Dark Skippy: A New Attack on Bitcoin Hardware Wallets? With Nick, Lloyd and Robin SLP597

Dark Skippy: A New Attack on Bitcoin Hardware Wallets? With Nick, Lloyd and Robin SLP597

Dark Skippy is a new attack that in theory, makes it much easier for a malicious person to steal your coins. Listen in to learn about some of the ins and outs here, as well as mitigation and the path forward for the industry from @utxoclub , @LLFOURN & @robin_linus .

  • Why air gapping is not the be all end all

  • Dark Skippy in context with other attacks

  • Security while signing transactions, and security while generating keys

  • RFC6979 Deterministic nonce generation

  • Updating PSBT to help mitigate this attack

Summary

The conversation discusses the ‘Dark Skippy’ attack, a new method for leaking secret keys from a malicious signing device. The attack takes advantage of the nonces used in the Schnorr and ECDSA signature schemes. The new attack vector can potentially extract private keys and seed words from hardware wallets. The attack targets the nonce generation process during key generation and signing. The previous versions of this attack were inefficient, but Dark Skippy improves upon them. The contributors explain how the attack came about and its implications for hardware wallet security. They also discuss the RFC6979 deterministic nonce generation and the concept of anti-klepto signing protocols as mitigations against the attack.

While Dark Skippy is a sophisticated attack, it requires a high level of expertise and is not currently seen in the wild. The discussion highlights the importance of secure boot, upgrading the Partially Signed Bitcoin Transaction (PSBT) process, and improving the randomness of upfront key generation as potential mitigations.

However, it is emphasized that current reputable hardware wallets still provide a high level of security, and there is no immediate action required for users.

Takeaways

  • Dark Skippy is a new attack that leaks secret keys from a malicious signing device.

  • The attack exploits the nonces used in the Schnorr and ECDSA signature schemes.

  • Previous versions of this attack were inefficient, but Dark Skippy improves upon them.

  • Mitigations against the attack include the RFC6979 deterministic nonce generation and anti-klepto signing protocols. Dark Skippy is a sophisticated attack that targets the nonce generation process during key generation and signing.

  • Mitigations for Dark Skippy include implementing secure boot, upgrading the PSBT process, and improving the randomness of upfront key generation.

  • Reputable hardware wallets currently provide a high level of security, and there is no immediate action required for users.

  • The discussion highlights the importance of ongoing research and development to enhance the security of hardware wallets and protect against potential future attacks.

Timestamps:

(00:00) - Intro

(00:45) - What is ‘Dark Skippy’?

(04:39) - Is it an old attack vector? Bitcoin’s security evolving with time

(12:41) - Sponsor

(15:22) - What is a nonce?, RFC6979 Deterministic nonce generation

(22:55) - Common ways of people losing their Bitcoin

(31:08) - Sponsor

(32:07) - Anti-klepto signing protocols; ways to mitigate risks of losing coins

(39:51) - Updating PSBT to help mitigate this attack

(43:26) - The role of Multisig in preventing the attack

(49:57) - Other attack vectors in malicious actor’s toolkit

(56:49) - Summarizing the steps to improve the ecosystem security

(1:00:18) - Closing thoughts

Links:

Sponsors:

Stephan Livera links:

Tämä jakso on lisätty Podme-palveluun avoimen RSS-syötteen kautta eikä se ole Podmen omaa tuotantoa. Siksi jakso saattaa sisältää mainontaa.

Jaksot(753)

Dan Gould: Payjoin DevKit Ships and Breaks Common Input Ownership | SLP753

Dan Gould: Payjoin DevKit Ships and Breaks Common Input Ownership | SLP753

Payjoin delivers transaction batching driven by real economic activity rather than waiting for pool participants, while also cutting fees through direct net settlement between counterparties.Dan Gould...

7 Heinä 18min

Fedimint in South Africa: Zero Fees & Community Custody | SLP752

Fedimint in South Africa: Zero Fees & Community Custody | SLP752

A South African circular economy is already running real payments on Fedimint with seven guardians on Start9 boxes. Users send eCash with zero fees inside the federation and feel the same simplicity a...

3 Heinä 36min

Quarterly Self-Custody Update - Q2 2026 with NVK | SLP751

Quarterly Self-Custody Update - Q2 2026 with NVK | SLP751

In this episode,  NVK rejoins me to discuss the latest developments in Bitcoin self-custody, hardware wallets, and privacy solutions, providing valuable insights for enthusiasts and practitioners alik...

30 Kesä 50min

The First Stratum V2 Block: What It Means for Bitcoin Mining | SLP750

The First Stratum V2 Block: What It Means for Bitcoin Mining | SLP750

In this episode, Alejandro De La Torre, CEO of @DMND_Sv2, joins me to discuss the mining of Bitcoin block 955,318 — the first known Stratum V2 block on mainnet.We break down what happened, the benefit...

29 Kesä 15min

Bitcoin Treasury Stocks: Sentiment or Structure? Deep Dive with Adrian Morris | SLP749

Bitcoin Treasury Stocks: Sentiment or Structure? Deep Dive with Adrian Morris | SLP749

In this episode, Adrian Morris joins the show to discuss Bitcoin Treasury Companies. We explore whether MSTR and STRC are over, sustainable mNAV premiums, the impact of leverage, the right way to calc...

29 Kesä 1h 6min

Silent Payments as the next step forward | SLP748

Silent Payments as the next step forward | SLP748

In this episode, Craig Raw returns to discuss Sparrow’s Silent Payments and Frigate integration, where multisig UX stands in 2026, his thoughts on building Bitcoin wallet software solo, and the ongoin...

26 Kesä 1h 16min

RailsX: Yield for LPs & Seamless BTC-Stable Swaps | SLP747

RailsX: Yield for LPs & Seamless BTC-Stable Swaps | SLP747

In this episode, Jesse Schrader (Jestopher), CEO of Amboss, joins us to break down RailsX — their new Lightning-native DEX.We discuss:🔸How traders and liquidity providers use RailsX🔸The costs and be...

25 Kesä 16min

The Fight to Protect Bitcoin Self-Custody in South Africa with Ricki Allardice | SLP746

The Fight to Protect Bitcoin Self-Custody in South Africa with Ricki Allardice | SLP746

In this urgent 15-minute conversation, Stephan speaks with Ricki Allardice, one of the leaders of the Property Rights Defense Group, about South Africa’s Draft Capital Flow Management Regulations 2026...

24 Kesä 15min