Tomas Susanka

what do both of these scammers have in common? both offer insecure messaging apps with no encryption by default and use weak cryptography that hasn't been audited. whatsapp may suck but at least they use state-of-the-art encryption that X and telegram can only larp about.

Did you know that the Czech people were rugged of their currency's purchasing power in 1953? Their government did this to them overnight, leaving millions bankrupt. When the Velvet Revolution took place in 1989, perhaps no other sight or sound stood out more than the widespread jingling of keys. @matej_zak and @tsusanka join me from @Trezor to discuss the importance of self-custody, Bitcoin, Open-source Chip software and being able to jingle your keys! Now available Ad-Free to subscribers or to purchase on @fountain_app or Fanfares.io General release in 24 hours. fountain.fm/episode/PlG9d5…

Also, thank fuck we're talking about something interesting for once. I'll take the quantum debate over spam every block of the ledger.

Trying the new @Trezor Safe 7 with @tsusanka @matej_zak (Bitcoin Takeover Podcast S16 E57) x.com/i/broadcasts/1…

@bell2366 @Trezor @grok If an attacker would have a quantum computer they could send a fake bootloader to our device. With this feature they can't even if they have one

@Trezor @grok How is "can receive quantum-secure updates" different from "can receive updates"?

Exchanges fail. Self-custody doesn’t. Trezor Safe 7 gives you total control with a transparent, auditable Secure Element chip, quantum-ready architecture and wireless freedom. Step into the future of self-custody with our most advanced hardware wallet ever.

There are some great questions about what exactly we’re doing on Safe 7 with respect to quantum security. Bitcoin and other crypto projects are not yet ready for quantum computers. That’s fine - we still have time - but I’m glad this is a discussion we’re slowly starting to have. If Bitcoin and other cryptocurrencies aren’t quantum-safe, it doesn’t really make sense to build a quantum-safe hardware wallet, right? Attackers would target the blockchains directly rather than your wallet. We’ve been thinking about what we can do already, and for Safe 7 we’ve introduced two modifications: 1. The bootloader is now signed with SLH-DSA (a post-quantum algorithm standardized in 2024) alongside a traditional ECDSA signature. 2. The device includes a certificate proving its authenticity, signed with ML-DSA, again alongside traditional signature schemes (ECDSA and Ed25519). The first signature (1) is verified every time you power up your Safe 7 - you can think of this as a quantum-safe boot process. No other hardware wallet has this as of now. The latter (2) is not yet implemented in Suite, but will be in the following months. You can find more technical details here: trezor.io/guides/trezor-…

Yes, that's the idea. We did some benchmarks and it should be possible (note that these benchmarks were done on older model, Safe 7 should have better results). It depends on the security parameters and UX might be impacted - read: it could take longer on the device, especially if you'd sign more messages/UTXOs. github.com/trezor/trezor-…

@tsusanka @JosefTetek @Trezor I really like the hybrid approach! If a chain integrated ML-DSA, would it be possible to sign such transactions directly on a Trezor?

These are the Quantum-ready algorithms in the new TS7.

@IanSmith_HSA @JosefTetek You can also find some benchmarks here but note that these were done on an older model github.com/trezor/trezor-… github.com/trezor/trezor-…

@JosefTetek How did you get ML-DSA on to a chip that doesn't support it, doesn't have enough space for it, and doesn't contain the architecture required? The secure chip doesn't support ML-DSA and they signed the root PKI with secp521r1. github.com/tropicsquare/t…

@IanSmith_HSA @JosefTetek This part is indeed not done on the secure element (because it doesn't support it as you say, hopefully in future revisions :)) but on the generic MCU (STM32U5). See more at trezor.io/guides/trezor-…

@PospisilAdam @JosefTetek @Trezor We use two: 1. SLH-DSA for the bootloader signing 2. ML-DSA for certificate signature proving the device authenticity The latter is not yet implemented in Suite, we have time for that. See more at trezor.io/guides/trezor-…

@JosefTetek Is it the only one so far? Will it also be compatible with SLH-DSA/FN-DSA? @Trezor @tsusanka

Securing Bitcoin: From Personal Sovereignty to Institutional Defense — Panel Moderated by @lukedewolf with @tsusanka @P3b7_ and @douglasbakkum ▶️ youtu.be/Q_BrteB6maE

EUROPEAN BITCOINERS ON STAGE Dominik Roček, Tomáš Susanka, Michal Hanych, Lars Näther & Štěpán Kovář are joining the BTC Prague 2025 speaker lineup. Meet them at Europe’s biggest Bitcoin conference! @dominik_rocek @tsusanka @wantclue @kovar_stepan

@deanmlittle @toly @KeystoneWallet What problems did you have?

@toly @KeystoneWallet plz convince me. i tried to hack winternitz into a custom firmware for my trezor and it was just awful.

all the hardware wallet maxis are literally wrong and always have been change my mind

@tmrcz @Trezor @securitytxt Security.txt added ;) trezor.io/.well-known/se…

@Trezor since you don't seem to have a @securitytxt, what's the best way to contact your security team?

TROPIC01 samples are available now! We’ve done the development and rigorous testing is in progress. We want you to be part of it. Test our chip in your real world conditions. Calling on all: 🔲Companies building next generation secure devices 🔲Security-focused design houses 🔲Security & encryption engineers 🔲Penetration testers and white hat hackers 🔲Security researchers 🔲Open-source security advocates See for yourself how an open and auditable secure element safeguards your hardware system: #TROPIC01 #SecuritybyTransparency #OpenSourceHardware

@Ziya_Sadr @lopp @NYDIG I think the point is that it takes longer (18,000 years). So while you need less qubits for SHA-256 than for ECDSA it takes way longer (18,000 years vs 10.5 hours for ECDSA). At least that's how I read it

@lopp @NYDIG I think they made a mistake in these calculations Sha256 is supposed to be more quantum resistant but the improvement required to break it is significantly less.. sth doesn't feel right 🤔

From @NYDIG: a great overview of the quantum computing issues faced by Bitcoin. viewemail.nydig.com/quantum-leap

@meCal3b Reported & suspended, thanks.

@Trezor I apparently have your CTO contacting me via DM asking me about my Trezor. My spider senses are telling me this a phishing account. Please confirm.

Verifying my account on nostr My Public Key: "npub1aeqje9z0r3x7pylp78elv5sg6zflgek8scxnk5l065n87tzvpvqqyj5xpr" Find others at nostr.directory @nostrdirectory #nostr

@slushcz Ad ukrajina: audioteka.com/cz/audiobook/v… od @NBalkonu. Ale je to krátké, na první benzinku :)

Poslední dobou mě chytlo AI, ale je kolem toho hromada literatury, která působí jako bullshit 🤷 a chybí mi vodítko, co vybrat. Nebránil bych se ani něčemu historickému nebo vojenskému, co mi dá kontext k Ukrajině. Jsem jedno ucho na vaše tipy! 🤓

Čeká mě 25+ hod. řízení. Jakou doporučujete audioknihu nebo podcast? Ideálně nic kolem bitcoinu, ekonomie a politiky; toho mám za poslední roky dost 😃.