Plausible deniability

[ligi]

as talked about the magicians gathering after cryptolife: It would be great to be able to specify N>=1 PINs to lead to different derivation paths to gain plausible deniability.

[bitgamma]

Will do, I am back from Prague and I am organizing all the discussed items to start working on them.

[cryptoida]

Did you decide to implement a plausible deniability option?

[bitgamma]

we are now focusing on other aspects, but in the future it will come

[cryptoida]

This functionality is indispensable and for some clients like me it would be the only reason why I would not adopt the keycard project ....I hope to be integrated soon :)

[cryptoida]

Hello,
Haven't implemented this plausible deniability option yet?
Thank you !

[guylouis]

We have not yet, indeed, since it's been on the lower priority list, especially compared to enabling payment scenarios in keycard.
However, this is interesting, could you elaborate on the use case you'd have with a keycard that implements a plausible deniability feature ?

[cryptoida]

Personally, I can't imagine a hardware wallet, without the implementation of plausible deniability.
This functionality should BE indispensable, but not only optional.
There are multiple reasons: protection against any form of constraint :oversight, government constraint, hacking, blackmail)

[willianpaixao]

Hello, @guylouis @bitgamma maybe we could try to get this done? I can help.

[bitgamma]

finally implemented card-side, will need proper wallet support.

i.e. the wallet app should not reveal the public key/address in any way before authentication and be ready that an "unexpected" public key will be used, otherwise an attacker could easily verify that the address does not match if they are using the card holder's mobile to check.

[willianpaixao]

cc @ligi @gballet for visibility.

[ligi]

Really nice - will you cut a release with this feature?

[bitgamma]

sure, we will cut a release soon