Bitcoin Forum

This summary shows a short summary of the security mechanism implemented on a selection of online wallets and exchanges. This is no vulnerability-test on the back end code so it says nothing about how well they are protected from an attack, but it says something about how your account is protected and the general security awareness of the service providers.

The tests are done with SSL server test (https://www.ssllabs.com/ssltest/index.html), and securityheaders.io (https://securityheaders.io). The lists are in no particular order.

The list is also available on a dedicated webpage here (https://norbitcoin.no/security-overview.htm).

https://i.imgur.com/0CdmSDJ.png?1

Please keep any feedback and suggestions in this thread, thanks.

reserved

good overview but you might want to add https://greenaddress.it/ to the online wallet list. i have never used it so i can not comment on their service but i heard good things.

also, there is something that people usually miss about online wallets and that is the big difference between wallets like blockchain.info, greenaddress with wallets like coinbase, xapo, circle
that big difference is the fact that your Money is controlled by a third party in the second group so you will have no control in case your account gets banned.

nice thread and explanation, so far i just using blockchain for stored my bitcoin as online wallet, i just wondering about the exchange can you make a review about c-cex, bittrex, poloniex and yobit so far those exchanger i always used for my daily trading activity
thanks in advance

i agree you should add all the other exchangers to the list. not only famous bitcoin exchanger like bitfinex, btce but also altcoin exchangers like poloniex and bittrex.
here is a good list of them with their volumes: http://coinmarketcap.com/exchanges/volume/24-hour/

Updated.

- Added GreenAddress wallet
- Added priv key access column to wallets
- Added some more exchanges

i would suggest bittrex and poloniex to be added to the overview list as both have the biggest exchange that accept so many altcoin and huge trade volume around $10,000 combined.
and both are so popular around here for altcoin traders due they provide over 200 altcoin on their exchange each. nice thread btw , goodluck.

Thanks for the feedback. I will add those very soon. I'm just trying to make sure the securityheaders.io results are correct. Seems like maybe cloudfare and the like are messing up the results.

Very nice review, but Coinbase should also be included as online wallet.  ;)

Fair enough! :)

Im missing blocktrail -> https://wallet.blocktrail.com/#/setup/register

hmm it seems coinbase is more secure than i thought lol,maybe i should go back to using it.

really didnt expect coinbase to be the most secure.

Added


Added Bittrex.

Here are hardware wallets I have done hands on with:
https://bitcointalk.org/index.php?topic=1283805.0 - KeepKey
https://bitcointalk.org/index.php?topic=1298917.0 - Trezor
https://bitcointalk.org/index.php?topic=1305888.0 - Ledger Nano

Hotwallet
Yubikey physical token with Blockchain.info - https://bitcointalk.org/index.php?topic=1353231.0

I have become a huge fan of hardware wallets.

Thank you for the links. I will try to add a security summary of the hardware wallets. I just need to figure out what attack vectors i should list.

Nice review, but I think you should add block.io (http://block.io) wallet

Added:
SSL: A+
Securityheaders: A

No 2FA (they say they support it, but e-mail is not 2FA, it is only 2-step).

Added coinmotion.

No support for TLS 1.2, which is the only secure protocol version, so stay away. Consider ALL communication with their servers as unencrypted.

Quite ironic since they are writing

I have added a few HW wallets to the list. It is based on information I have found on their official sites, and may be inaccurate. Some of the information is pulled from notlist3ds reviews.