trezor-hardware VS keystone-se-firmware

However if you want, you can open it up and then 3d-print a new case.

If you want to repair, here is the description of the hardware: https://github.com/trezor/trezor-hardware/blob/master/electronics/trezor_model_t/index.md

Trezor is completely open hardware and open software. That means you don't have to trust, you can verify. You can even build everything yourself if you wish to prevent potential supply chain attacks.

Trezor is fully open source. Software, Firmware, PCB Schematics even the plastic case design! The whole shabang. Yes, this means you can build your own trezor if you wanted to. That's the kind of hardcore security dedication that we should support.

Open hardware https://github.com/trezor/trezor-hardware

You can also build the entire Trezor hardware wallet yourself. The files for the 3d printable case is on Trezor's github, along with the schematics for the circuit boards and all of the little electrical parts needed to make it. https://github.com/trezor/trezor-hardware https://github.com/trezor/trezor-firmware

Keystone's firmware of gen2 is already open source, and gen3 I think is being released as 100% open source soon. So you can check everything, and build it yourself. Otherwise you can double-check the checksum of the downloaded binary before you put it into your Keystone.

that's because it's verifiably not true - the chip they're using isn't documented (huge red flag when mentioning using a SE) and their "source code" still contain binaries blob for critical functionalities such as https://github.com/KeystoneHQ/keystone-se-firmware/blob/bitcoin/source/driver/ecdsa_v2.lib

A: The answer is NO. To make sure there's no access of the firmware, we have made our firmware open-sourced for the whole community to examine that we didn’t have any backdoors or misconduct from ourselves. The firmwares are released by Keystone official to ensure that no malicious third party can get into your device. We also use QR code data transmission which is transparent and verifiable to prove that there’s no secrets inside the data.

We use a EAL 5+ bank-grade Secure Element. We cannot reveal the secure element to public because of the IP of the manufacturer. But to be as transparent as possible, we have open-sourced the Secure Element firmware and the datasheet (We are the first hardware wallet company who did so). If you are hoping to further verify the operations of the Secure Element, we can send you a development board under NDA. You can find more infos in this blog.

The signature nonce generation is closed-source in Keystone: https://github.com/KeystoneHQ/keystone-se-firmware/issues/8

open source firmware