Hello everyone,
I am currently using Armory for my cold storage. The hot wallet never saw an internet connection and was backuped to a paper wallet. Everything was done with the 0.90 Ubuntu version.
I also created a watch only copy of my wallet to see my balance.
I currently don't have any problems but still would like to know how Armory works in detail.
First, this is how I understood Armory works (correct me if I'm wrong):
Armory has a deterministic way to create new keys based on a seed. All public keys are the same no matter if they are created from the hot wallet or the watch only wallet (I actually tested this, just generating a few new keys in both wallets).
OK now to my questions:
1. If the private keys are not stored in the watch only wallet, how can a new public key be created, that maps to the new private key in the hot wallet?
2. Is the seed of the wallet also stored in the watch only copy?
3. If one of my private key will be compromised, will an attacker be able to generate all following private keys (for example if he has the watch only copy)?
4. Will an attacker have any use for the watch only wallet (other than seeing my BTC balance)?
hope these questions make sense