Ledger Co-Founder Flag Security Risk In Open Source, Refutes Charles Hoskinson
Ledger co-founder Eric Larchevêque clarified that there is no “backdoor” in the latest Recover firmware update. The Ledger controversy attracted comments from notable leaders and blockchain experts from the crypto community including Cardano founder Charles Hoskinson who claimed that open-source software is always better than closed-source.
However, Ledger co-founder refutes Charles Hoskinson’s claims and red flags open source due to elevated security risks.
Ledger CEO Refutes Cardano Founder Charles Hoskinson
On Friday, Cardano founder Charles Hoskison in response to the Ledge controversy said he always choose open-source software whenever possible, saying that “security comes from simplicity.”
“People buy hardware wallets to maximize the personal security of their funds. They don’t buy them for daily use or expect an equivalent user experience to hot wallets.”
Ledger co-founder Eric Larchevêque took to Twitter on May 20 to further clarify security aspects of closed source, open source, and chain of trust in a hardware wallet. Ledger is a hardware wallet with closed-source firmware.
He claims open-source wallets come with regular hardware but less security, while close source with secure elements, allowing higher level of security. A supply chain attack can happen when plugging the hardware to flash the firmware, while “holographic seal” mitigated some risk it’s not efficient to prevent attack at manufacturer level.
Also Read: Ben and Psyop Creator Threatens With Class-Action Lawsuit
A master key from the manufacturer, implanted in the secure element at the factory level, can cryptographically prove interacting with the real chip. This cannot be used with open source as the master key would obviously be revealed during compilation.
“This means that using an open source HW, you must trust that the manufacturer will not put a backdoor in the electronics, and using a closed source HW you must trust that the manufacturer will not put a backdoor in the firmware.”
He believes security is always a matter of trade-offs and hardware wallets require that trust. Users could do critical mistakes or update hardware with rogue firmware.
Amid the Ledger Recover controversial firmware update, hardware wallet provider such as GridPlus decided to open-source its firmware. But Ledger CEO believes bad actors could gain access to these due to being open-sourced.
Also Read: Chainlink VRF Is Live On Arbitrum One, What It Means For Crypto Industry?
- Hashdex Adds Cardano to Crypto Index Fund as ADA Gains SEC Listing Eligibility
- U.S. Treasury To Ease Tax Rule on Unrealized Bitcoin Gains, Aiding Saylor’s Strategy
- Trump-Backed World Liberty (WLFI) Plans RWA Tokenization Paired with USD1 Stablecoin
- Stripe Eyes U.S. Banking Charter, Pioneers One-Click Stablecoin Issuance for Firms
- Breaking: Metaplanet Expands Treasury With 5,268 BTC Purchase, Climbs to 4th Largest Holder
- XRP Price Prediction After Ripple CTO David Schwartz Resigns
- SUI Price Eyes $4.5 as Coinbase Futures Listing Sparks Market Optimism
- Chainlink Price Holds $20 Support Amid Tokenization With DTA Standard Progress – Is $47 Next?
- Analyst Predicts Dogecoin Price Surge as DOGE ETF AUM Hits $20M
- Ethereum Price Eyes $8,600 As Institutions And Whales Double Down
- Dogecoin Price Prediction – Chart Set-Up Highlights Perfect Buying Opportunity With Outflows Backing $0.45
Why Trust CoinGape
CoinGape has covered the cryptocurrency industry since 2017, aiming to provide informative insights Read more…to our readers. Our journal analysts bring years of experience in market analysis and blockchain technology to ensure factual accuracy and balanced reporting. By following our Editorial Policy, our writers verify every source, fact-check each story, rely on reputable sources, and attribute quotes and media correctly. We also follow a rigorous Review Methodology when evaluating exchanges and tools. From emerging blockchain projects and coin launches to industry events and technical developments, we cover all facets of the digital asset space with unwavering commitment to timely, relevant information.
