I guess I dont trust hardware - why not just create your own seed phrase and pass phrase without any hardware to rely upon? That could work as well in this scenario right?
I am aware of creating your own BIP39 mnemonic phrase from a list of 2048 words.....the question then is to convert them to the keys to go with the chosen 12 or 24 words. I do not think that many users out there would opt to go with this if it becomes too technical.
Also then when it comes to generating a passphrase for the hidden wallet.
It should work but the question is again would the average Joe want to go thru this and be technical savvy enough to do it.
One could roll dice to determine the first 23 words or use something like Entropia Seed Tablets and use SeedSigner (or other hw) to calculate 24 word.
Talking about average Joe :
What will happen when average Joe (who is not tech savvy) creates password that looks complicated to him but in reality can be easily brute forced ?
I'm talking about the reputation of the company here... IMO It would be hard to explain to non tech savvy people why it's not Polymberbit fault.
You don't have to be tech savvy to create the recommended
Password of 16 characters or more. Examples of what a password should look like will be given....example
658%-@_#'$;$8387363-&+DFhsjdie&-@#
Try an crack that jack....I just punched it in randomly. Not a hard thing to do at all.
According to this strength Password website
https://www.passwordmonster.com/
it will take
3 thousand trillion trillion trillion years
Create a long passphrase, at least 16 characters long using letters, numbers and symbols. The longer the better.
And this way it's a 100% better than trusting the maker with keys.
That does not answer my question...
Again I will repeat....there will be samples given as examples.
At the end of the day it's up to the buyer to educate themselves a bit and do it right.
And no it will not be Polymerbit or the coin makers fault if they make a password that is too weak.
Just like its not a online companies fault when people use very weak passwords that can easily be guessed or brute forced.