The following FAQs cover common misunderstandings and misconceptions about Blockstream Jade's security model options. If you have any further questions about Jade, please feel free to reach out here. Does Jade send wallet information to a server? No, Blockstream Jade does not send wallet information to a server. Jade offers two different security models, one of which strongly encrypts your wallet in combination with a blind oracle - while the other model allows Jade to be used statelessly without any blind oracle. What is a blind oracle? A blind oracle functions as a virtual secure element. It holds the decryption mechanism to your wallet off-device, which makes physical key extraction from your Jade alone as difficult (or more difficult) as physical key extraction from secure element based devices. You can decrypt your wallet by entering your PIN correctly on Jade and allowing your companion app to give you the decryption key via an encrypted channel. Jade is never connected to the internet or communicating with a blind oracle directly, and this process can even be done air-gapped via QR codes. What do blind oracles know about my Jade or wallet? Nothing. Blind oracles do not know your bitcoin addresses, private keys, and they do not even know your actual PIN (they also work over Tor). The only information a blind oracle stores is a hash of your PIN plus a nonce, allowing them to function completely "blind". You can use Jade with your own blind oracle or one run by Blockstream. Should I run my own blind oracle or use Blockstream's? Whichever you prefer. Using Blockstream's blind oracle has the advantage of "decentralizing" your security without compromising any wallet information, however some users may still prefer to run their own blind oracle on a laptop or Raspberry Pi for example. Why does Jade use a blind oracle and not a secure element? Our unique security model using blind oracles was developed as a way to avoid needing a secure element for wallet protection, which allows Jade to be truly open-source and more accessible. Secure elements are covered by NDAs, are more expensive, and do not allow users to DIY their own device. Do I have to use a blind oracle? No. If users want to unlock their Jade without using a companion app or blind oracle, they are free to do so by scanning a SeedQR for quick wallet access or by manually entering their recovery phrase. Does Jade have to be used with Blockstream Green? No. Jade works as a standalone signing device with many popular wallet platforms.
