a way that supports read only wallets, multisigs or coinjoins with similar mechanics (still working to have all features available in the frontend but the dw wallet design supports that).



cheers!

