[GUEST ACCESS MODE: Data is scrambled or limited to provide examples. Make requests using your API key to unlock full data. Check https://lunarcrush.ai/auth for authentication information.]  Ledger [@Ledger](/creator/twitter/Ledger) on x 664.9K followers Created: 2025-07-24 20:34:46 UTC Hi @NFTherder, your post conflates two very different systems: Ledger Recover (an opt-in service provided by Coincover) and Ledger Recovery Key, a local, secure backup tool. Let’s correct that. Neither recovery solution introduces a backdoor or allows for key extraction by any third party. Ledger Recovery Key is a PIN-protected card acting as a physical private backup for your Secret Recovery Phrase, designed to make wallet recovery simple, secure, and yours. - Offline and Inaccessible: The Secret Recovery Phrase stored on the Ledger Recovery Key remains Offline - Illegible without your specific PIN. It is not connected to the internet, and no third party can remotely access it. - Robust Security Features: - PIN Protection: Access to the product is protected by a user-defined PIN code (4 to X digits). Entering the wrong PIN three times will automatically wipe the device, reinforcing that only the user with the correct PIN can access it and preventing brute-force attacks by third parties. - Secure Element Chip: It features a Secure Element chip, the same advanced hardware security component used in Ledger devices. This chip is specifically designed to safeguard sensitive data and withstand physical attacks, ensuring private keys are safely insulated from hackers. - Encrypted Communication: Communication with your Ledger device occurs via encrypted NFC and a mutual authentication process. This ensures confidentiality and authenticity and means a counterfeited Recovery Key would be detected by a Ledger device. - User Verification: All interactions with the Ledger Recovery Key are initiated and confirmed via the secure screen of your Ledger device. This provides physical verification, ensuring that only you can authorize what leaves your wallet. There are no hidden processes or third-party access points. Ledger Recover is an optional digital resilience layer that serves as an encrypted digital backup for your Secret Recovery Phrase to the cloud. It does not compromise your private key security and is strictly opt-in. - Encrypted and Fragmented: When you subscribe, your Ledger device encrypts a pre-BIP39 version of your private key. This encrypted key is then split into three fragments, each stored by a separate, independent company using Hardware Security Modules (HSMs). - Useless Fragments: Each fragment is useless on its own. No single company, nor any combination of one or two, can access your key. - Strict Recovery Process: To recover your private key, two out of the three fragments must be returned and reassembled—only on your Ledger device. Your Recovery Phrase is never exposed in a usable form during this process. - Explicit User Consent and Identity Verification: Recovery requires your explicit consent. Each encrypted shard is tied to your verified identity. Recovery can only happen through Ledger Live, with identity verification. This means no third party can initiate or complete a recovery without your direct, verified actions. Both Ledger Recovery Key and Ledger Recover are designed to empower user choice and make responsibility more manageable by providing secure options for backing up your Secret Recovery Phrase, while upholding Ledger’s uncompromising security model. Ledger adheres to a Don’t Trust, Verify ethos, making components of both solutions available for verification for public audit: - Ledger Recovery Key verifiable code on GitHub: - Ledger Recovery Key Independent audit from Synacktiv: - Ledger Recovery Key White Paper: XXX engagements  **Related Topics** [ledger](/topic/ledger) [Post Link](https://x.com/Ledger/status/1948482009795379492)
[GUEST ACCESS MODE: Data is scrambled or limited to provide examples. Make requests using your API key to unlock full data. Check https://lunarcrush.ai/auth for authentication information.]
Ledger @Ledger on x 664.9K followers
Created: 2025-07-24 20:34:46 UTC
Hi @NFTherder, your post conflates two very different systems: Ledger Recover (an opt-in service provided by Coincover) and Ledger Recovery Key, a local, secure backup tool. Let’s correct that. Neither recovery solution introduces a backdoor or allows for key extraction by any third party.
Ledger Recovery Key is a PIN-protected card acting as a physical private backup for your Secret Recovery Phrase, designed to make wallet recovery simple, secure, and yours.
- Offline and Inaccessible: The Secret Recovery Phrase stored on the Ledger Recovery Key remains Offline - Illegible without your specific PIN. It is not connected to the internet, and no third party can remotely access it.
- Robust Security Features:
- PIN Protection: Access to the product is protected by a user-defined PIN code (4 to X digits). Entering the wrong PIN three times will automatically wipe the device, reinforcing that only the user with the correct PIN can access it and preventing brute-force attacks by third parties.
- Secure Element Chip: It features a Secure Element chip, the same advanced hardware security component used in Ledger devices. This chip is specifically designed to safeguard sensitive data and withstand physical attacks, ensuring private keys are safely insulated from hackers.
- Encrypted Communication: Communication with your Ledger device occurs via encrypted NFC and a mutual authentication process. This ensures confidentiality and authenticity and means a counterfeited Recovery Key would be detected by a Ledger device.
- User Verification: All interactions with the Ledger Recovery Key are initiated and confirmed via the secure screen of your Ledger device. This provides physical verification, ensuring that only you can authorize what leaves your wallet. There are no hidden processes or third-party access points.
Ledger Recover is an optional digital resilience layer that serves as an encrypted digital backup for your Secret Recovery Phrase to the cloud. It does not compromise your private key security and is strictly opt-in.
- Encrypted and Fragmented: When you subscribe, your Ledger device encrypts a pre-BIP39 version of your private key. This encrypted key is then split into three fragments, each stored by a separate, independent company using Hardware Security Modules (HSMs).
- Useless Fragments: Each fragment is useless on its own. No single company, nor any combination of one or two, can access your key.
- Strict Recovery Process: To recover your private key, two out of the three fragments must be returned and reassembled—only on your Ledger device. Your Recovery Phrase is never exposed in a usable form during this process.
- Explicit User Consent and Identity Verification: Recovery requires your explicit consent. Each encrypted shard is tied to your verified identity. Recovery can only happen through Ledger Live, with identity verification. This means no third party can initiate or complete a recovery without your direct, verified actions.
Both Ledger Recovery Key and Ledger Recover are designed to empower user choice and make responsibility more manageable by providing secure options for backing up your Secret Recovery Phrase, while upholding Ledger’s uncompromising security model. Ledger adheres to a Don’t Trust, Verify ethos, making components of both solutions available for verification for public audit:
- Ledger Recovery Key verifiable code on GitHub:
- Ledger Recovery Key Independent audit from Synacktiv:
- Ledger Recovery Key White Paper:
XXX engagements
Related Topics ledger