Name: Ledger Wallet Nano
What it is: A USB bitcoin wallet with smartcard security in a very compact package.
Who’s behind it: Three French startups: BTChip, Chronocoin and La Maison du Bitcoin.
Cost: €29.90.
Date launched: December 2014.
Summary: The Ledger Wallet Nano is a relatively affordable bitcoin hardware wallet with a few clever tricks up its sleeve. It also looks good and the company promises to make it even better with a companion mobile app set to launch in 2015.
CoinDesk rating: 4/5
Where to buy: Direct from Ledger or Overstock.com
The basics
Security
Using the device
Pros
Cons
Competitors
Conclusion
The Ledger Wallet Nano is a new hierarchical deterministic multisig hardware wallet for bitcoin users that aims to eliminate a number of attack vectors through the use of a second security layer. This tech-heavy description does not mean much to the average consumer, though, which is why I am going to explain it in plain language, describing what makes the Ledger Wallet Nano tick. The wallet launched in early December and for more background on the project you can catch up on our launch coverage.
In terms of hardware, the Ledger Wallet Nano is a compact USB device based on a smartcard. It is roughly the size of a small flash drive, measuring 39 x 13 x 4mm (1.53 x 0.51 x 0.16in) and weighing in at just 5.9g.
The box also contains a simple manual, recovery sheet and security card in black faux leather pouch.
USB flash drive on the right included for reference
I have no major complaints about the build quality, although some rough edges are visible upon closer examination. The plastic device features an aluminium swivel cover with a brushed finish like many USB drives. In fact, the design looks eerily similar to Super Talent’s Pico-A series flash drives.
Ledger’s familiar design is where its similarities to traditional USB drives end, though. Since it does not use cheap NAND memory like the average USB drive, the Ledger should be more reliable. The manufacturer of the EEPROM memory used in the CC EAL5+ compliant smartcard offers a 30-year guarantee on data retention and 500,000 read/write cycles.
The smartcard has been an industry standard for decades and eliminates a number of security issues that may arise on devices based on multipurpose microcontrollers.
The wallet is obviously not designed as a standalone device, as it relies on the host computer to set up and execute transactions. Since the host computer is the most likely point of failure, the Ledger Wallet Nano is designed to render vulnerable or even compromised computers safe, by introducing another layer of security.
The wallet signs bitcoin transactions internally and aims to prevent man-in-the-middle (MITM) attacks by employing a security card. Without this added security layer, the wallet would be exposed to MITM attacks, as a hacker could, in theory, gain control of the computer and proceed to compromise the wallet. The security card makes such an attack less likely by providing physical two-factor authentication.
No transaction can be signed without human interaction – each transaction requires the user to visually scan the security card when prompted by the wallet app. The wallet displays the payment address and asks the user to enter codes for four random parts of the address. If the right code is not entered, a transaction cannot take place.
The Trezor hardware wallet, which we reviewed a few months ago, employs a screen to tackle this problem, prompting the user to enter the PIN on a pseudo-random numeric pad, visible only to the user. The Ledger team opted for a different approach in the form of a security card with 58 pairs of characters.
The basic idea is the same, but the implementation is a bit different. Using a card in place of a screen obviously allows for a smaller device and keeps the overall cost down.
The trade-off is that it also results in fewer possible permutations of the second-factor code. A persistent attacker with complete control over the user’s PC could in theory reconstruct the security card after a few dozen transactions. Each transaction would provide the attacker with more ‘depth’ until sufficient information is collected to fully map and reconstruct the contents of the security card.
As odd as it may sound, using the wallet on a number of different malware-ridden PCs would, in theory, be safer from an anti-MITM perspective than using it to make a few dozen transactions on your own computer.
Ledger is aware of these limitations and is working to develop a mobile companion app that will essentially allow another device to act as a screen for the wallet. The app will be paired to the wallet using the security card, allowing the wallet to display the challenge on the mobile device, along with the target address and amount of BTC. The user will then be able to sign the security challenge and facilitate the transaction. The company plans to release the companion app in January 2015.
The wallet is designed for use on desktop operating systems on Google’s Chrome browser. I used an Asus Windows 8.1 tablet with a keyboard dock as the test bed.
The installation process is relatively straightforward, but requires the use of a Google Chrome app. The user merely needs to plug in the Ledger Wallet Nano into a USB port and head over to my.ledgerwallet.com to automatically install the Chrome application, which connects to Ledger’s API server to access the blockchain.
While comparatively popular, Chrome is not the only browser on the market and millions of users still rely on Firefox, Safari and even Internet Explorer. A platform-agnostic approach would have been preferable, but for a number of reasons, including security certificates, it is simply not feasible. Linux users also need to create a set of udev rules to allow access to the device.
Once the app is ready, the user is prompted to enter the PIN. The user can choose the PIN or use one suggested by the installer. Then comes the recovery seed – when the wallet is initialised, it generates a 24-word mnemonic seed which must be stored, preferably on the included recovery sheet.
Don’t try this at home – the seed should be written down and stored safely
The seed is displayed only once and must not be stored on your computer, in digital form. The seed is the only way of restoring the wallet in case of loss or hardware failure. This can be done using a replacement Ledger wallet, but the process also works on alternative BIP39 wallets like Electrum.
The Ledger Nano must be initialised on an uncompromised computer. One way of doing this is via air gap, using a live OS like Chromium on a USB stick, and the process should not take very long, although it does involve a bit of BIOS tinkering (i.e. changing the boot sequence).
In addition to the 24-word recovery phrase, the neatly arranged recovery sheet also includes the security card recovery QR code, which can be used to create a new copy of the second-factor security card in case of loss or theft. If you punch in the wrong PIN three times in a row, the wallet will reset itself to factory condition. This is also the easiest way of wiping the device in case you want to sell or gift it.
Once the installation is complete, the user simply needs to insert the device into a USB port and enter the PIN in order to access the wallet.
However, all transactions must be validated using the security card. The wallet will issue a challenge and the user needs to follow instructions and enter the four-character code to validate the transaction. This is done by entering the corresponding characters from the security card.
The wallet itself is easy to use and anyone familiar with bitcoin wallets should feel at home. The only difference is the added layer of validation with the security card. Fortunately the whole process is simple and fast – usually taking no more than 15-20 seconds per transaction.
The wallet also features a QR scanner. Despite the fact that QR scanning has limited applications on desktop platforms, I used it to simulate topping up a mobile wallet and it worked fine. It could be quite a time saver in some situations.
Overall there is not much to say about the wallet – and this is a good thing – it’s more or less a regular bitcoin wallet with an added layer of authentication, which doesn’t take up a lot of time.
The Trezor wallet features a screen for an added level of immunity, but costs $119.
There is no such thing as absolute security, but the goal of hardware wallets is to make any potential attack more difficult and resource-intensive. Ledger is no exception – it is designed to render attacks impractical by raising the bar.
At €29.90, the Ledger Wallet Nano is good value for money, which means it will appeal to enthusiasts who want to hold bitcoin but don’t want to spend too much money on security, and this is what makes it special in my book. It’s not an expensive, specialised piece of hardware for the select few, it’s geared toward the everyday bitcoin user.
The device can fit on a keychain and the security card in practically any physical wallet, which makes the Ledger very practical. If you lose either component, you can still recover your wallet using your mnemonic seed. The upcoming companion mobile app should boost security and bring Ledger on a par with more expensive solutions.
Update 31-03-2015: The Ledger Wallet Nano is now available from Overstock.
Disclaimer: CoinDesk obtains hardware in order to test the claims of manufacturers and produce informed reviews. CoinDesk does not receive payment for these reviews.
This article should not be viewed as an endorsement of any of the companies or products mentioned. Please do your own extensive research before considering investing any funds.
Where to buy: Direct from Ledger or Overstock.com
Want CoinDesk to review your hardware product? Email us at contact@coindesk.com.