~snip~
generating keys is done with a piece of code and a master public key no need to keep anything SECURE, there is no private key even one in the whole server to be saved and kept secure.
~snip~
That's enough for everyone to see that you are talking about something, which you have no knowledge of at all. You don't understand how one should develop a concept for automatic withdrawals. You don't understand that security plays a huge role, regardless of whether private keys are stored on the server or not. You don't understand that one can steal funds of a badly constructed web server which handles user funds even without any private key. You don't understand that your 'approach' (if you really want to call it approach) is just inefficient and retarded. So, stop talking about HD wallets. That was NEVER the topic in this thread. I know that you unfortunately can't understand this.. But in this case, just start getting some basic knowledge first before trying to help people (which results in delusional bad posts with zero quality / relevance). |
|
|
|
Is it even possible to create a hardware wallet and integrate it to a normal USB pendrive.
Simple answer, no. I am talking about copying the code embedded in hardware wallets like Trezor and Ledger Nano S and then integrating it to USB drives.
That's not possible. A hardware wallet consists of more than just a flash memory chip. 1. The above devices have a built-in screen that protects their device with a password. Now obviously our USB drive won't have that feature. If we remove that feature and implement the other features would that be doable thing ?
No, also you need some kind of verification which happens outside of your computer you are using to transact (preferably only on the hardware wallet itself). 2. Basically, the hardware devices are just USB drives with embedded code. Why can't it be copied and integrated on other USB drives ?
They are not. Hardware wallets have secure elements embedded which keep the secret information secure and do the signing operations. Like your credit card. It doesn't only consist of some plastic with a small flash memory. 3. If it is possible why haven't we seen people doing it ?
Because it is not possible. We have seen people who think it is possible, which simply just copied their wallet file onto the usb. But those people don't have a clue at all. 4. Can't a hacker get hands on one of these device and manipulate the code to get access to the wallet ?
Well I do know that it is encrypted through cryptographic algorithm which makes it almost impossible to hack the wallet by manipulating the code but I would like more info on this.
I guess you are talking about hardware wallets now (not usb sticks) ? IF some attacker is able to flash the firmware of a hardware wallet without erasing its secret information (seed), yes.. definitely possible. But you can't simply flash the firmware to get your own version on it without erasing all relevant data. If you would be able to do so, that would be quite a severe vulnerability (which already existed in ledgers hardware wallets, but got fixed). If you are not able to flash the firmware, you have to somehow get the secret information out of the device with the official firmware installed. And this is not possible, given that there are no vulnerabilities (which could always exist; especially side-channel attacks etc.. ). |
|
|
|
[...] op claimed that HD wallets are not good because s/he was confused about what the concept is [...]
Where did OP say that ? Maybe learn to read properly ? .. OR may be you need to learn it: Thanks bob123 for such a great clarification.
yeah the issue is I've to generate separate address for each user and in case of ethereum the hd wallets doesn't works like bitcoin where we can just select UTXOs and make a transaction.
bob123 gives the most optimal solution
It is where she applauded your irrelevant answer ignorantly and stated that hd wallets are not usefull because they don't work just like bitcoin! Obviously our newbie has read something (this is what newbies do) but her conclusion is absolutely wrong so she is going to make like thousands of key pairs (thanks to you) and figuring out how to save them! Ruining a cryptocurrency project probably in a third world country (again thanks to you and your desperate need for being applauded) You are just delusional. Even with a HD wallet, you HAVE TO GENERATE multiple private keys (1 per address). You obviously don't understand anything at all.. You DO NOT sign transactions with your SEED.. for gods sake.. better stop posting for a few years and learn all the basic stuff you don't know yet.. If instead of trying to show-off you bother to read op's inquiry it is more than obvious that s/he is trying to handle thousands of private keys because s/he is not aware of HD wallets and the feasibility of having one master key and thousands of bitcoin addresses assigned to users, it is why s/he asks about the security of keeping track of so many private keys supposedly on a server using a database.
OP never mentioned anything about 'keeping track of private keys', but on how to store them securely. Also.. how do you come to the conclusion that OP does not know what a HD wallet is  He never mentioned anything which could lead to that conclusion.  it is the opening post of the topic: Hi, I'm newbie in crypto world and working on a tranding platform. I've to generate separate addresses against every user and stuck at how to securely store the private keys. I've looked into the ecc encryption, AWS KMS, and hashicorp vault but the common thing among all the methods is, the decryption password or token is still stored on the server. So if the server got compromised everything is gone. Now my question is what is the best way to store the private keys. Thanks!
See? OP thinks she has tons of private keys to save, she is a traditional web developer, she knows handling large numbers of data needs database services and servers and is worried about security of this scheme. This is a common pattern among newbies and I've encountered it a zillion times and without illiterate posters like you around I've always been helpful by introducing HD wallets to them and ensuring them there is no crisis at all and they need to keep just two keys safe master public key and master private key some more details and we are done. OP HAS TO generate multiple private keys. A HD wallet just says HOW TO create them.. But you still need 1 per address.. Is that really that hard to understand ?! The point is.. he wants to keep them SECURE.. not HOW he creates them.. You have been helpful ?  Name me a few web service which handle user funds where you 'helped' a newbie to set it up.. I'd love to start some penetration testing against those platforms.. probably wouldn't take more than a few hours to find severe vulnerabilities.. And you are the one to blame. Even with a HD wallet, you have to handle all private keys.
Good (and big) online services do not use a wallet software like electrum etc. to handle their keys. They build their own software (which obviously have to handle private keys..).
Irrelevant: Your scenario is not applicable to all online services, most of them does not even need any form of hot wallet Misinformation: They don't keep track of 'private key s' there is just one private key to be kept secure for the hot wallet and it is not common case and is applicable to centralized exchange services and similar applications that are supposed to support withdraw/refund operations. In the rest of your post you are rehashing your above claims wasting your and my time. I have never encountered such a large amount of nonsense in 1 person. You are a shame. You can NOT SIGN transactions with your master private key. You can derive your private keys from it, but you still need to use them to sign transactions.. So.. what do you do ? Create the private key, sign a transaction and delete it.. to 'not having to keep it'.. because of 'security' ? Please stop being so delusional. Thats horrific. You don't have any clue on how to create a concept for an online service. You probably can't even protect your own coins properly. There is literally just 1 post from you which contains the truth: I just filled all of the info and proved to be the foollest btctalk member ever. I think it worth like 500 merits from theymos directly, I deserve legendary title because of it. This shows 1) how dumb you are and that you even know it and 2) that you are eager for merit. That's not a good combination |
|
|
|
Where did you store the SEED or private keys? Online or a local file?
On a secure cloud storage.
Mind telling us which cloud storage you have used ? And did you encrypt your file which contained the seed ? Or did you store it in plain text ? What VPN server did you use ? Did you only use the VPN to connect from your university network to your homenetwork ? Or did you route the traffic from your home network trough a VPN server ?
My university network is pretty secure though, no ones getting into that easily (even I can't most of the time as you need an 802.1x rsa certificate)...
The certificate usually is just for the client (you) to ensure you are communicating with the correct server. The authentication is based on WPA2-Enterprise / PEAP / MSCHAPv2 ? If so, the certificate is just to make sure your credentials are passed to the correct RADIUS server. If you didn't import the certificate and connect to the wrong wifi, your credentials can be read by the malicious person operating the access point. But you should always be able to connect without the certificate (even if it is not recommended security-wise). |
|
|
|
IF the transaction is confirmed (which it obviously is) AND you hold the private key associated with the public key / address -> you DID receive your transaction. In this case, you are just not seeing it inside of your wallet, which can be because of multiple reasons. Your level of information in this thread is very low. Did you read the sticky [READ BEFORE POSTING]-thread ? At least answer achow101's question: What wallet software are you using?
'I didn't receive them ... what's going on' is literally no information at all. We can't help you without knowing what software you are using, etc.. |
|
|
|
So, you did it, you grinned some merits by talking anti-bcash and remaining aligned with mainstream, hating bcash is good business, isn't it?
Why are you so keen on getting those merits ? It's not like its hard to get them... at least not if you know what you are talking about and are not a complete retard  Your shallow understanding of on-chain scaling is really disappointing: I'm talking about much more sophisticated schemes like sharding and side chains
You really seem to lack the ability to read properly. Like i said: No.. honestly.. on-chain scaling is good (except for just doubling the block size, thats absurd), but not enough.
Also.. side chains counts towards on-chain scaling now?  Last words:
I noticed you have done this in few other topics I've posted in them in last few days, like a stalker, saying meaningless things
These 'meaningless' things were just me correcting all of your mistakes you have done. Someone has to correct the nonsense misinformation you are spreading. You are harming this community. I don't know whether it is because you simply can not read, or because you just don't want to read.. Maybe it is even because you don't understand what you are reading.. But what you are posting is wrong in 80% of the cases. So, come on, whine more about me getting merit while you desperately need them so much. I won't argue with you. There is no reason to argue with people who do not understand what is being written / asked in most of these threads. But if i see more misinformation from you being spread, i definitely will correct it. Not to teach you, but to keep the information in relevant threads here correct. |
|
|
|
[...] op claimed that HD wallets are not good because s/he was confused about what the concept is [...]
Where did OP say that ? Maybe learn to read properly ? .. If instead of trying to show-off you bother to read op's inquiry it is more than obvious that s/he is trying to handle thousands of private keys because s/he is not aware of HD wallets and the feasibility of having one master key and thousands of bitcoin addresses assigned to users, it is why s/he asks about the security of keeping track of so many private keys supposedly on a server using a database.
OP never mentioned anything about 'keeping track of private keys', but on how to store them securely. Also.. how do you come to the conclusion that OP does not know what a HD wallet is He never mentioned anything which could lead to that conclusion. Even with a HD wallet, you have to handle all private keys. Good (and big) online services do not use a wallet software like electrum etc. to handle their keys. They build their own software (which obviously have to handle private keys..). It is really crazy, you give irrelevant information about hot wallet/cold wallet stuff to a confused newbie and s/he says thank you, then somebody tries to really help and you are attacking him because you desperately need the credit?  Irrelevant information ? Sure, if you want to build an exchange or any other online service which handles funds of user, knowledge about hot-/cold- wallets is useless.. You didn't help at all. All you did was saying 'yo op, use HD wallet, it is best'. It is a shame that you even dare to comment in this thread without having knowledge regarding the important parts of safely constructing a concept for OP needs.. Of course there is always a private key corresponding to a public key, the point with HD wallets is that you don't need to store the private keys like what op thinks instead your wallet software derives the corresponding private key from the master private key. You don't need to store this master private key on the server at all because the public keys are not generated using this key but derived from a master public key which is useless for spending funds.
You still don't understand what OP really wanted to know.. So, op needs to be informed about HD wallets instead of being fooled by your irrelevant poor knowledge about hot wallets and cold wallets.
HD wallets are not the solution. That's not what he asked. He does know how HD wallet works (see his last post).. thats completely not he topic here.. Using a HD wallet won't secure automatic withdrawals and won't protect against attacks, does it ? So, instead of posting nonsense, please educate yourself before trying to 'help' other people.
bob123 is saying the storage of private keys on server is inevitable in case of automatic withdrawals. but we can use HOT and COLD wallet mechanism to store some of our funds in HOT wallets that will be used for automated withdrawals and rest of our funds will be stored in a COLD wallet that is an offline wallet and not connected to internet. This will save us from hackers to stole all of our exchange funds only HOT wallets funds can be stolen.
Not necessarily. You don't need the private keys stored on the server, you just need a route between your web server and a server which does handle the payouts. A concept without storing any private keys on the web server would be, that you have a 'withdrawal-server' which has the private keys and queries your web server to get a current list of 'next withtdrawals'. This is the server which creates the transactions / broadcasts them. Or - similarly - the webserver creates unsigned transactions with the public keys and sends them to the 'withdrawal-server', which then signs and broadcasts them. All of these possibilities include that there is a way for an attack to theoretically get transactions injected into the flow. So none of these is completely sure. But this would be a concept to avoid private keys stored on the server and therefore against them being stolen. |
|
|
|
If you have latest firmware for your Nano S then you can not find that option, it is disabled with 1.4.2 firmware, and this is definitely not the cause of your problem.
Wasn't it (in previous firmware versions) that you could either access your nano s via 3rd party wallets with browser support on OR native ledger application (back then chrome addons) without browser support ? Or did this only apply to ETH? I don't remember properly  I have identical problem with pairing Nano S with Electrum, the only difference was in OS (Windows 7). You should try my advice from previous post, just follow that and I'm pretty sure you will solve this problem.
Which advice? Bringing everything up-to-date ? Or removing all applications and reinstalling them ? I can't imagine the latter one would fix that issue But outdated software could definitely be the reason, unfortunately it seems that OP doesn't want (?) to tell us his software-/firmware versions  At least he didn't answer to whether his nano s / electrum is up-to-date. |
|
|
|
Now this is your personal opinion. $60 can be a big amount if you see it as an unnecessary expense. It is a waste. You don't need to spend $60 secure your millions. You can do it for free. What if you need to move them? Just install a fresh linux. That's free too.
Ye, i always have my encrypted paper wallet with me and my laptop with a fresh linux iso on my usb. That's so handy. Who needs a small device with a weight less than 100g, which secures your coins and can be always accessed everywhere without putting your BTC at risk, if he can just carry around a laptop + linux iso + paper wallet to access his BTC. You might decide that it is unnecessary for YOU. But calling hardware wallets a 'dumb concept' is simply retarded. Name one way to securely carry BTCs with you together with the ability to spend them everywhere without much hassle.. It is not bullshit and it is not wrong. Android comes with shitloads of bloatware which is a security risk. IOS is completely free of bloatware.
IOs free of bloatware ? Ok, apple fanboy. Is this a fact because steve jobs appeard in your dreams and spoke to you ? Or how do you come to that delusional conclusion ? And sure, IOs does not have any vulnerabilities. If the code is closed source, noone knows how to exploit them, correct ? Security by obscurity has always been a good idea.. IOS is so clean and feels good. Again my personal opinion, you don't have to agree.
Must feel very good to pay 800$ for a mobile which has a worse (closed source) OS and much inferior hardware than a 400$ android device. I guess you like bitten apples. |
|
|
|
Beware on Ledger live application according to ledger twitter announcement recently that ledger live is currently infected with malware if you ledger live is updated with a fake update it will ask for 24-word recovery phrase.
No. Ledger live is NOT infected with malware. Not a single update is infected with malware. There is a simple malware spreading which replaces the original ledger live with a malicious software which looks like ledger live asking for the seed. These are 2 completely different things. The same can happen for each application. Bitcoin core, electrum, microsoft word, your browser, etc... The fact that they chose to do THAT, shows that they are very desperate.. They could have done way more with access to the victims computer (who knows what they are actually doing). But just replacing ledger live is a really bad attempt to make money. If they are not as stupid as i think they are, they also compromise your whole system, and not just replace ledger live. Thanks for the suggestions. I am using Windows 10 only. Trying to disable browser support, as suggested by bob123, "opening the BTC app on your nano s, then open the settings and check that browser support is disabled." But when I open Settings the only choice I see is "Public keys export approval". So cannot find way to turn off browser support. If I decide to simply forget this problem and use Ledger Live, do I still need to change the browser support?
Nevermind, i think they removed this option which is automatically enabled now (not sure about that). Did you check that everything is up-to-date ? |
|
|
|
1- Bitcoin uses ECDSA 256k1 which is not considered very strong compared to electronic signature schemes currently employed with 2048 bits length and more.
Which 'electronic' signature schemes are you exactly talking about ? I hope you are not talking about RSA.. 2- Many implementation bugs have been identified (and fixed, thanks god) in ECDSA key generation libraries
Like you wrote... in libaries. Some random developer wrote a buggy libary which allowed room for exploitation.. So.. how is this related to ECDSA / bitcoin at all ? 3- Many authors have suggested conspiracy theories about NSA implementing back doors in the whole ECDSA algorithm and/or related software/hardware.
And the government controls all of our brains with the help of chemtrails! Please.. for the sake of satoshi.. stop posting so much retarded misinformation. That hurts reading. |
|
|
|
If you aren't going to actively spend crypto why pay for a HW wallet? Get a paper wallet for free and hide it away. Buy more coins with the HW wallet money.
Because you might still want to access your coins and move them around / use them instead of hoarding them for 10 years ?! Maybe because you want to take BTC with your for a bigger purchase without risking losing them all ? Who cares about 60$, if all of your coins are secured for that money?! This 'malware' is the dumbest form of a malware. I mean.. i could also create a malware which says: "Your paper wallet has been updated, please enter your private key, or directly send your coins to 12ScammerAddress to not lose them". It is the same as with the current malware. HW seeds and paper wallet private keys do not belong on the computer. And people who don't know this, didn't use their brain at all when setting up their wallet. IOS > Android.
It was always like that. Android is big chunk of malware I wouldn't even trust my $100 on it. That's more like a personal choice but that's how I see it.
Ios > android is bullshit. Android a big chunk of malware.. is bullshit. It is your personal opinion, and thats fine. But it is wrong. You are saying that an closed source operating system whose 'encryption' and screen lock can be circumvented by federal agencies and apple itself is better than an open source mobile OS based on linux with proper screen lock and proper encryption ? WTF, dude. Less smoking, more thinking. I mean.. i don't care what your personal opinion is.. but stop spreading misinformation. |
|
|
|
No! Absolutely disagree with this assertion, the only true scaling solution to bitcoin has to be on-chain, no exception.
You mean onchain 'scaling' like btrash ?  No.. honestly.. on-chain scaling is good (except for just doubling the block size, thats absurd), but not enough. There is no good (non-btrash-propaganda-) argument against off-chain scaling.. But a lot against on-chain scaling.. |
|
|
|
Listen maybe it would be better if you simply untarred the tarball and ran electrum directly. Don't bother with installing it. Just cd to the directory that is created by extracting the tarball and do a ./run_electrum. Make a link to that file on your desktop for easy access.
Or - even more easy - download the appimage. He still might be missing some dependencies which would result in errors. Using the appimage would probably be the best way since it comes with all needed dependencies and is easier to use for people who are not that familiar with linux: wget https://download.electrum.org/3.3.4/electrum-3.3.4-x86_64.AppImage
chmod +x electrum-3.3.4-x86_64.AppImage and then you can run it with this below. ./electrum-3.3.4-x86_64.AppImage |
|
|
|
Wrong! HD wallets work just fine for both Ethereum and bitcoin and every other cryptographic system that is based on ECDSA standard. period.
No. OP is right, you are wrong. Bitcoin is following a UTXO model, where ethereum has an account model. This definitely makes a difference. OP never said that HD wallets do not exist, he said that it works differently when comparing ethereum to bitcoin, which is correct. bob123 gives the most optimal solution
No, he does not instead of wasting your time by catching up with irrelevant topics like cold vs hot wallets and alike, just focus on the main problem, you need multiple receiving addresses mapped to each user and a single master key to spend from all or not? Decide and choose the right direction.... Hot- / cold wallets is an irrelevant topic when hosting an online service which handles user funds? The 'main problem' is the mapping from addresses to user ?? I really don't get what you are trying to say. If you believe the correct handling of the funds (hot-/cold wallet) is irrelevant, you obviously don't have a clue at all. And if you additionally think that the mapping is a problem, you absolutely don't know what you are talking about. That is probably the easiest task of creating such a service.. Also, there is no reason to have a 'single master key' to spend funds from. That's not even possible. You need 1 private for each address. The private keys can be derived using the same seed, but thats not the topic here at all (and won't allow you to spend funds from one 'master key').. So.. instead of posting bullshit without having any clue, what about you browse through the forum for a few month first (to learn all the stuff you obviously don't know yet) before trying to 'help' someone ? op, You need to check HD wallets concept. As @buwaytress has correctly reminded you don't need a separate key pair/wallet for each user/invoice Do you even know how a HD wallet works ? Not like HD wallets would generate private keys or something silly like that... Please stop creating post which contain anything 'technical' regarding bitcoin. You are just embarrassing yourself. |
|
|
|
Try to install Electrum with --upgrade parameter python3 -m pip install --user Electrum-3.3.4.tar.gz[fast] --upgrade In very few cases, remove [fast] parameter (?) fix the problem python3 -m pip install --user Electrum-3.3.4.tar.gz --upgrade They don't work. They do work. You did download the .tar.gz from electrum.org, right ? You did not just try the commands in your command line without having the file in your current directory ? Also, "They don't work" is pretty little information, don't you think ? Linux gives you an output explaining why the command didn't work... The easiest would probably be, if you simply download and use the app image: Try the appimage if it still not working. Here's the command line below. wget https://download.electrum.org/3.3.4/electrum-3.3.4-x86_64.AppImage
chmod +x electrum-3.3.4-x86_64.AppImage and then you can run it with this below. ./electrum-3.3.4-x86_64.AppImage If you want to have it installed, and not just as an executable containing all dependencies, do as ETFBitcoin said and download the .tar.gz and run python3 -m pip install --user /path/to/Electrum-3.3.4.tar.gz[fast]
But again, make sure to verify the signature before installing!What version of python3 are you using ? To find out, run this: python3 -V
|
|
|
|
[...]
so I am going to share my top tip on what you can do to prevent unauthorized access to your funds
1. Write down your backup phrase and Private keys.
Having a backup does not prevent unauthorized access at all. This is a tip to increase the safety of your funds, not the security. A ' real pro tip' to prevent unauthorized access would be to decrease the attack surface (e.g. offlline wallet -> not accessible through internet). You would 'just' have to secure it from offline access then.
I find hardware wallets to be completely Unnecessary, they would be one of the first things targeted if there were any vulnerabilities. I prefer to use an old laptop that is completely clean and airgapped. Sign everything offline and use photos of transaction codes.
That's definitely a good way of storing your coins securely. But not everyone wants to travel with a second laptop, just to be able to spend some BTC. A hardware wallet is - by far - not unnecessary. It is a way to store your coins secure (not as secure as an air-gapped cold storage) while still having the convenience and portability of a mobile wallet. |
|
|
|
|
Bitcoin Forum > Bitcoin > Bitcoin Technical Support
Please explain how this is a technical question regarding bitcoin.
Hint: It's not.
Please move it into the correct sub (Bottom left: move topic). Choose an appropriate sub (Alternative Cryptocurrencies -> ... ).
|
|
|
|
If you use Linux OS, you might need to configure your udev permission. Make sure the USB cable and port aren't damaged.
Missing udev permissions would result in a different error ('no permission' or something similar). Also, i believe the error OP is facing only occurs under windows (please correct me if i'm wrong). @OP: 'Browser support' is disabled on your nano s, right ? Becaues it has to, in order to work with electrum. You can disable it by opening the BTC app on your nano s, then open the settings and check that browser support is disabled. |
|
|
|
It might be also worth to note that phishing can not only happen through fake sites. If a website (e.g. an exchange) is vulnerable to XSRF (Cross-Site request forgery), one might be able to access / change your login credentials or do anything else in your name. For example: Lets look at the exchange: www.exchange.comThis (theoretical) exchange is vulnerable to XSRF and handles most actions with GET-Requests. If you are logged in into www.exchange.com, i can send you a link in this format (given that that's how the webserver / PHP script works): www.exchange.com/settings.php?newpassword=MySecretNewPasswordThis will change your password to MySecretNewPassword, and the attacker can instantly log in (given that no 2FA etc. is activated). This is a simple (and easily recognizable) example. But URLs can be quite long where it is not that easy to see anymore. Furthermore an attacker might be able to encode the parameter, depending on the implementation of the webserver. So instead of ?newpassword=MySecretNewPassword, you would see some random-looking long string of characters. Just checking the domain name and the TLD is not enough here. |
|
|
|
|
Show Posts
