pull down to refresh
30 sats \ 3 replies \ @chytrik 22 Feb 2023 \ on: Simple steps to generate bitcoin address without internet & store as a printout bitcoin
I don't think this is a very secure way to generate a receiving address:
- if you really must use the website linked in OP, you should do so by saving the site from their github repository, for later offline use.
- however, disconnecting the internet for a short time will do nothing to defeat malware already present on your machine. It would be trivial for any logging software present to steal your keys once you re-connect to the internet.
- some printers will store past print jobs in a local memory on the printer. It is better to write down a mnemonic seed phrase using pen and paper as a backup method.
- looking up your bitcoin address via a clearnet block explorer leaks a lot of data, it is a privacy concern. If you must use a block explorer, use one via the tor network
Another concern: the user REALLY needs to understand how UTXOs and change addresses work in order to safely use a paper wallet. There are many stories of users losing funds after not understanding what they were doing with a paper wallet. User beware!
IMO most people are better off using a phone-based wallet (on a not-jailbroken-phone) to generate an address. Likely better security than the 'old family desktop computer', while still allowing easy backups (mnemonic seed phrase), and easy future access to funds. The user can even delete the wallet app after testing their backup and transferring funds, should they desire discreteness.
i dont use mnemonic seeds
BIP-39
for a reason.- What i understand is that private keys for mnemonic are derived from the given seed words
- In my understanding word lists are used from which these words are selected
- a sufficiently advanced computing device which might come some years down in future may be able to crack the private keys of those addresses generated with mnemonic keys , if these computers are advanced enough to derive all the private keys against all the various permutations and combinations of these 2048 word list like is done in a brute force attack
- this may be a hypothetical situation but if such a case happens the first accounts to get hacked will be those generated with mnemonic keys
- on the other hand the private key which is not derived from the mnemonic keys the computing power required to hack may be far higher.
- as the intend of the OP is to invest and survive such kind of possible attacks for a longer term. i see no rational to go ahead with the easy way of
BIP-39
which is why i stick on to my method. - I may be wrong in my understandings as i am not an expert in the domain.
if you really must use the website linked in OP, you should do so by saving the site >from their github repository, for later offline use.
Agree there - it is better to save the files from the github repository to the local computer as html files and then run it locally from the computer. This may require a little bit of knowledge there to do that.
however, disconnecting the internet for a short time will do nothing to defeat >malware already present on your machine. It would be trivial for any logging >software present to steal your keys once you re-connect to the internet.
u can format the computer after disconnecting and then generating the printout. this may defeat the malwares. again my knowledge here is limited. or u may use an old computer and then destroy its hard disk after taking the printout.
some printers will store past print jobs in a local memory on the printer.
Thats something i have thought about. Printer can be disconnected from electricity for a while. i am not sure if there is a memory store in any printers where battery is used to store this memory. its unlikely though. again not so sure.
It is better >to write down a mnemonic seed phrase using pen and paper as a >backup method.
Yes. this is a good method to write down. it may work for mnemonic seed words. but for the private key if your writing is exactly not readable and u cannot differentiate between l and 1 , 0 and O , in future when u try to read it. it will be a problem. So if u are using pen and pencil then better write it down and read it again to verify that it is readable
looking up your bitcoin address via a clearnet block explorer leaks a lot of data, it >is a privacy concern. If you must use a block explorer, use one via the tor network
providing the public key in block explorers will not compromise the wallet in anyway because the public key is already exposed to public. Anyone can any time check that.
Now if u r worried about exposing ur IP with bitcoin address to a third party website then u may use TOR network
reply
I may be wrong in my understandings as i am not an expert in the domain.
You do misunderstand; the keyspace for a 24 word BIP-39 mnemonic seed phrase is MASSIVE, beyond comprehension. Using a private key that was derived in standalone fashion affords you no additional security. If it did, mnemonic seed phrases would not be common place.
Using a 24-word seed phrase provides 256 bits of entropy, which translates to 2^256 possible seeds. This is an impossibly large number, there is no conceivable way that even an advanced future-computer could iterate through enough addresses to find even one that holds funds. And besides, if such a thing did come to exist, then funds held at BIP-39 derived addresses would be at no higher risk than funds held at any other P2PKH address.
See this stack exchange answer for some example numbers relating to this. In short: it would take an impossibly advanced computer many many many times the age of the universe to find even a single funded key.
Yes. this is a good method to write down. it may work for mnemonic seed words. but for the private key if your writing is exactly not readable and u cannot differentiate between l and 1 , 0 and O , in future when u try to read it. it will be a problem. So if u are using pen and pencil then better write it down and read it again to verify that it is readable
There are various private key formats, but WIF uses base58check encoding to prevent this 'ambiguous character' problem. So that won't be an issue (though correctly transcribing a long string of random characters can be tough itself).
reply
I may be wrong in my understandings as i am not an expert in the domain.
You do misunderstand; the keyspace for a 24 word BIP-39 mnemonic seed >phrase is MASSIVE, beyond comprehension. Using a private key that was derived >in standalone fashion affords you no additional security. If it did, mnemonic seed >phrases would not be common place.
Anything that is easy, would be eventually in common place. The real question is compared to brute force a non derived private key how easy or difficult will it be to crack a derived key.
Using a 24-word seed phrase provides 256 bits of entropy, which translates to >2^256 possible seeds. This is an impossibly large number, there is no >conceivable way that even an advanced future-computer could iterate through >enough addresses to find even one that holds funds. And besides, if such a thing >did come to exist, then funds held at BIP-39 derived addresses would be at no >higher risk than funds held at any other P2PKH address.
See this stack exchange answer for some example numbers relating to this. In >short: it would take an impossibly advanced computer many many many times >the age of the universe to find even a single funded key.
the stackoverflow article is about the difficulty of a regular bitcoin private key. not that of a BIP 39 derived key.
Yes. this is a good method to write down. it may work for mnemonic seed words. but for the private key if your writing is exactly not readable and u cannot differentiate between l and 1 , 0 and O , in future when u try to read it. it will be a problem. So if u are using pen and pencil then better write it down and read it again to verify that it is readable
There are various private key formats, but WIF uses base58check encoding to >prevent this 'ambiguous character' problem. So that won't be an issue (though >correctly transcribing a long string of random characters can be tough itself).
reply