Anti-Exfiltration
Security● Common
A signing protocol preventing hardware wallets from leaking private key data through biased signature nonces. Host and device jointly contribute randomness, ensuring neither can unilaterally control the nonce.
Technical Notes
Host provides random commitment before device. Device generates nonce incorporating host randomness. Device proves nonce derivation without revealing private key. Prevents: kleptographic attacks, compromised RNG exfiltration. Implemented in Passport.
Metadata
Visibility: Public
Created:1/3/2026by System