The following mechanisms are used to protect your bitcoins using your Ledger Wallet :
- LEDGER DOESN'T KNOW YOUR PRIVATE KEYS
Ledger is a decentralized wallet. You generate the keys stored within the Ledger Wallet, during an initialization procedure. We never even get the chance to make a copy of your private keys.
- NO ONE CAN ACCESS YOUR SECRETS
Your private keys are hold in a chip, they never leave it. Whenever a payment needs to be made, the transaction is signed inside the secure element and the private keys are not even visible by the computer the Ledger Wallet is connected to.
- PERSONAL PIN CODE
Every time you connect the Ledger Wallet in the USB port of your computer, you need to enter a PIN code. Fail to enter the proper PIN code three times, and the Ledger Wallet is reset, erasing its entire contents.
- TWO VERIFICATIONS
Every time you want to authenticate a transaction, a second verification is made. With a Nano or a HW.1, you need to enter a code stored on a separate offline card, providing an additional off-line security mechanism for the Ledger. With Nano S and Blue, your manual consent is required on your device screen to sign the transaction.
During the initialization process of the Ledger Wallet, a passphrase is generated and given to you (a sequence of 24 random words).This passphrase allows you to retreive your bitcoins should your Ledger Wallet be stolen, lost, or damaged.