Skip to content
Permalink
Browse files
Link to blog
  • Loading branch information
doc-hex committed May 13, 2020
1 parent a3394a8 commit e1fb05ddc5e739ff72b51b4374aafcb1314bc4ea
Showing 1 changed file with 6 additions and 2 deletions.
@@ -288,8 +288,12 @@ Here's what the warning screen looks like:
### Limitation

- if new device is intercepted from our factory (ie. without a main pin set),
new code cannot be loaded until the PIN is set, and there is no way to clear main PIN.
- the serialized, tamper-evident bag also indicates it's been touched
new code cannot be loaded until the PIN is set, and there is no way to clear main PIN,
using the normal firmware. However, as the proud new owner of the device, you could
load custom firmware that does it.
- the serialized, tamper-evident bag may indicate it's been touched
- more discussion about supply-chain
attacks is [published here](https://blog.coinkite.com/supply-chain-trust-minimized/)

### Obvious Hack-Attack

0 comments on commit e1fb05d

Please sign in to comment.