This only makes me less confident, unfortunately.

semisol

npub12262qa4uhw7u8gdwlgmntqtv7aye8vdcmvszkqwgs0zchel6mz7s6cgrkj

hex

428e26533b17d91d32412949bc95c671b1601beba4d1373d51ecc58698339b65

nevent

nevent1qqsy9r3x2va30kgaxfqjjjdujhr8rvtqr046f5fh84g7e3vxnqeekegprpmhxue69uhhyetvv9ujuem4d36kwatvw5hx6mm9qgs99d9qw67th0wr5xh05de4s9k0wjvnkxudkgptq8yg83vtulad30g4sr7z6

Kind-1 (TextNote)

2026-06-10T13:36:06Z

↳ 回复 事件不存在

7a389b3935693bd914f8db14074f182eb7d31037b999ab96efe67c3c657b5b46...

This only makes me less confident, unfortunately.

“Your keys are never stored in a usable form” does not make sense, as that would mean that you can’t use them.

A PIN can be easily brute forced if you break the secure element, as it needs to know the PIN to verify it.

Tamper detection switches are not very good protection. Attacks have been done on devices with multiple layers of tamper protection with an entry less than 2mm.

The OS is “fine”, but claiming Xous’ reputation while having majorly changed it for your own usecase is weird. It’s not the same thing anymore.

My other points still stand.

I’m not going to assume malice or intentional deception, but it feels like they do not really have much experience with secure hardware.

原始 JSON

{
  "kind": 1,
  "id": "428e26533b17d91d32412949bc95c671b1601beba4d1373d51ecc58698339b65",
  "pubkey": "52b4a076bcbbbdc3a1aefa3735816cf74993b1b8db202b01c883c58be7fad8bd",
  "created_at": 1781098566,
  "tags": [
    [
      "e",
      "eb8960e092dbd142ec48d7dbd2290003d99dd9b15788237e391823dae1e8e982",
      "",
      "root"
    ],
    [
      "e",
      "7a389b3935693bd914f8db14074f182eb7d31037b999ab96efe67c3c657b5b46",
      "",
      "reply"
    ],
    [
      "p",
      "52b4a076bcbbbdc3a1aefa3735816cf74993b1b8db202b01c883c58be7fad8bd"
    ],
    [
      "p",
      "a60e79e0edad5100d7543b669e513dbc1c2170e8e9b74fdb8e971afd1e0e6813"
    ],
    [
      "p",
      "086a3b3df4a844e954e80dfb43d86a279fa51650c43c3a26cc42aa174439076d"
    ],
    [
      "p",
      "f985d309197c805e1719c73185b574fc3ee407d7c1b6157dee99c6ace2599bbb"
    ],
    [
      "client",
      "Nostur",
      "31990:9be0be0fc079548233231614e4e1efc9f28b0db398011efeecf05fe570e5dd33:1685868693432"
    ]
  ],
  "content": "This only makes me less confident, unfortunately.\n\n“Your keys are never stored in a usable form” does not make sense, as that would mean that you can’t use them.\n\nA PIN can be easily brute forced if you break the secure element, as it needs to know the PIN to verify it.\n\nTamper detection switches are not very good protection. Attacks have been done on devices with multiple layers of tamper protection with an entry less than 2mm.\n\nThe OS is “fine”, but claiming Xous’ reputation while having majorly changed it for your own usecase is weird. It’s not the same thing anymore.\n\nMy other points still stand.\n\nI’m not going to assume malice or intentional deception, but it feels like they do not really have much experience with secure hardware.",
  "sig": "2bcadd95270a61008deea75876cca6fba1827bff4ca107cad55335c7540bc4262f9431d6244006ece238d36a93126098919852352daa2d3f7974be8eaf59b3e4"
}