ok so this attack wasn’t the catastrophic multi-month deep supply chain compromise.
but that could still happen
if you’re releasing high assurance key management software, audit and vendor your dependencies. make builds reproducible. show users how to reproduce them
Conversation
also, if possible, use platform secure enclaves. unfortunate that apple and google still only support p256, however
2
1
23
Replying to
They also don't have secure displays and have no understanding of transactions on Bitcoin, Monero, etc. so you would only be confirming usage and wouldn't actually know what you were doing. That's a general issue with smart contract types unknown to wallets though.
1
If there's a standardized type of smart contract for a use case then a wallet can understand it and require proper confirmation, including a hardware wallet being able to support it directly. If it was built out of higher level standard building blocks it would go better.