Discover the Blue in video
What is the Ledger Blue?
Ledger Blue is the most advanced hardware security gear on the market. It boasts multi application execution, and packs enterprise-level crypto-capabilities into a lightweight handheld device designed and crafted in France. It is architected around a Secure Element, featuring a touchscreen and USB & Bluetooth connectivity.
What crypto currencies are supported by the Blue?
Crypto currencies are regularly added to the Blue, so the list is always evolving. To add a new released coin, you need to install the app from the Ledger Manager (which manages firmware upgrade and app install/uninstall).
The current list of supported cryptos is:
How to reset the device and wipe the seed?
Enter three wrong PIN codes in a row. The device will then reset and wipe its seed. You'll have to recover your seed through your 24 words backup (or generate a new seed). If you wish to wipe your device on purpose, make sure that you either have the recovery sheet with you, or that you have moved all your crypto assets on another place.
Is Blue based on a Secure Element?
Yes. The Blue is architected around two microprocessors. One secure chip (ST31 family) and one generic MCU (STM32 family). All private key management and critical code execution is done inside the Secure Element.
Why isn't it any anti-tampering sticker on the Blue box?
Ledger is using cryptographic attestation to make sure that the devices you receive are genuine; A cryptographic procedure checks the integrity of the hardware wallet's internal software each time it is powered on. The Secure Element chip prevents any interception or physical replacement attemps.
Anti-tampering stickers are security theater: any attacker capable of reproducing a device can print new shiny stickers. Ledger's products are engineered to be natively tamper-proof and cannot be counterfeited.
What is "browser support" in the settings of crypto apps?
Browser support must be enabled if you wish to use a direct browser integration such as MyEtherWallet.com
To use your Blue with the Chrome app, Electrum or Mycelium, browser support must be disabled.
Can Blue manage Bitcoin and Ethereum?
Yes. Just select which app (Bitcoin/Ethereum) you whish to activate on the device, and launch the corresponding Chrome Wallet application on your computer.
Does Blue support both Ethereum chains (ETH/ETC)?
Yes. The Blue supports all chains, and the Ledger Wallet Ethereum Chrome application will have a switch to select on which chain you want to operate. However, be careful of replay attack and make sure to split your accounts.
ETH account derivation path is 44’/60’/0'/0
ETC account derivation path is 44’/60’/160720'/0'/0
Can Blue manage any other crypto-currency?
From a technical point of view, it's possible. However it would require to load a specific coin app on device, and therefore that this app would be developed by a third party. Ledger provides will a SDK so anyone can build an app and flash it on the Blue.
Is it possible to have multipled crypto-currencies holdings in the same time on the same Blue device?
Yes. You can have balances in BTC/ETH/DOGE/LTC/etc in the same time with your Blue. Generally speaking, you can have as much balances than it exist coins, there is no limit on what it can supports.
All crypto private keys are derived from your master seed (24 words recovery sheet) so adding new coins or using multiple coins doesn't require to change or update your backup. Recovering your seed on another Blue (or Nano S) will recover all your crypto-currencies in the same time.
What is the FIDO U2F app?
Nano S is FIDO U2F certified. This means that you can use this device as a strong authenticator (second factor) for compatible services such as Google, Dropbox or Github. Just select the U2F app on device and pair it with your service.
Are the onboarded apps Open Source? What about the firmware?
All apps are Open Source. Everything is available on our Github.
Regarding the firmware, the source code will be available for all the non secure (STM32) part and some of the secure (ST31) part. Ultimately it'll be available for most of the ST31 with a minimal binary blob implementing the chip functionalities only available under NDA. It'll also not be possible to reverse engineer this binary blob, but it'll be possible to check that it's not performing any other functions than those which are documented.
We have elaborated on our vision for Open Source development on Secure Elements on a blog post.