Since our first prototype in 2015 we have iterated relentlessly on both hardware and firmware security. The BitWaldex is built from the ground up for self-custody, with multiple independent security firms reviewing every release. Designed in Switzerland, imported and warrantied in South Africa, it helps you protect your financial sovereignty with the features below.
A dedicated secure element (ATECC608B) stores critical secrets, while the main microcontroller runs open-source firmware. Isolating the two chips makes side-channel attacks dramatically harder.
Accessing the encrypted seed requires three independent secrets:
Even if one secret is exposed, brute-forcing the other two is computationally infeasible.
Only firmware signed by BitWaldex is accepted. Cross-flashing or downgrading is blocked, and the device can show the firmware hash before booting for binary transparency.
Every BitWaldex is pre-loaded with a unique attestation key. The BitBoxApp (or any compatible wallet) can challenge the device to prove that it is genuine before every session.
Confirm every transaction on the built-in OLED screen; tap-to-sign prevents man-in-themiddle attacks from compromised PCs.
A monotonic counter inside the secure element limits password attempts; password stretching slows down brute-force attacks.
The micro-controller and secure element are encased in forensic-grade epoxy, deterring invasive chip-level attacks.
The two halves of the enclosure are ultrasonic-welded. Any forced opening snaps internal pins, giving a clear tamper-evidence signal.
Create a fully-encrypted backup of your seed in seconds. No need to write seed words on paper in front of cameras.
Insert the card and run Check Backup in the BitBoxApp. Frequent, friction-free checks mean fewer unpleasant surprises.
Prefer a classic seed phrase? Re-enter your device password and the 24 words can be displayed once for manual transcription.
Firmware and bootloader are reviewed by independent firms such as Census Labs before every major release.
We welcome responsible disclosure and pay up to USD 10 000 for critical findings. Guidelines and scope are public on our GitHub.
All USB traffic between the BitWaldex and your computer is encrypted using the Noise Protocol. Malware sniffing the bus sees only ciphertext.
Transaction metadata never touches BitWaldex servers. Connect through your own Bitcoin full node—or Tor—for maximum privacy.
The BitWaldex reduces attack surface so adversaries have fewer ways to reach your keys. We publish a full threat model covering:
Five entropy sources combine via XOR:
Even if four are compromised, the seed remains strong.
“Don’t trust, verify.” The firmware can be rebuilt byte-for-byte by anyone and compared to the official binary. Community signatures attest every release, and WalletScrutiny tests the process regularly.
Warranty: All devices sold in South Africa carry a [[WarrantyPeriod]] limited warranty under the Consumer Protection Act 68 of 2008.
Importer: [[SA_Importer]] (Pty) Ltd, VAT no. ……, is the authorised distributor
Regulatory status: Hardware wallets are not “financial products” under FAIS Notice 90 of 2022; no personalised financial advice is provided. Personal information is processed in line with POPIA Act 4 of 2013.