MobileCoin looks fantastic! Seems to solve the major pain points of Bitcoin: fast transactions, low transaction fees, private and no massive environmental impact with mining. Any ETA on when this will come to the USA?
replies(2):
Storing keys in SGX and using attestation to ensure only valid nodes access them is significantly more secure than not using the SGX.
Using SGX gives a Signal user’s phone the same level of security as using a hardware wallet like Ledger Nano.
”Running MobileCoin in an SGX enclave allows nodes to securely manage keys for users. A client can perform remote attestation to its MobileCoin node before transmitting its keys into the remote enclave along with a short recovery PIN. The MobileCoin node can then rate limit authenticated access to the keys, while the enclave prevents the node operator or anyone who compromises the node from circumventing the software and attempting to brute force access to the keys directly. In this way, user keys can reside safely in a node and survive across application reinstalls or lost devices, without having to trust the node operator or the security of the node computer, and without having to memorize or safely store extremely long recovery passphrases.”
> 5. Will I need to put my keys on a remote server to scan the blockchain for incoming transactions?
> Keys will never leave your mobile device. This is a challenging problem and we are very excited to share our solution when we release our mobile SDK software.