Ledger CTO | Charles Guillemet | Patrick Collins

In this interview, Patrick speaks with Charles Guillemet, the CTO of Ledger, about the security aspects of hardware wallets. Charles discusses his background in cryptography and security, and explains the importance of secure elements and certifications like EAL ratings. He emphasizes that having a secure element is not enough; how it's implemented is crucial, detailing how Ledger uses secure elements differently from competitors. The conversation covers the challenges of open-source hardware, the guarantees provided by secure elements, and the importance of code integrity. They also discuss wallet scrutiny tests, transaction clarity, and Ledger's efforts to decode call data for complex transactions, as well as the new Ledger Recover Key for secure backups.

Outlines

Sign in to continue reading, translating and more.

Continue

Ledger CTO | Charles Guillemet

Patrick Collins

Introduction to Ledger and Charles Guillemet's Background

Understanding EAL Ratings and Secure Element Usage in Hardware Wallets

The Importance of Code Integrity and Secure Elements in Hardware Security

Firmware Verification and Vulnerabilities in Open Source Hardware Wallets

Trezor's Security Implementation and the Limitations of Wallet Scrutiny

Security Recommendations for Hardware Wallet Users and Ledger's Security Track Record

Signature Clarity and Transaction Intent Verification

Ledger's Security Features, Future Integrations, and the Ledger Recover Key

Ledger CTO | Charles Guillemet

Patrick Collins

00:00Introduction to Ledger and Charles Guillemet's Background

Introduction to Ledger and Charles Guillemet's Background

05:07Understanding EAL Ratings and Secure Element Usage in Hardware Wallets

Understanding EAL Ratings and Secure Element Usage in Hardware Wallets

11:21The Importance of Code Integrity and Secure Elements in Hardware Security

The Importance of Code Integrity and Secure Elements in Hardware Security

18:48Firmware Verification and Vulnerabilities in Open Source Hardware Wallets

Firmware Verification and Vulnerabilities in Open Source Hardware Wallets

26:12Trezor's Security Implementation and the Limitations of Wallet Scrutiny

Trezor's Security Implementation and the Limitations of Wallet Scrutiny

32:48Security Recommendations for Hardware Wallet Users and Ledger's Security Track Record

Security Recommendations for Hardware Wallet Users and Ledger's Security Track Record

42:00Signature Clarity and Transaction Intent Verification

Signature Clarity and Transaction Intent Verification

52:57Ledger's Security Features, Future Integrations, and the Ledger Recover Key

Ledger's Security Features, Future Integrations, and the Ledger Recover Key