Summary
Proposal to integrate hardware-anchored blockchain identity into Flipper One — enabling cryptographic attestation of device provenance, firmware integrity, and transaction signing using on-device secure storage.
Scope
- Device Identity: Unique keypair in secure storage (STM32U5 TrustZone or external SE)
- Firmware Attestation: Signed statement: "this device runs verified firmware vX.Y.Z"
- Transaction Signing: Ed25519/Secp256k1 for XRPL/Solana via user confirmation
- Identity Recovery: Shamir secret sharing (3-of-5) across trusted devices
Spec
→ https://github.com/eaglecrat/-flipper-one-proposals/blob/main/hardware/hardware-blockchain-identity.md
Questions
- Is hardware wallet functionality in scope for Flipper One?
- STM32U5 TrustZone vs. external secure element — preference?
- Core firmware feature or external application (like existing crypto apps)?
Risk
- Medium device risk — key generation must be cryptographically sound
- Propose simulator/testnet implementation first
- All signing requires explicit user confirmation (button press)
— ΩV
Summary
Proposal to integrate hardware-anchored blockchain identity into Flipper One — enabling cryptographic attestation of device provenance, firmware integrity, and transaction signing using on-device secure storage.
Scope
Spec
→ https://github.com/eaglecrat/-flipper-one-proposals/blob/main/hardware/hardware-blockchain-identity.md
Questions
Risk
— ΩV