Blockchain transactions are signed by private keys. Secure key storage and tamper-proof computers are essential requirements for deploying a trusted infrastructure. In this paper, we identify some threats against blockchain wallets and propose a set of physical and logical countermeasures to thwart them. We present the crypto terminal device, operating with a removable secure element, built on open software and hardware architectures, capable of detecting a cloned device or corrupted software. These technologies are based on tamper-resistant computing (javacard), smart card anti-cloning, smart card content attestation, application firewall, bare-metal architecture, remote attestation, dynamic Physical Unclonable Function (dPUF), and programming tokens as a root of trust.This paper is an extended version of the paper ''Innovative Countermeasures to Defeat Cyber Attacks Against Blockchain Wallets,'' 2021 5th Cyber Security in Networking Conference (CSNet), 2021, pp. 49-54, doi: 10.1109/CSNet52717.2021.9614649

翻译：区块链交易通过私钥进行签名。安全密钥存储与防篡改计算机是部署可信基础设施的基本要求。本文识别了针对区块链钱包的若干威胁，并提出了一套物理与逻辑层面的应对措施。我们介绍了一种加密终端设备，该设备搭载可拆卸安全元件，基于开放软硬件架构构建，能够检测克隆设备或受损软件。这些技术基于防篡改计算（JavaCard）、智能卡防克隆、智能卡内容验证、应用防火墙、裸金属架构、远程验证、动态物理不可克隆函数（dPUF）以及作为信任根的编程令牌。本文是《抵御区块链钱包网络攻击的创新性对策》（2021年第五届网络安全会议论文集，第49-54页，doi: 10.1109/CSNet52717.2021.9614649）的扩展版本。