TREZOR wallets stored in plaintext

[schrectacular]

TREZOR wallets are stored in plaintext, with no option to encrypt. This means full public keys are exposed, along with address lists.

I would expect that a TREZOR wallet would be stored encrypted unless the TREZOR was connected. Alternatively, a separate Electrum encryption password option.

[lzsaver]

Probably the best option is to encrypt such wallets using Trezor itself. This should be an option, because it is convenient to observe the current balance and transactions without a connected device.

[schrectacular]

I believe other wallets have solved this by allowing two import options for hardware wallets:

• A watch-only wallet for observing transactions, with the option to sign them if the hardware wallet is connected.
• A "regular" wallet import which is only viewable with the device connected.

Food for thought. Your solution sounds fine as well.

[ecdsa]

it is not possible using the trezor itself; they have disabled message decryption

[ecdsa]

we could encrypt with a password, but it would be unrelated to trezor

[lzsaver]

Yes, it does not make sense.

[slush0]

it is not possible using the trezor itself; they have disabled message decryption

@ecdsa We disabled one particular scheme using elliptic curves, but message encryption is clearly possible with TREZOR. Electrum can use for example CipherKeyValue as described in SLIP 11 (https://github.com/satoshilabs/slips/blob/master/slip-0011.md). We use the same for encrypting transaction labels in our wallet (scheme described in SLIP 15).

[ecdsa]

@SomberNight see slush's comment

[SomberNight]

This should now be resolved due to #3346