CryptoSlate spoke with Ledger’s CTO, Charles Guillemet, at BTC Prague to discuss various topics, including the Ledger ConnectKit exploit and the complexities of securing a significant portion of the world’s digital assets. Guillemet’s extensive background in cryptography and hardware security has equipped him well for his role at Ledger. His career began with designing secure integrated circuits, which informed his approach to creating secure elements for Ledger devices.
Security Challenges in Blockchain and Bitcoin
During the interview, Guillemet explored the unique security challenges of blockchain and Bitcoin technology. His expertise in secure integrated circuits and cryptography shaped his insights. In traditional banking cards and passports, security keys are managed by the bank or the state, but in blockchain technology, individuals manage their own keys. This shift introduces significant security challenges, as users must protect their assets from unauthorized access and loss. Guillemet highlighted:
“In ledger devices, you are managing your keys while in your banking cards and your passport, this is your bank’s or state’s secret. This is the big difference.”
Since users own their assets, it is crucial to secure them from both software malware and physical attacks. He noted:
“Having a dedicated device is the best way to do that. And also you must prevent an attacker with physical access from getting access to your secrets.”
Blockchain’s immutability adds to the security challenge. Ledger technology secures over 20 percent of the market cap, roughly $500 billion, by leveraging the best available technology to ensure security. Guillemet confidently stated that their approach has been successful, allowing him to rest easy despite the high stakes.
Ledger’s Response to Security Breaches and Supply Chain Security
Guillemet discussed Ledger’s handling of security breaches, particularly the Ledger ConnectKit incident. He detailed the challenge of supply chain attacks on software and the difficulty in preventing them entirely. In the breach, a developer’s account was compromised via a phishing link, allowing the attacker to obtain the API key and inject malicious code into the NPM repository used by websites integrating Ledger devices. Guillemet emphasized Ledger’s quick response:
“We noticed the attack very quickly and we were able to kill it very, very quickly. From the time where he compromised the access and we stopped the attack, only five hours passed.”
Despite the breach, damage was limited due to Ledger’s prompt action and the security features of their devices, which require users to manually sign transactions. Guillemet also discussed the broader issue of supply chain security, highlighting the complexity of managing software vulnerabilities. He cited an example of a sophisticated supply chain attack involving a backdoored package on UNIX distribution, illustrating the pervasive nature of such attacks. Guillemet advocated for hardware wallets for crypto security, as they offer a limited attack surface and can be thoroughly audited.
Human and Technical Threats to Security
Guillemet provided a detailed overview of security threats in the blockchain space, encompassing both human and technical elements. Attackers constantly evolve their strategies based on the cost and potential reward. Initially, simple phishing attacks were common, but as users became more aware, attackers shifted to more sophisticated methods. He explained:
“Now attackers are tricking users into signing complex transactions that they don’t understand, which leads to their wallets being drained.”
He noted the rise of organized crypto-draining operations, where different parties collaborate to exploit vulnerabilities and share proceeds at the smart contract level. Future attacks may focus on software wallets on phones, exploiting zero-day vulnerabilities for full device access. Guillemet stressed that mobile and desktop devices are not secure by default and advised against storing sensitive information on them:
“If you think that your data is secured on your desktop or laptop, think again. If there is an attacker determined to extract the data, nothing will prevent them from doing so.”
Balancing Security with Usability
Balancing security with usability is a significant challenge in the crypto wallet industry. Ledger prioritizes security while striving to improve user experience. Features like Ledger Recover aim to simplify the user experience, especially for newcomers managing their 24-word recovery phrases, but are entirely optional:
“We are providing options, giving the choice. It’s an open platform. If you don’t like a feature, you don’t have to use it.”
Ledger aims to strike a balance between security and usability, catering to a broad range of users and promoting the mass adoption of digital assets by addressing usability issues without compromising security.
The post Ledger points to zero-day phone exploits as evolving risk for crypto security appeared first on CryptoSlate.
