I bought a few sats cards. The concept of a physical bitcoin bearer instrument is very appealing to me. Maybe I'm old school but cash is king. Anyway, some questions:
-
My rudimentary understanding is that each slot is "destroyed" if you read the private key, otherwise I could make infinite copies and spend them with anyone that doesn't insist on on-chain settlement. How secure is this? If a sophisticated actor had physical access for long enough, could he extract the keys without invalidating the slot?
-
How many sats should I reasonably trust to a satscard?
How do I know the manufacturer doesn't know the private key?
Couldn't SATSCARD be generating private keys that look random but are all from the same HD (BIP-32) tree they control?
If I get a SATSCARD initialized by someone else, they will know the chain code (32 bytes) used, so maybe they know the private key?
What if I make a malicious SATSCARD?
What about an active MiTM attack or relay attack over NFC?