Laurent Castillo

So proud of the @ledger team for making clear signing on Ethereum a reality. They built in the open, brought together stakeholders across the ecosystem, and created the 7730 standard as a public good for Ethereum.

Blind signing is not only bad UX, It is one of the biggest problems in blockchains, it has been directly or indirectly responsible for most of the most devastating hacks this ecosystem has suffered. Today, we are taking a step. The Ethereum Foundation's Trillion Dollar Security Initiative and a working group, bringing together wallets, security firms, and infrastructure providers are launching an open standard and registry for human-readable transaction signing. What we really cared about is making this forward looking: * It is built to support many standards and evolve over time. We already added the most widely used paradigms in the ecosystem and will continue to add. * We are building a knowledge base that will be used by both people and AI agents in the future to make more educated decisions when signing transactions. A clear signed transaction is better for everyone. * We are supporting confidential blockchain operations, which are the future of the blockchain ecosystem. Encrypted fields allow for clear signing on private data - for Zama and for other privacy-oriented protocols. Organizing this group of collaborators was a real mission over the past year. The Ethereum Foundation's acknowledgment, through the Trillion Dollar Security Initiative, that they are ready to address application-level problems created the opening for this kind of initiative in a way that is hard to achieve between companies alone. And every single person that was part of it was engaged in the most open and collaborative way. This is not the final goal, but a real step, taken as a community rather than as separate companies, toward solving that problem. A year from now, more meaningful wallets will support clear signing. The framework exists. We will make adoption as easy as possible. @CastilloLaurent @cyberdrk @BTChip @fredrik0x @hesterbruikman @PatrickAlphaC @lllbarteklll @kaanuzdogan @orenyomtov Jan, Manuel, Charles, Fab and many more and worked on this - so far, many more will hopefully join.

0/ Clear signing is now live. An open standard to end blind signing, making human-readable transactions default. This effort brings a major UX and Security upgrade to transaction signing on Ethereum.

QF shill : Verity let you write formally proven (in Lean) Ethereum smart contracts or easily prove invariants (or lack thereof) for existing contracts. If you always wanted to dig into formal proofs but were intimidated 🐓- you might change your mind -> qf.giveth.io/project/verity…

@blockworksDAS this week was all about security, but … "Probably secure" isn’t a strategy, it’s a liability. Software-only MPC was a bridge, but Tier-1 institutions need a Physical Root of Truth. Today, @ledger_business reclaims the hardware throne: Introducing Ledger Enterprise HSM On-Premise. ledger.com/blog-ledger-en…

All blockchain hardware wallets are worthless unless either: 1. You spend 20 minutes per transaction verifying your calldata 2. All hardware wallets adopt a transaction legibility standard "oh but my hardware wallet is EAL6+ rated with a secure element and a MCU made from minerals mined from pluto's ultra secure crust that-" - It doesn't matter. If you do not check calldata, you're essentially saying "I trust 100% that this website has not been hacked, because I trust whatever data they send to my wallet". It doesn't matter if your wallet is the most badass piece of security tech that's ever been, because you're letting hackers send whatever they want to your wallet, and you'll blindly sign! We've seen websites hacked all the time. @Compound_xyz was hacked just last week!! Reference: x.com/Compound_xyz/s… And we've seen MASSIVE losses from these hacks across both retail and enterprise use. - Bybit ($1.4B) - Radiant Capital ($50M) - WazirX ($200M) Some wallets have done a great job of getting the ball rolling on their own like @gridplus and @KeystoneWallet who both offer calldata decoding at the device level. @Ledger and @Keycard_ offer EIP-712 digests for signatures which are easier to verify than EIP-712 structs. @MetaMask snaps allow me to build my own custom AI bots and custom decoders to read calldata easier. But it's not enough. Calldata is still very annoying to read, and decoding it can be more confusing. Not enough wallets support EIP-712 digests. The good news... Is that transaction legibility is finally coming... Once we have a standard in place for human-readable transactions, it will be unacceptable to use a hardware wallet that does not have such a feature. And we can FINALLY use hardware wallets the correct way! I'M QUITE EXCITED.

Exploiting Keyspace Reduction and Relay Attacks on NFC cards. 🔓📡 Proud to see @DonjonLedger’s name on this research — thanks to @doegox. Go read it: breakmeifyoucan.com

Blind signing - we are solving it and we need you help A few people raised the problem of blind signing (again) - a couple of months ago I decided to dive deeper into it and try to solve it - collaborating with some great people. Here’s my take: 1. Clear signing != Simulation. Some people think simulation is enough - I don’t. Simulation gives outcomes, which are important, but no context. A bridge and a scam contract have mostly the same simulation outcome on source chain - you had money, now it’s gone. That’s not useful in helping a user make a decision. We need both simulation and clear signing context for a good user experience - something like “Bridge 100 USDC on Across From Ethereum to Polygon” for bridge vs “Unknown action on contract X” for scam. 2. Clear signing is worth nothing if it’s not secure and reliable. The simplest idea is adding clear signing information to the ABI and allowing each contract to set its own message - but showing the information provided by a malicious contract as if it’s reality - is not helpful, rather the opposite. This means clear signing needs more guarantees - for example, a trusted review and a process to get it to the right device. 3. There can be different approaches to clear signing, but imho ERC-7730 is the best candidate in terms of readiness and real-world usage. But, it was a bit too tailored to Ledger internal operations. We identified some issues in it and started collaborating to solve them one by one - it’s currently one of the most active ERCs in the GitHub repo. So what do we need now? * Keep improving ERC-7730 until we get to a solid and stable v2 - covering all the main signature types used today - before end of year * Finish bootstrapping a registry with all most widely used contracts - adding to the initial list on the current registry on GitHub * Decide how to manage the metadata registry and how do we maintain the effort over time (financing or other good process) - because no serious wallet will adopt a framework without a long term maintainability and an ever growing security risk of breaches as everyone loses interest in 2 weeks * Get more dapps and wallets involved in the conversation and plan to add support for mass adoption If you can contribute to any of these - tell me how and I will add you to the conversation Most important - please help me spread the word beyond my very small reach on X

Take a deep dive into the technical component of Ledger Recovery Key with our CTO @P3b7_: youtube.com/watch?v=sIayYL…

L’entrepreneuriat : dernière ligne de défense contre le déclin. La France s’enfonce. Croissance en berne, dette abyssale, bureaucratie étouffante, nivellement par le bas… Pendant qu’on débat de la répartition d’un gâteau qui rétrécit, d’autres pays construisent l’avenir. Mais tout n’est pas perdu. Il reste un moteur capable d’éviter la catastrophe : l’entrepreneuriat. 🔥 Créer son entreprise, c’est reprendre son destin en main. C’est refuser d’attendre un hypothétique sauveur étatique, refuser la médiocrité, refuser l’assistanat généralisé qui tue l’initiative. L’entrepreneuriat est le seul ascenseur social qui fonctionne encore. Pas besoin d’être "fils de", pas besoin d’avoir fait l’ENA. Si vous avez du talent, du travail et du courage, vous pouvez réussir. C’est aussi simple que ça. Mais plutôt que de célébrer ceux qui créent, innovent et prennent des risques, la France fait tout pour les décourager. ⚠️ Taxer, réguler, contrôler : la destruction programmée de la croissance. Plutôt que d’encourager l’initiative privée, on la ponctionne, on l’étrangle, on la suspecte. À chaque nouveau problème, la réponse est la même : plus d’impôts, plus de réglementations, plus de normes absurdes. 📉 L’exode des talents est une réalité. Les entrepreneurs partent. Pas parce qu’ils ne veulent pas contribuer, mais parce qu’ils refusent d’être les boucs émissaires d’un pays qui n’accepte plus la réussite. Pendant ce temps, les bureaucrates empilent les taxes et les subventions comme un enfant joue aux Legos, sans jamais se demander comment on crée réellement de la valeur. Taxer toujours plus, c’est tuer l’initiative. Contrôler toujours plus, c’est tuer l’innovation. 💡 Laissez-nous créer, laissez-nous travailler, laissez-nous réussir ! Ce n’est pas l’État qui va nous sauver. Ce sont ceux qui osent. Ceux qui se lèvent, qui prennent des risques, qui transforment une idée en entreprise, une entreprise en succès, un succès en richesse. Moins d’impôts, moins de paperasse, moins d’obstacles. Plus de liberté. C’est le seul moyen de redresser un pays qui croule sous sa propre lourdeur. La France n’a jamais eu de problème de talent. Elle a un problème de confiance envers ceux qui en ont. 🔹 Moins d’État, plus d’initiatives. 🔹 Moins de contraintes, plus de croissance. 🔹 Moins de jalousie, plus de réussite. Il est temps de choisir.

Introducing ERC-7730: A new Ethereum standard for clear signing, enhancing user security. @Ledger proudly supports this step toward safer smart contract interactions. It's designed to be a public good Learn more: github.com/ethereum/ERCs/… #Ethereum #Security

Real World Cryptography 3rd edition, thanks to our good friends at @Ledger 70 folks all in one room to discuss programmable cryptography, new polynomial commitment schemes, and zkps for open banking Bullish

J ink happiest knock ppl hhuiio ok lmnjhg is Lkokiu lipstick m ml mml kk kk kjj he fz

Did Google Create a Quantum Computer That Breaks Blockchain Security? TL;DR: No. While the research results are impressive, we're still far from breaking modern cryptography. A thread. 🧵 blog.google/technology/res…

DeFi Can’t Move Forward Without Clear Signing In the same vein as the above, Ledger CTO @P3b7_ dives into signing transactions, the dangers of blind signing, and how we must do better. Livestream @ 5:23:51 youtu.be/n8fREU3UZgA?t=… app.devcon.org/schedule/9KWRRJ

Laurent Castillo from @Ledger introduced Clear Signing Initiative (ERC-7730) which enables developers to build better UI to sign transactions. It aims to solve the problems of phishing & scams, rebuild trust in the ecosystem, support open initiatives, and improve the user experience. Docs here: developers.ledger.com/docs/clear-sig…

We’re live now talking about self-custody and the #crypto space with our VP of Technical Architecture @CastilloLaurent and our VP International Development @JfRochet. Come join us! twitter.com/i/spaces/1OdKr…

🔴 Messieurs le Président et le Ministre, candidates et candidats à l’élection présidentielle, nous vous invitons. 👇

📣We basically implemented a DApps browser within Ledger Live bridging the security🔒of Ledger ecosystem to the unicorns🦄 of DeFi! Our pilot project is the integration of paraswap in @Ledger Live. Here's how we did it. Thread 🧵[1/5] blog.ledger.com/paraswap-defi/

This just in 👇@Ledger has completed a $380 million Series C fundraising valuing the company at more than $1.5 billion. 🦄