Zach Herbert

#745: The AI Approval Layer Is Fake with Zach Herbert

- Bitcoin as safe haven in currency debasement: Central banks devaluing currencies creates favorable conditions for Bitcoin adoption; framed as a macro tailwind rather than speculation. - AI security threats and the need for containment: Modern AI models running on legacy operating systems (Windows, macOS, Linux) with massive attack surfaces. Current "approval" systems are illusory—AI already has full capability to act before asking permission. - KeyOS microkernel architecture: Foundation built a next-generation operating system with <9,000 lines of code (vs. 30+ million in Linux), using message-passing architecture, isolated memory, and hardened-derived child keys to sandbox third-party apps safely. - Ledger's technical constraints: Smart card OS (30-year-old STMicroelectronics tech) limits functionality, forces sequential app loading, and necessitates closed-source operating system and app review. E-ink screens chosen because the smart card chip cannot power modern LCD displays. - Passport Prime as platform, not just hardware wallet: Developer SDK and app ecosystem enable third parties to build native apps (Nostr signers, password managers, Bitcoin applications) without Foundation approval, mimicking iPhone's app store model. - Enterprise custody and HSM vulnerabilities: Most enterprise Bitcoin custody still relies on legacy hardware security modules, offline paper, and undocumented internal tools (e.g., iPhone apps). Approaching an era where AI will systematically discover zero-days in monolithic operating systems at scale.