Bridge the web and desktop experience to your Trezor—safely and privately.
Trezor™ Bridgeʬ is a lightweight local service that enables secure communication between your browser or desktop apps and your Trezor hardware wallet. Designed to minimize attack surface and maximize user control, Bridge ensures transactions and signing requests are relayed locally and only completed after your explicit approval on the device.
Local-first Design
No cloud relays. Bridge runs on your machine and forwards encrypted requests directly to the device, keeping sensitive operations local.
Manual Confirmation
Every signature requires on-device verification. The physical device displays amounts, addresses, and metadata before signing.
Cross-platform
Installers for Windows, macOS, and Linux — small footprint with automatic update options.
Developer APIs
Well-documented local APIs let developers integrate hardware support into wallets and dApps while following security best practices.
How it works — in four steps
- An application (web or desktop) requests access to a Trezor device via the local Bridge service.
- Bridge verifies the application's origin and relays the encrypted request to the connected Trezor device.
- The Trezor device presents the transaction details so you can review and confirm on the device display.
- After you confirm, the device signs locally and Bridge returns the signed payload to the application for broadcast.
Bridge is purely a relay and does not store private keys or sign transactions without explicit device approval.
Security and privacy considerations
- Download Bridge only from official Trezor sources and verify signatures when available.
- Keep your device firmware current; updates often include critical security patches.
- Verify every transaction on the device screen to prevent UI-level tampering or address-rewriting attacks.
- Avoid running Bridge on public or untrusted machines; run it on personal devices under your control.