Forgive me if this has been brought up before, I attempted to use the search feature and didn’t see anything related to this specifically. If I am just bad at search, do not hesitate to shame me.
I am looking to beef up the security of my bitcoin storage. I have the parts to build my own stateless seed signer, which is an important step up (imo) from relying on a prebuilt hardware wallet, but I fear I have put the cart before the horse.
I want to generate a new seed phrase/private key, preferably trustlessly and without the use of any digital RNG. I am aware of the two following options: -dice rolls -bag of chips, each with a different word from the bip39 wordlist
Am I missing any? Are there better options? Even if the options are more esoteric, I’m willing to learn.
Thanks for reading and for any helpful input.
reply
I don’t want to generate the randomness myself, though. I want a physical tool that doesn’t rely on a pseudorandom number generator that may or may not have a vulnerability exposed in the future.
See here for an example that illustrates my concern. It took 7 years to find the vulnerability.
reply
Tin foil hat approach, but I get it.
For the rest of the planet, entropy sources should be combined. e.g. Trezor seed generation mixes host provided entropy and the on device TRNG.
reply
I appreciate your feedback.
reply