BITCOIN

Pollock proposes vaults with time delays as the wrench attack antidote

Thursday, May 14, 2026 · from 3 podcasts

3 SOURCESBitcoin Optech What Bitcoin Did TFTC

Seed phrases are DIY security failures that collapse under kidnapping threats.
New vault designs use biometrics and time delays to outlast attacker patience.
KYC exchanges become safe harbors when physical coercion moves the fight.

Jonathan Pollock, interviewed on What Bitcoin Did, sees seed phrases as an 'instant compromise' vector. Paper backups shift the battle to physical security - the exact place attackers win. His solution, BitKey's vault system, uses 2-of-2 multisig, biometrics, and a configurable time delay. Pollock cites a statistic from James Lopp: extending an attack beyond one week reduces incidents to 1% of documented cases. The goal is to make kidnapping Bitcoiners pointless.

"Industry solutions should protect Bitcoin even when an attacker knows your setup and you are fully compliant."
- Jonathan Pollock, What Bitcoin Did

Pollock criticizes duress pins and decoy wallets as flawed because they rely on deception, not math. The attacker's frustration escalates. The paradox, he argues, is that a KYC-verified custodial exchange might be the safest final destination for stolen keys. Institutions can't be coerced in a living room; they move the fight to identity verification, which kidnappers can't win.

This push for 'seedless' designs aligns with a broader shift toward biometric access, but TFTC host Marty Bent warns biometrics are a permanent liability. If a database leaks, your face is compromised forever. Gerald Glickman argues decentralized identifiers using local private keys, like Bitcoin wallets, are the alternative. The technical debt for collaborative custody is also being cleared. Bitcoin Core merged PSBT v2 to enable cleaner multisig setups, and Bitcoin Optech highlights Thomas V's proposal for trustless Lightning channels using blockchain fraud proofs and burned stake.

"Biometrics cannot be rotated if compromised, making them a permanent and unrecoverable liability."
- Gerald Glickman, TFTC

Pollock's conclusion frames Bitcoin's evolution. The choice isn't between complexity and safety, but between technical risk and political risk. ETFs offer permissioned price exposure, but Pollock believes the tools are now good enough that taking the risk on yourself is rational.

BTC Markets Custody Privacy

Marty Bent Bitcoin Bitcoin Core Bitkey Partially signed bitcoin transactions

Source Intelligence

- Deep dive into what was said in the episodes

Bitcoin Optech

Bitcoin Optech: Newsletter #404 Recap • May 13

Daniela explains that Bitcoin node fingerprinting exploits correlation: dual-homed nodes share addresses between networks, and timestamps strengthen this link.
Naoma outlines five proposed timestamp fuzzing solutions. Adding noise breaks correlation but risks making old addresses look fresh, which floods the network.
Daniela prefers a hybrid solution: send real timestamps for requests on matching networks, but fuzz timestamps for requests on different networks.
Thomas V argues JIT channels create centralization. Phoenix wallet only works with ACINQ because the non-trustless model forces users to trust a single provider.
Thomas V adds that LSPs must sacrifice bitcoin to enter the reputation system. A fraud proof burns this stake, creating economic skin-in-the-game.

Also from this episode: (13)

Protocol (10)

Thomas V's fraud proof scheme requires LSPs to commit UTXOs, clients to publish preimages on-chain before a deadline, and a Nostr network for clients to share commitment data.
Gustavo notes Bitcoin Core PR #33796 adds BTCK_check_transaction endpoint. It runs context-free consensus checks on transaction structure.
Gustavo explains PSBT v2 (BIP370) is now default in Bitcoin Core. It allows modular transaction construction, supporting adding inputs/outputs mid-process.
BIP451 defines a DUST UTXO disposal protocol. It uses SIGHASH_ALL|ANYONECANPAY, letting anyone batch dust inputs into a single zero-value OP_RETURN output.
Murch notes the protocol's OP_RETURN includes 'ASH'. A legacy input creates a ~65 byte transaction, while a SegWit input creates a transaction of exactly that size.
Eclair PR #3144 updates simple taproot channels to use the official feature bit, aligning with LND's production implementation from Newsletter #401.
Eclair PR #2887 adopts the official splicing protocol from Bolt specs. It maintains backward compatibility but upgrades wire messages, keysend, and RBF handling.
LDK now checks for sufficient reserves before opening zero-fee commitment channels. It counts them as anchored channels to guard against simultaneous force-closes.
LND adds a 'source_pub_key' field to route construction. This allows calculating routes from another node's perspective, not just your own.
RustBitcoin adds a V1_message_header constructor. It lets developers build P2P message headers without requiring network transmission.

Lightning (3)

The new 'extension bolt' Bolt 995 defines simple taproot channels. It uses MuSig2 and excludes gossip announcement specs, which will come in a follow-up.
Zero-fee commitment channels (Bolts 1228) use a 240-sat ephemeral anchor output. The specification caps HTLCs at 114 due to the 10KB transaction size limit.
Bolts 1327 updates RBF logic. It ensures fee bumps meet both Bolt's 25/24 multiplier and an absolute 25 sat/kwu minimum, aligning with BIP125 replacement rules.

Protocol Lightning Privacy Adoption

What Bitcoin Did

Danny Knowles

The Future of Owning Bitcoin | Jonathan Pollock • May 11

Jonathan Pollack argues that wrench attacks exploit a structural flaw in self-custody: when something more valuable than Bitcoin is threatened with violence, security collapses because keys can be coerced.
Pollack criticizes duress pins and decoy wallets as flawed solutions, noting they rely on deception and don't end the attack - they merely shift the threat location or potentially escalate the attacker's anger.
Pollack proposes the wrench attack test: industry solutions should protect Bitcoin even when an attacker knows your setup and you are fully compliant. He believes seedless architectures and transaction-based exit mechanisms offer more protection than instant-compromise seed phrases.
BitKey is a seedless multisig wallet with three keys. Pollack explains users hold two keys: one on the hardware and an encrypted app key uploaded to cloud storage, while Block holds a third key that cannot view transactions due to chaincode delegation.
Pollack states BitKey's new hardware wallet features a screen to verify all system actions, including transactions, security settings, and recovery configurations, moving beyond simple transaction signing.
Pollack argues self-custody products must balance security, recovery, privacy, and ease of use, noting the biggest threat to Bitcoin is often user error rather than external adversaries.
Pollack critiques conflating self-reliance as a virtue with lacking good products. His ethos is to enable permissionless money access through safer, easier solutions rather than DIY complexity.
Pollack outlines BitKey's proposed wrench attack vault solution: a two-of-two door requiring biometric checks and a configurable time delay, and a self-custody door unlocked after a preset period like two years.
Pollack and Danny Knowles discuss a potential final vault destination for stolen keys, suggesting a KYC exchange address might be optimal despite being custodial, as institutions are not susceptible to physical coercion.
Pollack believes ETFs offer permissioned price exposure, not permissionless money utility. He argues users must choose between self-custody key risks and political/business risks like forced conversion, custodial fraud, or market restrictions.
Pollack defines a hardware wallet as a system needing internet connectivity for wallet functions, not just an air-gapped signing device. He advocates evaluating self-custody as a holistic system covering security, recovery, privacy, and usability.
Pollack argues comparing BitKey's full system to a standalone hardware signer like Coldcard is incomplete; one must include the DIY multisig, recovery, and inheritance setups, which BitKey integrates elegantly.
Danny Knowles mentions a wrench attack statistic: approximately 50 attacks per week in France this year, citing a friend's report of a London attack where a significant amount was stolen from an exchange.
Pollack references James Lopp's GitHub data on wrench attacks: extending the attack duration beyond one week reduces incidents to 1% of listed cases, and no attacks lasted longer than a month.

Also from this episode: (1)

Protocol (1)

Pollack views quantum computing as a supply shock risk rather than an existential threat to Bitcoin, preferring a price crash over protocol changes that confiscate coins and break property rights.

Custody Adoption ETFs Privacy

TFTC: A Bitcoin Podcast

Marty Bent

#744: Your Face Is Not A Password with Gerald Glickman • May 11

Key loss is a major friction point. Solutions include key pre-rotation protocols like KERI and collaborative custody models familiar to Bitcoiners. Glickman stresses the need for deliberate, context-dependent recovery mechanisms.

Also from this episode: (12)

Digital Sovereignty (5)

Gerald Glickman argues the US digital identity model is fundamentally broken because it uses compromised public identifiers like Social Security numbers as secret authenticators, equivalent to using your home address as your front door key.
Glickman advocates for a credential system where states issue verifiable credentials bound to a user's DIDs. This allows credential revocation (e.g., a driver's license) without destroying the user's foundational identity, giving control back to the individual.
Marty Bent notes age verification laws, like the Senate Judiciary Committee's 22-0 vote on the GUARD Act, are a common Trojan horse for imposing centralized digital identity systems under the framing of protecting children.
Glickman rejects Worldcoin's model of using biometrics as identifiers, though he approves of local device authentication like iPhone's Secure Enclave. The fight is for open systems against closed-garden solutions pushed by big tech lobbying.
The call to action is to engage now: examine your state's mobile driver's license implementation, support open standards work at W3C or Trust over IP, and advocate for policies like Utah's SETI that embed privacy and individual control.

AI & Tech (3)

The rise of AI and LLMs has drastically accelerated identity fraud, collapsing the half-life of new security controls. Glickman notes at least 3000 Americans become victims of identity theft every hour, a rate he calls unacceptable.
Zero-knowledge proofs and selective disclosure enable privacy-preserving verification. A user can prove they are over 21 without revealing their birthdate, or prove they own a red hat without handing over the entire credential.
The ideal credential flow involves an issuer crafting a signed credential bound to a public key, allowing the holder to generate a one-time, non-replayable ZK proof for a verifier. No personal information is stored or transmitted.

China (1)

Glickman warns against using biometrics like face or fingerprints as identifiers, as they are irrevocable and will be compromised. He points to China's social credit system as a real-world example of authoritarian control enabled by such systems.

Coding (1)

The proposed solution is using cryptography and open standards for decentralized identifiers (DIDs). This allows for cryptographic proof of authorship via digital signatures, shifting from probabilistic inference to mathematical certainty.

Protocol (2)

Glickman believes the architectural choices made in the next 1-2 years will lock in the system for a generation. He cites accelerating state rollouts of digital driver's licenses and age verification laws as evidence of this narrow window.
The current identity verification industry has misaligned incentives, as its business model depends on charging per verification. Glickman argues states and open standards bodies must lead, as seen with Utah's SETI legislation which includes a digital identity bill of rights.

Agents Privacy Digital Sovereignty Regulation

Source Intelligence

- Deep dive into what was said in the episodes

Bitcoin Optech

Bitcoin Optech: Newsletter #404 Recap • May 13

Daniela explains that Bitcoin node fingerprinting exploits correlation: dual-homed nodes share addresses between networks, and timestamps strengthen this link.
Naoma outlines five proposed timestamp fuzzing solutions. Adding noise breaks correlation but risks making old addresses look fresh, which floods the network.
Daniela prefers a hybrid solution: send real timestamps for requests on matching networks, but fuzz timestamps for requests on different networks.
Thomas V argues JIT channels create centralization. Phoenix wallet only works with ACINQ because the non-trustless model forces users to trust a single provider.
Thomas V adds that LSPs must sacrifice bitcoin to enter the reputation system. A fraud proof burns this stake, creating economic skin-in-the-game.

Also from this episode: (13)

Protocol (10)

Thomas V's fraud proof scheme requires LSPs to commit UTXOs, clients to publish preimages on-chain before a deadline, and a Nostr network for clients to share commitment data.
Gustavo notes Bitcoin Core PR #33796 adds BTCK_check_transaction endpoint. It runs context-free consensus checks on transaction structure.
Gustavo explains PSBT v2 (BIP370) is now default in Bitcoin Core. It allows modular transaction construction, supporting adding inputs/outputs mid-process.
BIP451 defines a DUST UTXO disposal protocol. It uses SIGHASH_ALL|ANYONECANPAY, letting anyone batch dust inputs into a single zero-value OP_RETURN output.
Murch notes the protocol's OP_RETURN includes 'ASH'. A legacy input creates a ~65 byte transaction, while a SegWit input creates a transaction of exactly that size.
Eclair PR #3144 updates simple taproot channels to use the official feature bit, aligning with LND's production implementation from Newsletter #401.
Eclair PR #2887 adopts the official splicing protocol from Bolt specs. It maintains backward compatibility but upgrades wire messages, keysend, and RBF handling.
LDK now checks for sufficient reserves before opening zero-fee commitment channels. It counts them as anchored channels to guard against simultaneous force-closes.
LND adds a 'source_pub_key' field to route construction. This allows calculating routes from another node's perspective, not just your own.
RustBitcoin adds a V1_message_header constructor. It lets developers build P2P message headers without requiring network transmission.

Lightning (3)

The new 'extension bolt' Bolt 995 defines simple taproot channels. It uses MuSig2 and excludes gossip announcement specs, which will come in a follow-up.
Zero-fee commitment channels (Bolts 1228) use a 240-sat ephemeral anchor output. The specification caps HTLCs at 114 due to the 10KB transaction size limit.
Bolts 1327 updates RBF logic. It ensures fee bumps meet both Bolt's 25/24 multiplier and an absolute 25 sat/kwu minimum, aligning with BIP125 replacement rules.

Protocol Lightning Privacy Adoption

What Bitcoin Did

Danny Knowles

The Future of Owning Bitcoin | Jonathan Pollock • May 11

Jonathan Pollack argues that wrench attacks exploit a structural flaw in self-custody: when something more valuable than Bitcoin is threatened with violence, security collapses because keys can be coerced.
Pollack criticizes duress pins and decoy wallets as flawed solutions, noting they rely on deception and don't end the attack - they merely shift the threat location or potentially escalate the attacker's anger.
Pollack proposes the wrench attack test: industry solutions should protect Bitcoin even when an attacker knows your setup and you are fully compliant. He believes seedless architectures and transaction-based exit mechanisms offer more protection than instant-compromise seed phrases.
BitKey is a seedless multisig wallet with three keys. Pollack explains users hold two keys: one on the hardware and an encrypted app key uploaded to cloud storage, while Block holds a third key that cannot view transactions due to chaincode delegation.
Pollack states BitKey's new hardware wallet features a screen to verify all system actions, including transactions, security settings, and recovery configurations, moving beyond simple transaction signing.
Pollack argues self-custody products must balance security, recovery, privacy, and ease of use, noting the biggest threat to Bitcoin is often user error rather than external adversaries.
Pollack critiques conflating self-reliance as a virtue with lacking good products. His ethos is to enable permissionless money access through safer, easier solutions rather than DIY complexity.
Pollack outlines BitKey's proposed wrench attack vault solution: a two-of-two door requiring biometric checks and a configurable time delay, and a self-custody door unlocked after a preset period like two years.
Pollack and Danny Knowles discuss a potential final vault destination for stolen keys, suggesting a KYC exchange address might be optimal despite being custodial, as institutions are not susceptible to physical coercion.
Pollack believes ETFs offer permissioned price exposure, not permissionless money utility. He argues users must choose between self-custody key risks and political/business risks like forced conversion, custodial fraud, or market restrictions.
Pollack defines a hardware wallet as a system needing internet connectivity for wallet functions, not just an air-gapped signing device. He advocates evaluating self-custody as a holistic system covering security, recovery, privacy, and usability.
Pollack argues comparing BitKey's full system to a standalone hardware signer like Coldcard is incomplete; one must include the DIY multisig, recovery, and inheritance setups, which BitKey integrates elegantly.
Danny Knowles mentions a wrench attack statistic: approximately 50 attacks per week in France this year, citing a friend's report of a London attack where a significant amount was stolen from an exchange.
Pollack references James Lopp's GitHub data on wrench attacks: extending the attack duration beyond one week reduces incidents to 1% of listed cases, and no attacks lasted longer than a month.

Also from this episode: (1)

Protocol (1)

Pollack views quantum computing as a supply shock risk rather than an existential threat to Bitcoin, preferring a price crash over protocol changes that confiscate coins and break property rights.

Custody Adoption ETFs Privacy

TFTC: A Bitcoin Podcast

Marty Bent

#744: Your Face Is Not A Password with Gerald Glickman • May 11

Key loss is a major friction point. Solutions include key pre-rotation protocols like KERI and collaborative custody models familiar to Bitcoiners. Glickman stresses the need for deliberate, context-dependent recovery mechanisms.

Also from this episode: (12)

Digital Sovereignty (5)

Gerald Glickman argues the US digital identity model is fundamentally broken because it uses compromised public identifiers like Social Security numbers as secret authenticators, equivalent to using your home address as your front door key.
Glickman advocates for a credential system where states issue verifiable credentials bound to a user's DIDs. This allows credential revocation (e.g., a driver's license) without destroying the user's foundational identity, giving control back to the individual.
Marty Bent notes age verification laws, like the Senate Judiciary Committee's 22-0 vote on the GUARD Act, are a common Trojan horse for imposing centralized digital identity systems under the framing of protecting children.
Glickman rejects Worldcoin's model of using biometrics as identifiers, though he approves of local device authentication like iPhone's Secure Enclave. The fight is for open systems against closed-garden solutions pushed by big tech lobbying.
The call to action is to engage now: examine your state's mobile driver's license implementation, support open standards work at W3C or Trust over IP, and advocate for policies like Utah's SETI that embed privacy and individual control.

AI & Tech (3)

The rise of AI and LLMs has drastically accelerated identity fraud, collapsing the half-life of new security controls. Glickman notes at least 3000 Americans become victims of identity theft every hour, a rate he calls unacceptable.
Zero-knowledge proofs and selective disclosure enable privacy-preserving verification. A user can prove they are over 21 without revealing their birthdate, or prove they own a red hat without handing over the entire credential.
The ideal credential flow involves an issuer crafting a signed credential bound to a public key, allowing the holder to generate a one-time, non-replayable ZK proof for a verifier. No personal information is stored or transmitted.

China (1)

Glickman warns against using biometrics like face or fingerprints as identifiers, as they are irrevocable and will be compromised. He points to China's social credit system as a real-world example of authoritarian control enabled by such systems.

Coding (1)

The proposed solution is using cryptography and open standards for decentralized identifiers (DIDs). This allows for cryptographic proof of authorship via digital signatures, shifting from probabilistic inference to mathematical certainty.

Protocol (2)

Glickman believes the architectural choices made in the next 1-2 years will lock in the system for a generation. He cites accelerating state rollouts of digital driver's licenses and age verification laws as evidence of this narrow window.
The current identity verification industry has misaligned incentives, as its business model depends on charging per verification. Glickman argues states and open standards bodies must lead, as seen with Utah's SETI legislation which includes a digital identity bill of rights.

Agents Privacy Digital Sovereignty Regulation

Pollock proposes vaults with time delays as the wrench attack antidote

Source Intelligence

Related Stories

Pollock proposes vaults with time delays as the wrench attack antidote

Source Intelligence

Related Stories