There was a PR on grin-wallet regarding some timing constraints with the ledger app. It links to GitHub - NicolasFlamel1/ledger-mimblewimble-coin which could be a useful resource. I’m not sure what the app does or doesn’t or if it even works, just another potential source of information that should not be assumed to be safe as far as I’m concerned.
Worked on further debugging. Clearing variables after work done. Researching subtle for constant time functions. Setting up Docker container (which is a new requirement for Ledger).
Worked further on my tests for grin-wallet and grin++.
I have been sick for a week. I did further work and testing on the Ledger application, among which were the tasks of adding zeroize calls and subtle constructs where needed. Researching Age encryption.
last update you’ve mentioned feeling a bit of under the weather. I’m going to take it as there is no mention: the no no news is good news approach, plus I hope your feeling near if not all the way back to full super strength. Side note- I can’t wait to run this protocol on some hardware wallets, such a cool idea and important for the peace of mind of storage. Many thanks for your work, good luck to progress and bug free code
I had some personal duties I had to attend to. So I haven’t been able to do make much progress the last two weeks. Next weeks, I can continue with new energy.
On the Ledger device side, I worked further on the encryption and decryption of data that is being transmitted. I worked further on the generating public nonces on the device. I also worked further on the workflows for the tests.