Protect what matters — keys never leave the device.

Tŕezor™ Bŕridgeʬ is a lightweight, privacy-first connector that places your private keys inside certified hardware and gives apps a secure, auditable way to request signatures and authentication without ever seeing secrets.

Hardware-backed
Secure Element & attested firmware protect keys from extraction and tampering.
Privacy-first
Minimal telemetry, encrypted session metadata, user-controlled diagnostics.
Wide compatibility
Works across EVM chains, Solana, Cosmos, and custom chains via SDKs.

How Bŕridgeʬ secures your flow

  1. Pair — Connect Tŕezor device to the Bridge app via USB or Bluetooth.
  2. Authorize — Approve dApp requests on-device with PIN, passphrase, or biometric unlock.
  3. Sign — Signing happens inside the secure element; only signed payloads leave the device.

Quick start

1. Install Tŕezor™ Bŕridgeʬ for your OS
2. Connect your Tŕezor hardware device
3. Open the Bridge and follow pairing instructions
4. Approve dApp actions on-device

Developer-friendly

Bring secure signing to your product with minimal overhead. The Bridge normalizes transport, device discovery, and attestation so developers can focus on UX.

Example (TypeScript)

import { TrezorBridge } from 'trezor-bridge-js'

const bridge = new TrezorBridge()
await bridge.connect()
const session = await bridge.requestSession({ appName: 'MyApp' })
const signed = await session.sign({ chain: 'ethereum', payload: tx })
console.log('Signed tx', signed)

Best practices

Security overview

Secure Element & Attestation

Device identity is verified by the Bridge; firmware signatures and runtime attestation prevent forged clients.

Auditable Sessions

Immutable logs of actions (non-sensitive) help organizations meet audit requirements while preserving privacy.

Recovery & backups

Use BIP39 passphrases and documented recovery workflows. The Bridge assists with account import/export in a secure, user-consented manner.

Pricing & getting started

Free for personal use — professional plans available for teams and enterprises with advanced policies, SLAs, and on-prem options.

Personal

Free • 1 device • Basic sessions

Team

Monthly • Multi-device • Admin controls

Enterprise

Custom • On-prem • Compliance

Contact our sales team for trials, volume licensing, and deployment consultations.

FAQ

Which devices are supported?

Most current Tŕezor hardware models and select third-party secure elements are supported. Refer to the compatibility guide for specifics.

Can I export my keys?

No. Private keys remain bound to the secure element and cannot be exported. Recovery uses standard mnemonic/passphrase mechanisms where applicable.

Do you collect telemetry?

Telemetry is minimal and opt-in. Session metadata required for auditing is encrypted and under user control.