Ledger.com/Start®

The **24-word Recovery Phrase**, often called a seed phrase or mnemonic, is the single most important component of your entire crypto security setup. It is the master key, generated by your Ledger device using a true random number generator (TRNG) that is embedded within the device’s Secure Element chip. This phrase is generated according to the **BIP-39 standard**, a consensus mechanism that transforms the randomness into a list of easy-to-read English words. This phrase mathematically represents the root of all the private keys for all the cryptocurrency accounts you will ever create with this device. If your Ledger Nano is lost, damaged, or destroyed, this phrase is the *only* way to restore access to your funds on a new Ledger device or any other compatible hardware/software wallet.

• **Rule of Absolute Physical Isolation:** You must **never** take a photo, store a digital copy (on a computer, in a cloud drive, or in a password manager), or type your Recovery Phrase into any online service. The phrase must only exist as a physical backup.
• **PIN vs. Phrase:** Your PIN protects the device locally; it prevents unauthorized access if your physical device is stolen. Your Recovery Phrase protects the funds themselves; it is the universal backup. Do not confuse the two.
• **Storage Recommendations:** Write the words down clearly on the provided recovery sheets or, for maximum durability, engrave them onto a metal backup plate. Store this physical backup in a location separate from your Ledger device, such as a secure safe deposit box, away from fire and water hazards.
• **Verification is Mandatory:** When the device displays the words, you must write them down and then verify them during the device setup phase. Skipping the verification step is the most common reason for catastrophic loss of funds.
• **Key Derivation (BIP-44):** The phrase, combined with a standardized derivation path (**BIP-44**), generates all your individual wallet addresses (like your Bitcoin address, Ethereum address, etc.) deterministically. This means the same 24 words will *always* generate the exact same accounts, making the recovery process seamless.

Ledger Live is the mandatory management software for your device. It provides the user interface for installing crypto applications, checking balances, sending/receiving assets, and performing updates. The download must only be sourced from **Ledger.com/Start** or the Ledger official site. Immediately upon connecting your device within Ledger Live, the application initiates a **Genuine Check**. This is a critical, multi-stage authentication process:

1. **Secure Element Verification:** Ledger Live sends an authenticated request to the Secure Element chip on your device.
2. **Cryptographic Challenge:** The chip responds using a private key embedded during manufacturing.
3. **Tamper Detection:** Ledger Live verifies this cryptographic signature against Ledger’s servers. If the signature matches, it confirms that the device is authentic, was manufactured by Ledger, and has not been tampered with or replaced with a malicious chip.
4. **Firmware Integrity:** The check also verifies the integrity of the current firmware installed on the device, ensuring no unauthorized modifications have been made to the operating system.

You must **never** enter your 24-word phrase into Ledger Live for any reason, even if the software prompts you to do so (unless you are performing a recovery on a brand new, verified device). The software is designed to communicate with the device, but never to read the private keys. Any application asking for the phrase is a **phishing attempt**. Regular updates of both Ledger Live and your device's firmware are essential for maintaining the highest security standards and adding support for new coins and features.

The **PIN code** is your local access key. It is a 4 to 8 digit code chosen by you during setup. After three consecutive incorrect attempts, the device will wipe itself, requiring you to restore it using your 24-word Recovery Phrase. This is a deliberate security feature, ensuring a stolen device is useless to a thief.

The 25th Word (Passphrase Security)

For advanced users, Ledger supports the addition of a 25th word, known as the **passphrase** or hidden wallet feature. This optional word acts as a modifier to your 24-word phrase, creating an entirely separate, cryptographically distinct set of accounts. Funds secured by the 24 words alone (the default wallet) are easily accessible, while funds secured by the 24 words *plus* the 25th passphrase are hidden. This provides a powerful defense known as **plausible deniability**. If coerced into revealing your funds, you can enter the PIN for your default (decoy) wallet, keeping your main assets secured by the passphrase hidden. The passphrase is **case-sensitive** and its loss is unrecoverable, as it is not part of the 24-word backup.

If Your Device is Lost or Stolen

A lost or stolen Ledger Nano is primarily a physical inconvenience, not a financial one, *provided your 24-word phrase is secured*. Your assets are on the blockchain, and the device simply holds the keys. Your immediate action should be to purchase a new Ledger device and use your 24-word phrase to restore access. **Do not buy a new device from a third-party reseller**; only purchase directly from Ledger's official shop to ensure authenticity.

Every transaction on a Ledger device follows the same non-custodial principle: the private key never leaves the Secure Element chip.

The Transaction Signing Loop:

1. **Initiation:** You initiate a transaction (e.g., sending Bitcoin) in Ledger Live or a connected third-party application (like MetaMask).
2. **Preparation:** Ledger Live constructs the unsigned transaction data.
3. **Transmission:** The unsigned data is securely sent to the Ledger Nano via USB or Bluetooth.
4. **Verification (CRITICAL):** The device screen displays the crucial transaction details: the receiving address, the amount, and the network fee (gas). **You must physically verify these details match your intent.**
5. **Signing:** Only after you confirm the details by pressing the physical buttons on the device does the Secure Element use the private key to apply a digital signature to the transaction.
6. **Broadcast:** The signed transaction is sent back to Ledger Live and broadcast to the relevant cryptocurrency network.

This physical confirmation step is what makes the Ledger device immune to remote malware. Since the malicious software cannot press the physical buttons, it cannot authorize a fraudulent transaction, even if your computer is compromised. The Ledger ecosystem supports over 5,500 different crypto assets, including all major tokens and most Layer 1 and Layer 2 networks. To manage a specific coin (e.g., Solana), you must install the corresponding dedicated app onto your device via the Ledger Live **Manager** tab.