|
Title: Is blockchain.info paper wallet secure? Post by: erre on January 06, 2015, 12:02:26 PM When I want to store my bitcoins, I usually go to blockchain.info, print a paper wallet and deposit into it.
Supposing that both my device and site are secure in the moment I login and print the paper wallet, are my bitcoins completely safe in the case of a future blockchain.info hack? Title: Re: Is blockchain.info paper wallet secure? Post by: newIndia on January 06, 2015, 12:04:31 PM When I want to store my bitcoins, I usually go to blockchain.info, print a paper wallet and deposit into it. Supposing that both my device and site are secure in the moment I login and print the paper wallet, are my bitcoins completely safe in the case of a future blockchain.info hack? In theory, it should be... Title: Re: Is blockchain.info paper wallet secure? Post by: LiteCoinGuy on January 06, 2015, 12:05:33 PM dont store all your BTC this way to be sure. you can use a hardware-wallet too:
https://bitcointalk.org/index.php?topic=899253.0 Title: Re: Is blockchain.info paper wallet secure? Post by: erre on January 06, 2015, 12:09:12 PM dont store all your BTC this way to be sure. you can use a hardware-wallet too: https://bitcointalk.org/index.php?topic=899253.0 This is really cool, but it is an expansive wallet for my little money. Maybe if my bitcoins were @ 1000 usd, like when I bought them.. Like now, I am happy if they don't sundelly disappears, I use blockchain.info for spending little sums. Title: Re: Is blockchain.info paper wallet secure? Post by: LiteCoinGuy on January 06, 2015, 12:14:01 PM for little sums it is okay. always use more ways to store the BTC than just one and dont store all BTC in one wallet.
some hardware-wallets just cost 15 Euro (20 $). cheap in my view :) Title: Re: Is blockchain.info paper wallet secure? Post by: erre on January 06, 2015, 12:23:08 PM for little sums it is okay. always use more ways to store the BTC than just one and dont store all BTC in one wallet. some hardware-wallets just cost 15 Euro (20 $). cheap in my view :) I read some reviews, thanks for your article. I hope I will buy a trezor one day, but why an usb is supposed to be more secure or pratical than a paper wallet? I use every paper wallet only a single time, and use them with the porpouse of store my btc over the long run. I found them easy to hide and economic, my only concern is that i'm using blockchain.info for the creation. I know there are better ways to create a paper wallet, buy I want to know if, given that my device and the site are secure in the moment I print the wallet, I can feel safe for the eternity. Title: Re: Is blockchain.info paper wallet secure? Post by: LiteCoinGuy on January 06, 2015, 12:27:51 PM for little sums it is okay. always use more ways to store the BTC than just one and dont store all BTC in one wallet. some hardware-wallets just cost 15 Euro (20 $). cheap in my view :) I read some reviews, thanks for your article. I hope I will buy a trezor one day, but why an usb is supposed to be more secure or pratical than a paper wallet? I use every paper wallet only a single time, and use them with the porpouse of store my btc over the long run. I found them easy to hide and economic, my only concern is that i'm using blockchain.info for the creation. I know there are better ways to create a paper wallet, buy I want to know if, given that my device and the site are secure in the moment I print the wallet, I can feel safe for the eternity. a trezor is a closed system in my understanding so maleware cant be installed on it. maleware also cant access your private keys and the private keys never leave the device. i recommend some reviews about it :) . the device seems pretty good. for a paperwallet you could also use: www.bitaddress.org http://www.reddit.com/r/Bitcoin/comments/295vbt/is_bitaddressorg_safe/ Title: Re: Is blockchain.info paper wallet secure? Post by: okae on January 06, 2015, 12:54:13 PM ofc paper wallet is secure, but i may suggest you to dont store all your BTC into the same way, there is lot of ways to store your BTC like trezor, offline wallets etc etc also hardware wallets dont cost so much so is a nice way to store your BTC.
dont store all your BTC this way to be sure. you can use a hardware-wallet too: https://bitcointalk.org/index.php?topic=899253.0 nice, i didnt know that thread, so there you got lot of nice ways to do that, ty!! Title: Re: Is blockchain.info paper wallet secure? Post by: DannyHamilton on January 07, 2015, 01:58:04 AM When I want to store my bitcoins, I usually go to blockchain.info, print a paper wallet and deposit into it. Supposing that both my device and site are secure in the moment I login and print the paper wallet, are my bitcoins completely safe in the case of a future blockchain.info hack? Like all such questions, the answer is: "It depends.". It depends on several factors, and what you mean by "my device and site are secure". It depends on whether you've chosen a very strong password. It depends on whether you re-use those addresses to receive bitcoins more than once. It depends on whether you use faulty software when you eventually try to spend the bitcoins from the paper wallet. It depends on whether there are any bugs in the software that is generating the address at the time that it generates the address. Title: Re: Is blockchain.info paper wallet secure? Post by: TheButterZone on January 07, 2015, 02:08:55 AM Stop keeping your BTC at blockchain.info! Google the massive amount of thefts from them!
Use Blockchain.info for WATCH-ONLY, never private keys! Title: Re: Is blockchain.info paper wallet secure? Post by: erre on January 07, 2015, 07:20:12 AM When I want to store my bitcoins, I usually go to blockchain.info, print a paper wallet and deposit into it. Supposing that both my device and site are secure in the moment I login and print the paper wallet, are my bitcoins completely safe in the case of a future blockchain.info hack? Like all such questions, the answer is: "It depends.". It depends on several factors, and what you mean by "my device and site are secure". It depends on whether you've chosen a very strong password. It depends on whether you re-use those addresses to receive bitcoins more than once. It depends on whether you use faulty software when you eventually try to spend the bitcoins from the paper wallet. It depends on whether there are any bugs in the software that is generating the address at the time that it generates the address. Stop keeping your BTC at blockchain.info! Google the massive amount of thefts from them! Use Blockchain.info for WATCH-ONLY, never private keys! But... if I use a paper wallet, the key is on the wallett and therefore i'm in " watch only" on blockchain...right? Even if someone tomorrow will hack my pass or the site, I was supposing to be safe because of the printed wallet... of course if i do not use it on a compromised machine. Or am I wrong? Title: Re: Is blockchain.info paper wallet secure? Post by: twister on January 07, 2015, 09:46:00 AM No, I don't think it is safe. If you really want a paper wallet, print it on an offline machine.
Title: Re: Is blockchain.info paper wallet secure? Post by: TheButterZone on January 07, 2015, 10:05:57 AM When I want to store my bitcoins, I usually go to blockchain.info, print a paper wallet and deposit into it. Supposing that both my device and site are secure in the moment I login and print the paper wallet, are my bitcoins completely safe in the case of a future blockchain.info hack? Like all such questions, the answer is: "It depends.". It depends on several factors, and what you mean by "my device and site are secure". It depends on whether you've chosen a very strong password. It depends on whether you re-use those addresses to receive bitcoins more than once. It depends on whether you use faulty software when you eventually try to spend the bitcoins from the paper wallet. It depends on whether there are any bugs in the software that is generating the address at the time that it generates the address. Stop keeping your BTC at blockchain.info! Google the massive amount of thefts from them! Use Blockchain.info for WATCH-ONLY, never private keys! But... if I use a paper wallet, the key is on the wallett and therefore i'm in " watch only" on blockchain...right? Even if someone tomorrow will hack my pass or the site, I was supposing to be safe because of the printed wallet... of course if i do not use it on a compromised machine. Or am I wrong? The printed wallet (aka backup) means blockchain.info has its private key. Title: Re: Is blockchain.info paper wallet secure? Post by: erre on January 07, 2015, 10:19:39 AM When I want to store my bitcoins, I usually go to blockchain.info, print a paper wallet and deposit into it. Supposing that both my device and site are secure in the moment I login and print the paper wallet, are my bitcoins completely safe in the case of a future blockchain.info hack? Like all such questions, the answer is: "It depends.". It depends on several factors, and what you mean by "my device and site are secure". It depends on whether you've chosen a very strong password. It depends on whether you re-use those addresses to receive bitcoins more than once. It depends on whether you use faulty software when you eventually try to spend the bitcoins from the paper wallet. It depends on whether there are any bugs in the software that is generating the address at the time that it generates the address. Stop keeping your BTC at blockchain.info! Google the massive amount of thefts from them! Use Blockchain.info for WATCH-ONLY, never private keys! But... if I use a paper wallet, the key is on the wallett and therefore i'm in " watch only" on blockchain...right? Even if someone tomorrow will hack my pass or the site, I was supposing to be safe because of the printed wallet... of course if i do not use it on a compromised machine. Or am I wrong? The printed wallet (aka backup) means blockchain.info has its private key. It is not a backup, it is called " cold storage" and it consist in an address and a private key. I do not think that bockchain.info save my private key elsewhere. This is the process: https://blockchain.info/it/wallet/paper-wallet-tutorial-web Title: Re: Is blockchain.info paper wallet secure? Post by: stevenh512 on January 07, 2015, 11:13:49 AM A paper wallet is generally one of the more secure ways you can store your BTC (along with hardware wallets, already mentioned in this thread), but since the blockchain.info paper wallet is generated while you're online, at least in theory it's less safe than generating your paper wallets offline with a clean OS that's never going to touch the internet (for example, use a Linux Live CD/DVD and unplug your network cable or kill the wifi). You could have malware on your PC that captures the QR code, you could potentially have malware in your printer that does the same, blockchain.info could be compromised to serve javascript that sends your private key somewhere (or you could be on a phishing site that does the same), etc.
What I would do, and have done, goes something like this: 1) Get a good offline paper wallet generator. The one at bitaddress.org is good, personally I like the one (based on the bitaddress.org code) at bitcoinpaperwallet.com but to each his own. :) 2) Get a Linux Live CD/DVD distro and burn it. For this, I personally use Linux Mint 17 because it just happens to be the OS I run on my laptop so I already had the DVD burned. 3) Put your paper wallet generator on some kind of removable media. You can copy it to a flash drive or SD card, or if you're really paranoid, burn it to its own CD. 4) Boot the Live CD/DVD and load your paper wallet generator in a browser, you should know what to do from here. :) Once you've printed your paper wallets offline in a secure way, you can import the address only (not the private key) into blockchain.info as a watch only wallet and be confident that nobody else has the private key to spend those funds. Title: Re: Is blockchain.info paper wallet secure? Post by: erre on January 07, 2015, 11:20:14 AM A paper wallet is generally one of the more secure ways you can store your BTC (along with hardware wallets, already mentioned in this thread), but since the blockchain.info paper wallet is generated while you're online, at least in theory it's less safe than generating your paper wallets offline with a clean OS that's never going to touch the internet (for example, use a Linux Live CD/DVD and unplug your network cable or kill the wifi). You could have malware on your PC that captures the QR code, you could potentially have malware in your printer that does the same, blockchain.info could be compromised to serve javascript that sends your private key somewhere (or you could be on a phishing site that does the same), etc. What I would do, and have done, goes something like this: 1) Get a good offline paper wallet generator. The one at bitaddress.org is good, personally I like the one (based on the bitaddress.org code) at bitcoinpaperwallet.com but to each his own. :) 2) Get a Linux Live CD/DVD distro and burn it. For this, I personally use Linux Mint 17 because it just happens to be the OS I run on my laptop so I already had the DVD burned. 3) Put your paper wallet generator on some kind of removable media. You can copy it to a flash drive or SD card, or if you're really paranoid, burn it to its own CD. 4) Boot the Live CD/DVD and load your paper wallet generator in a browser, you should know what to do from here. :) Once you've printed your paper wallets offline in a secure way, you can import the address only (not the private key) into blockchain.info as a watch only wallet and be confident that nobody else has the private key to spend those funds. Yes, I know this would be better :) But I have old cold storage wallets who I want to keep, that's why i'm asking if, given that passed some time, these adresses could be considered " safe" forever (or already hacked by someone who is waiting for a bigger deposit, but I feel that unlikely). Title: Re: Is blockchain.info paper wallet secure? Post by: coinpr0n on January 07, 2015, 11:31:21 AM I'm not sure, as I understood it Blockchain.info do NOT store your private key. I believe it's all in the client-side code. I could be wrong. Either way, you can generate paper wallets offline with BitAddress.org - don't do it online, download a copy and work offline.
Title: Re: Is blockchain.info paper wallet secure? Post by: coinpr0n on January 07, 2015, 11:36:59 AM Looks like FF and Chrome store history of paper backup made with web wallet. http://bitzuma.com/posts/blockchain-info-paper-backup-stores-private-keys-in-the-browser-history/ BE CAREFUL! Title: Re: Is blockchain.info paper wallet secure? Post by: AGD on January 07, 2015, 02:05:31 PM You can flip a coin 160 or more times and generate (offline) a real random private key from this coinflip result when you don't trust hard-/software RNGs or this when you do trust:
No, I don't think it is safe. If you really want a paper wallet, print it on an offline machine. by doing that: A paper wallet is generally one of the more secure ways you can store your BTC (along with hardware wallets, already mentioned in this thread), but since the blockchain.info paper wallet is generated while you're online, at least in theory it's less safe than generating your paper wallets offline with a clean OS that's never going to touch the internet (for example, use a Linux Live CD/DVD and unplug your network cable or kill the wifi). You could have malware on your PC that captures the QR code, you could potentially have malware in your printer that does the same, blockchain.info could be compromised to serve javascript that sends your private key somewhere (or you could be on a phishing site that does the same), etc. What I would do, and have done, goes something like this: 1) Get a good offline paper wallet generator. The one at bitaddress.org is good, personally I like the one (based on the bitaddress.org code) at bitcoinpaperwallet.com but to each his own. :) 2) Get a Linux Live CD/DVD distro and burn it. For this, I personally use Linux Mint 17 because it just happens to be the OS I run on my laptop so I already had the DVD burned. 3) Put your paper wallet generator on some kind of removable media. You can copy it to a flash drive or SD card, or if you're really paranoid, burn it to its own CD. 4) Boot the Live CD/DVD and load your paper wallet generator in a browser, you should know what to do from here. :) Once you've printed your paper wallets offline in a secure way, you can import the address only (not the private key) into blockchain.info as a watch only wallet and be confident that nobody else has the private key to spend those funds. Title: Re: Is blockchain.info paper wallet secure? Post by: fonenumba on January 10, 2015, 06:03:41 AM I'm not sure, as I understood it Blockchain.info do NOT store your private key. I believe it's all in the client-side code. I could be wrong. Either way, you can generate paper wallets offline with BitAddress.org - don't do it online, download a copy and work offline. Assuming you are not visiting an imposter website, when you visit blockchain.info you use use javascrypt that is executed on your local computer that generates any new private key that you want to generate. It would not however be cold storage because it would be created by a computer that has previously "touched" the internet |