Build a message signing device so that:
- The device fits into a pocket.
- The total cost is around 1000 cent.
- The hard- and software is open source.
- The device is as secure as possible.
THIS DOCUMENT DOES NOT CLAIM TO BE COMPLETE!!! THIS IS ONLY A PROOF OF CONCEPT. ONLY STORE IMPORTANT DATA ON THE DEVICE IF YOU KNOW WHAT YOU ARE DOING.
If a person wants to proof its (online) identity without revealing its true identity, modern asymmetric cryptography is essential. Messages can simply be signed with the private key whose public key is publicly associated to the person's (online) identity. For instance, the person could publish a bitcoin address on the internet, for which it owns the private key. Messages signed with the private key can then be verified by others on the internet. To create such a signed message via bitcoin core is simple and can be done quickly using bitcoin-qt. In this case, the private key is stored in the wallet.dat file. The following points are extremly important with respect to the private keys' security:
- The wallet MUST be encrypted.
- The home folder must be encrypted.
- The partition should be encrypted.
However, this does not help, if the wallet was stored in the profile of a normal and the internet browsing user, whose profile or computer might be compromised in one way or another. Solutions to this problem:
- Usage of an hardware wallet.
- Usage of a second computer in the private LAN (without internet connection!) only for handling the private keys.
If the first point applies to you, that is you already own an hardware wallet, then you can stop reading here. The second point can clearly be a waste of energy, hardware and space, especially, if the second computer does not consist of specific hardware. This is where project T-1000 comes into play:
T-1000 stands for TINTE-1000, a simple open source and raspberry pi zero based Trezor alternative, small enough to fit into a pocket. TINTE is the german word for ink and may stand for:
- TINTE Is Not (A) Trezor Emulator
- TINTE Inks Nicely Text Emission
- TINTE Initials Neatly Text Emission
- TINTE Is Not The Establishment
- TINTE Is Nearly Technical Easy
Why using a rasperry pi zero?
- It is small and has roughly the size of an usb-stick.
- It is cheap and only costs around 5$.
- It is a stand-alone computer and thus, as flexible as possible with respect to software and additional hardware.
- Energy for the device and control over the device are provided via the same usb-connection.
- Ubuntu 16.04.03 LTS as desktop OS
- Raspberry pi zero
- Micro sd card
- Usb cable
- Time
- 3D-printer (optional)
Our starting point is Ubuntu as desktop OS. There, enter the Download directory:
cd /home/<user>/Downloads
Download the current version of Raspbian:
wget https://downloads.raspberrypi.org/raspbian_latest
(Alternatively, you can also download Raspbian-lite whose file size is smaller:
wget https://downloads.raspberrypi.org/raspbian_lite_latest
Clearly, you have to adapt the commands in the following.) This will save a file with the name "raspbian_latest", which represents a zip-archive. Rename it:
mv raspbian_latest raspbian_latest.zip
Test the sha256-hash of the zip-archive:
sha256sum raspbian_latest.zip | grep -o 64c4103316efe2a85fd2814f2af16313abac7d4ad68e3d95ae6709e2e894cc1b
If grep returns the hash, everything is fine. Unzip it:
unzip raspbian_latest.zip
The current Raspbian image will be unzipped in the Downloads-directory and should look similar to:
2017-11-29-raspbian-stretch.img
Now insert the micro sd card into your computer, e.g. by means of a mirco sd card adapter. Check via gparted (sudo apt-get install gparted) which device name the sd card has:
sudo gparted
BE CAREFUL AND DO NOT MIX THE PARTITIONS, IN THE WORST CASE YOU INSTALL RASPBIAN ON YOUR MAIN PARTITION!
Close gparted. If you have identified the correct device (something like /dev/sdb or /dev/sdc), write the Raspbian image to the sd card:
sudo dd if=2017-11-29-raspbian-stretch.img of=/dev/<the_identified_device>
Then remove the sd card from the computer and insert it again. Two new file systems should automatically pop up.
cd /media/<user>/boot
Do the following:
sudo touch ssh
This creates the file "ssh" in the boot directory, which will tell Raspbian to accept ssh connections. Then edit config.txt in the same directory:
sudo nano config.txt
Add the following line at the bottom of the file:
dtoverlay=dwc2
Exit nano via Ctrl+x and press y for accepting the changes. Also edit cmdline.txt:
sudo nano cmdline.txt
Find "rootwait" in the file and add
modules-load=dwc2,g_ether
directly behind it, delimited with exactly one space, but make sure to also keep the other stuff. The result should look as follows:
... rootwait modules-load=dwc2,g_ether quiet ...
Exit nano via Ctrl+x and press y for accepting the changes. Leave the current directory:
cd /home/<user>/Downloads
Unmount the two file systems on the sd card by right clicking on the corresponding symbols on the unity bar on the left by selecting "Unmount":
Insert the sd card into the raspberry pi zero. Insert the usb-cable into the micro usb port of the pi, which is closest to the middle. The device is now ready for its first boot up.
Plug the device into an usb-port of your computer and wait around two minutes. Do a right click on the network manager (I found no working command line based way to connect to the device):
Some of the shown information will double there, but not in a reasoned way (a kind of MS-Windows behavior ...):
Since there is no configured connection to the raspberry pi zero yet, let's create one: Click on "Edit Connections..." -> "Add" -> "Ethernet" -> "Create" -> "IPv4 Settings" (you can also give the new connection a meaningful name like "t1000"). Now, there are two possible configurations under "Method" we will use:
- "Link-Local Only"
- "Shared to other computers"
If the device is not allowed to have an internet connection, then select the first possibility (you will be still able to access the device via ssh). This configuration is used later on, when the device is readily installed and configured. However, since Raspbian should be updated and additional software needs to be downloaded, we select the second possibility. Click "Save" and "Close" and Ubuntu will do the rest. The resulting network configuration should look similar to this:
In a terminal check:
ifconfig
This command should show a new ethernet device with an ip assigned. Now connect to the device via ssh:
ssh pi@raspberrypi.local
Password is "raspberry" by default.
Note, that Ubuntu seems to have problems to select the correct ethernet connection after its reboot.
That is, Ubuntu mixes up the internet connection with the newly created raspberry pi zero connection.
Therefore, delete an old raspberry pi zero connection before you shut down or shortly after you rebooted your desktop computer and before you insert the device into the the desktop computer's usb-port.
Then follow the steps of this section from the beginning, it's only seven mouse clicks.
After logging into the device, do:
sudo raspi-config
You can browse the raspi-confi menu via arrow, tab and return keys. Choose "Advanced Options" -> "Expand file system" so that the device will use all of the sd card's memory. This change will apply after reboot. Also set the "Localisation options":
- Set "Change local" to, e.g., "en_GB.UTF-8 UTF-8".
- Set "Time zone" to the time zone where you are living in.
- If you use a specific keyboard, also adapt "Change keyboard layout" correspondingly.
Finish the tool. Then reboot:
sudo shutdown -r now
After reboot increase swap since we need more memory:
sudo nano /etc/dphys-swapfile
Change the default size of 100 to the maximum number of 2048:
CONF_SWAPSIZE=2048
Save and exit nano via Ctrl+x and press y for accepting the changes. Then run:
sudo dphys-swapfile setup
sudo dphys-swapfile swapon
Reboot:
sudo shutdown -r now
And after relogin check the swap:
top
Exit top via Ctrl+c. Now update Raspbian (if there are problems with logging into the device again, see the end of section "Connect to raspberry pi zero"):
sudo apt-get update
Followed by
sudo apt-get dist-upgrade
The upgrade procedure will now take some time.
Firstly, make sure, which cpu is running the device:
cat /proc/cpuinfo
My raspberry pi zero is run by an "ARMv6-compatible processor rev 7 (v6l)" so that the bitcoin core binaries won't work. Thus, we have to compile the software by ourselves. Secondly, we need additional packages:
sudo apt-get install autoconf libevent-dev libtool libssl-dev libboost-all-dev libminiupnpc-dev git libprotobuf-dev protobuf-compiler libqrencode-dev
(If you have installed Raspbian-lite you need additional packages:
sudo apt-get install libboost-chrono-dev libboost-date-time-dev libboost-filesystem-dev libboost-program-options-dev libboost-serialization-dev libboost-system-dev libboost-thread-dev libboost-dev libminiupnpc-dev git qt4-qmake libqt4-dev build-essential qt4-linguist-tools libssl-dev
Likely, not all of the packages from above are needed or are already installed.) Thirdly, we need Berkeley-DB 4.8, so we have to compile this too:
cd /home/pi/Downloads
If there exists no Downloads-directory, then simply create one:
mkdir /home/pi/Downloads
cd /home/pi/Downloads
Now, build Berkeley-DB 4.8:
wget wget http://download.oracle.com/berkeley-db/db-4.8.30.NC.tar.gz
echo "12edc0df75bf9abd7f82f821795bcee50f42cb2e5f76a6a281b85732798364ef db-4.8.30.NC.tar.gz" | sha256sum -c
tar -xzvf db-4.8.30.NC.tar.gz
cd db-4.8.30.NC
cd build_unix
../dist/configure --enable-cxx
make
This will take some time but should finish in less than one or two hours.
sudo make install
If you do not want to install Berkley-DB system-wide see this as an alternative way of building *coin core. Now we are ready for bitcoin core:
cd /home/pi/Downloads
git clone https://github.com/bitcoin/bitcoin.git
This is a current snapshot of the bitcoin core code. You can also specify the branch for cloning via "-b":
git clone -b 0.15 https://github.com/bitcoin/bitcoin.git
Finally, build bitcoin core:
cd bitcoin
./autogen.sh
./configure CPPFLAGS="-I/usr/local/BerkeleyDB.4.8/include -O2" LDFLAGS="-L/usr/local/BerkeleyDB.4.8/lib" --enable-upnp-default --with-gui
make
Building bitcoin core on a single cpu device with 1 GHz, 512 MB ram and 2048 MB swap will take ages. But you can always stop compilation via Ctrl+c since after shutdown and reboot you can resume compilation via "make". The bitcoin directory will be copied or moved to the home of a new user, which we will create in the next section. The bitcoin binaries can then be accessed locally. We will also install ecryptfs in the next section so that this directory is safe from modification with respect to the bitcoin core binaries as well as the wallet.dat file.
Create a new user as follows:
sudo adduser t1000
You only need to provide a password, the other information can be left empty. Also add this user to the sudoers group:
sudo adduser t1000 sudo
Now install ecryptfs and lsof:
sudo apt-get install ecryptfs-utils lsof
sudo modprobe ecryptfs
To make this permanent, do:
sudo nano /etc/modules-load.d/modules.conf
Add the line
ecryptfs
Exit nano via Ctrl+x and press y for accepting the change. Now encrypt the home of user t1000 but make sure, that user t1000 is not logged in:
sudo ecryptfs-migrate-home -u t1000
Save the output of this command in some file for potential later use. Log out from the device:
exit
And log in again as user t1000 with the corresponding password:
ssh t1000@raspberrypi.local
Copy the following files:
cp /etc/skel/.bashrc /home/t1000
cp /etc/skel/.bash_logout /home/t1000
cp /etc/skel/.profile /home/t1000
Now reboot:
sudo shutdown -r now
Log in again as user t1000. To test wether sudo will work, do:
sudo visudo
Exit the program via Ctrl+c. Finally lock the pi user:
sudo usermod -L -e 1 pi
You can always unlock the pi user via:
sudo usermod -U -e 99999 pi
From now on, it won't be possible to become the user pi or to log into the device as the user pi. Copy the whole Download folder from the pi user to t1000's home folder:
cp /home/pi/Downloads /home/t1000 -Rf
Also note, that ecryptfs will further slow down the device.
Install ufw:
sudo apt-get install ufw
FIRSTLY, THE MOST IMPORTANT ABOUT THIS SECTION: If you configure ufw wrongly, and if you are not able to log into the device again, then mount the sd card on you computer directly and edit the following file:
sudo nano /media/<user>/rootfs/etc/ufw/ufw.conf
Change the line which controls ufw to:
ENABLED=no
Exit nano via Ctrl+x and press y for accepting the change. If you have access to the device, then you can also reset ufw via:
sudo ufw reset
A working configuration looks as follows:
sudo ufw default deny incoming
sudo ufw default allow outgoing
sudo ufw allow ssh
NOT WORKING YET:
sudo ufw default deny incoming
sudo ufw default deny outgoing
sudo ufw allow ssh
Let's close the bitcoin core ports, so that it has no connection to the outer world:
sudo ufw deny out 8333
sudo ufw deny out 18333
Activate ufw:
sudo ufw enable
You can deactivate ufw via:
sudo ufw disable
Let's test bitcoin-qt. Log out:
exit
And log in again:
ssh t1000@raspberrypi.local -X
Start bitcoin-qt via:
/home/t1000/Downloads/bitcoin/src/qt/bitcoin-qt
(If you installed Berkeley-DB 4.8 locally, then you must specify the corresponding library directory:
export LD_LIBRARY_PATH="$LD_LIBRARY_PATH:/home/t1000/Downloads/db-4.8/lib"
To make this permanent, add the line from above to /home/t1000/.bashrc:
nano /home/t1000/.bashrc
Exit nano via Ctrl+x and press y for accepting the change. However, this won't work, if bitcoin binaries are executed via ssh. Therefore, the export must be added to the corresponding scripts.) Select the default location for the wallet and blockchain, which is:
/home/t1000/.bitcoin
Close the GUI.
Start bitcoind:
/home/t1000/Downloads/bitcoin/src/bitcoind &
We do not want, that the following commands go into the history. Therefore the command line must be forced to ignore commands, which start with a space:
export HISTCONTROL=ignorespace
Make this permanent by adding the line from above to /home/t1000/.bashrc:
nano /home/t1000/.bashrc
Exit nano via Ctrl+x and press y for accepting the change. You can check your environment variables after reboot via:
env | grep HISTCONTROL
If you forget the space, you can always remove the passphrase from history via editing /home/t1000/.bash_history. Now encrypt your wallet:
/home/t1000/Downloads/bitcoin/src/bitcoin-cli encryptwallet "<passphrase>"
Make sure, that there is a space in front of this command! We do not want to save the wallet passphrase in the history. Restart the server:
/home/t1000/Downloads/bitcoin/src/bitcoind &
And create a new address for signing messages:
/home/t1000/Downloads/bitcoin/src/bitcoin-cli getnewaddress "" "legacy"
For instance in my case, bitcoind returned:
1FL4TwFWvhQ9kbjXMtcsupupwcRk61Y6YP
Messages signed with the private key associated to this address will now serve as proof of identity. Clearly, you can also import private keys from other wallets and use those for identity proof.
Create a bin folder in t1000's home:
mkdir /home/t1000/bin
Firstly, create the file signmessage.sh:
nano /home/t1000/bin/signmessage.sh
And fill the file with the following code:
#!/bin/bash
# The following line is only necessary, if Berkley-DB 4.8 was installed locally
#export LD_LIBRARY_PATH="/home/t1000/Downloads/db-4.8/lib"
# start bitcoind and wait five seconds
/home/t1000/Downloads/bitcoin/src/bitcoind &
sleep 5;
# unlock the wallet for one second
/home/t1000/Downloads/bitcoin/src/bitcoin-cli walletpassphrase "$1" 1;
# sign a message and wait two seconds
signature=$(/home/t1000/Downloads/bitcoin/src/bitcoin-cli signmessage "$2" "$3");
sleep 2;
# stop bitcoind
/home/t1000/Downloads/bitcoin/src/bitcoin-cli stop &> /dev/null;
# print signed message
echo "-----BEGIN BITCOIN SIGNED MESSAGE-----";
echo "$3";
echo "-----------BEGIN SIGNATURE------------";
echo "$2";
echo "$signature";
echo "------END BITCOIN SIGNED MESSAGE------";
Change the permissions of this file:
chmod 700 /home/t1000/bin/signmessage.sh
Test the script as follows:
/home/t1000/bin/signmessage.sh "<walletpassphrase>" "1FL4TwFWvhQ9kbjXMtcsupupwcRk61Y6YP" "hello world"
Again make sure, that the command begins with a space! In my case, the script returns after around thirty seconds with:
-----BEGIN BITCOIN SIGNED MESSAGE-----
hello world
-----------BEGIN SIGNATURE------------
1FL4TwFWvhQ9kbjXMtcsupupwcRk61Y6YP
ICEfpWSTZsmlqW38kZTaYuhub4jY+V9K9Dsv13LSEk5EFLWfbKr3zQtpgxL22kSEiXKQRp+Mb/rINtzFsBMXGVo=
------END BITCOIN SIGNED MESSAGE------
Secondly, create the file verifymessage.sh:
nano /home/t1000/bin/verifymessage.sh
And fill the file with the following code:
#!/bin/bash
# The following line is only necessary, if Berkley-DB 4.8 was installed locally
#export LD_LIBRARY_PATH="/home/t1000/Downloads/db-4.8/lib"
# start bitcoind and wait five seconds
/home/t1000/Downloads/bitcoin/src/bitcoind &
sleep 5;
# verify message and stop bitcoind
/home/t1000/Downloads/bitcoin/src/bitcoin-cli verifymessage "$1" "$2" "$3";
/home/t1000/Downloads/bitcoin/src/bitcoin-cli stop &> /dev/null;
Change the permissions of this file:
chmod 700 /home/t1000/bin/verifymessage.sh
You can now also verify a message as follows:
/home/t1000/bin/verifymessage.sh "1FL4TwFWvhQ9kbjXMtcsupupwcRk61Y6YP" "ICEfpWSTZsmlqW38kZTaYuhub4jY+V9K9Dsv13LSEk5EFLWfbKr3zQtpgxL22kSEiXKQRp+Mb/rINtzFsBMXGVo=" "hello world"
Which returns in my case:
true
Those two scripts are supposed to be accessed via ssh from the users desktop computer. Log out:
exit
Thirdly, create the file t1000.sh on your desktop computer, for instance:
mkdir /home/<user>/bin
nano /home/<user>/bin/t1000.sh
Fill the file with the following code:
#!/bin/bash
if [[ "$1" == "sign" ]];
then
echo -n "walletpassphrase: "
read -s walletpassphrase
echo
ssh t1000@raspberrypi.local "/home/t1000/bin/signmessage.sh '$walletpassphrase' '$2' '$3'"
fi
if [[ "$1" == "verify" ]];
then
ssh t1000@raspberrypi.local "/home/t1000/bin/verifymessage.sh '$2' '$3' '$4'"
fi
if [[ "$1" == "shutdown" ]];
then
ssh -t t1000@raspberrypi.local "sudo shutdown -h now"
fi
if [[ "$1" == "test" ]];
then
ssh -t t1000@raspberrypi.local "sudo /home/t1000/bin/testhash.sh"
fi
Change the permissions again:
chmod 700 /home/<user>/bin/t1000.sh
You can now sign messages from your desktop computer via:
/home/<user>/bin/t1000.sh "sign" "1FL4TwFWvhQ9kbjXMtcsupupwcRk61Y6YP" "hello world"
You can verify messages from your desktop computer via:
/home/<user>/bin/t1000.sh "verify" "1FL4TwFWvhQ9kbjXMtcsupupwcRk61Y6YP" "ICEfpWSTZsmlqW38kZTaYuhub4jY+V9K9Dsv13LSEk5EFLWfbKr3zQtpgxL22kSEiXKQRp+Mb/rINtzFsBMXGVo=" "hello world"
And you can cleanly shutdown the device from your desktop computer via:
/home/<user>/bin/t1000.sh "shutdown"
Note, that these commands will again take their time due to the light hardware of the raspberry pi zero combined with bitcoin core and ecryptfs.
Since the the sd card can be removed easily in general, the root partition can also be altered easily via mounting the sd card on a desktop computer. An attacker can prepare the root partition with malicious software which then monitors the device. This is possible since the installed software and libraries are fully known. Thus, the root partition must be protected or tested for such alterations, either by:
- Pragmatic solution via "seal":
- Fix sd card with glue to device so that removal must become visible.
- Lock case with glue so that opening and removal must break case.
- Encryption of the whole partition via cryptsetup (makes no sense, how to provide passphrase?).
- Method, which keeps track of altered files:
- Loop over system folders via
sudo tar -cf - /<folder> | md5sumand compare current hashes with old hashes. - Separate partition for home folder, encrypted with ecryptfs, then simple comparison of
md5sum /dev/<system_partition>with old hash saved on home folder.
- Loop over system folders via
After playing around with partitions and system directories, variant 3.ii is NO alternative anymore. There are three types of system directories (as far as I see it in the moment):
- Constant directories:
- /bin
- /boot
- /etc
- /lib
- /opt
- /root
- /sbin
- /srv
- /usr
- Variable directories:
- /dev
- /home
- /proc
- /tmp
- /var
- Other directories:
- /media
- /mnt
- /run
- /sys
Variable directories cannot be transfered to a separate partition, since this did not work with /proc. The opposite is also not working, since /etc, which contains the configuration files (e.g. /etc/fstab) needs to be accessible at boot up. The /media- and /mnt-directory are empty unless some additional partition is mounted. It is not clear yet, into which category the /run- and /sys-directory fall. Thus, only method 3.i remains. Luckily, one can lump together all constant directories as follows:
nano /home/t1000/bin/testhash.sh
Fill the file with the following code:
#!/bin/bash
# for finding altered files
#find <dir> -printf "%T@ %Tc %p\n" | sort -n
# lump all directories together, which should stay constant
# exclude /etc/fake-hwclock.data since this file is updated each boot up
current_hash=$(tar --exclude="/etc/fake-hwclock.data" -cf - /etc/* /bin /boot /lib /opt /root /sbin /srv /usr 2> /dev/null | sha256sum | cut -d " " -f 1);
saved_hash=$(cat /home/t1000/bin/sha256sum.txt);
echo "$current_hash";
echo "$saved_hash";
The file /etc/fake-hwclock.data changes each boot up and must therefore be excluded. Change permissions again:
chmod 700 /home/t1000/bin/testhash.sh
Tar keeps also track of file privileges and dates. This script must be run via sudo. After installation of the system, also compute the hash of the unaltered system and save it in file /home/t1000/bin/sha256sum.txt:
tar --exclude="/etc/fake-hwclock.data" -cf - /etc/* /bin /boot /lib /opt /root /sbin /srv /usr 2> /dev/null | sha256sum | cut -d " " -f 1 > /home/t1000/bin/sha256sum.txt
The resulting hash is saved in the encrypted home-folder and can later on be checked with /home/t1000/bin/testhash.sh against the current hash sum of the constant system directories. For this approach, it makes sense to install Raspbian-lite instead of Raspbian due to smaller size (around 350 MB vs 1.8 GB of the zip file). Computing the hash sum (one can also use sha256sum or sha512sum) takes around two minutes. We can use the already installed and unprotected hashsum-binary, since an attacker does not know, which hash is saved in the encrypted home-folder. That is, even in the case of a manipulated hashsum-binary, we should be able to detect manipulations.
Download the 3D-model for the case here. You can use the original model, but then the sd card can be removed from the device easily. An improved version can be derived using the 3D-modeling software OpenScad (sudo apt-get install openscad) as follows. Firstly, change the PiCase-Cover model and save the result in a new file:
import("/<path_to_model>/Raspberry_Pi_Zero_Keychain_Case/files/PiCase-Cover.stl", convexity=3);
translate([-36.5,-16.5,-4.75]){
cube([2.5,33,1.5]);
}
Secondly, change the PiCase model and save the result in a new file:
import("/<path_to_model>/Raspberry_Pi_Zero_Keychain_Case/files/PiCase.stl", convexity=3);
translate([-36.5,-16.5,-3.25]){
difference(){
cube([2.5,33,6.5]);
translate([1.25,11.9,3]){
cube([2,13,10]);
}
}
}
The code above will work if the downloaded 3D-model is still available and was not changed in the meantime. Print the case.
(https://www.raspberrypi.org/documentation/configuration/security.md) https://www.raspberrypi.org/forums/viewtopic.php?t=37324 https://www.digitalocean.com/community/tutorials/how-to-setup-a-firewall-with-ufw-on-an-ubuntu-and-debian-cloud-server
Using a raspberry pi zero for signing messages with bitcoin core is possible even though bitcoin core provides a much higher functionality. For a pure message signing device, lighter software solutions might be more suitable. Especially, since reimplementing the signing procedure should be not too difficult. However, bitcoin core already handles a wallet conveniently and is well tested, also with respect to the security of the private keys. Moreover, since bitcoin core IS Bitcoin, the device can be extended to a real hardware wallet even though the blockchain must then be handled somehow.
Building bitcoin core from source code on the device takes ages. In future, there will be an archive containing the whole bitcoin folder with precompiled binaries. There also will be a file containing the corresponding sha*sums, signed with the private key associated to the address:
1FL4TwFWvhQ9kbjXMtcsupupwcRk61Y6YP
The archive simply represents the state of the bitcoin-folder after the make command finishes. The binaries can then be executed locally as described in previous sections. Maybe other coins will follow.
With an encrypted wallet as well as an encrypted home-folder, the private keys should be protected against attackers when the device is switched off. However, since the sd card could be altered via removal it sould also be secured, that the device, if running, has NO connection to the internet. This can be accomplished via:
- Usage of a "Link-Local Only"-connection to the desktop computer;
- A firewall configuration that only allows ssh connections (not fully solved yet).
Finally, one should monitor alterations of files on the device. Under the assumption, that files cannot be altered from "within", i.e., only the owner is able to log into the installed Raspbian, the simplest solution is to seal the sd card. For instance, the sd card can be glued to the device so that the sd card's removal will break the glue. Moreover, if the device is added to a person's bunch of keys, the device is virtually always under control of the owner. Also system files can be monitored, but this seems only possible with a deep understanding of Raspbian's system files. This might be solved via a live system. However, building a working live system for a raspberry pi zero is nontrivial and would represent an additional project.
The case in the following images is the original design from here and NOT the one with the protected sd card. More pictures will follow. Device opened:
Device closed:
