Bitcoin Forum
May 28, 2024, 12:32:35 PM *
News: Latest Bitcoin Core release: 27.0 [Torrent]
 
   Home   Help Search Login Register More  
Bitcoin Forum > Bitcoin > Development & Technical Discussion > Wallet software > Armory > Armory Devs: Can I safely make public my SecurePrint paper backup?
Pages: [1]
« previous topic next topic »
  Print  
Author Topic: Armory Devs: Can I safely make public my SecurePrint paper backup?  (Read 580 times)
pf (OP)
Full Member
***
Offline Offline

Activity: 176
Merit: 105


View Profile
September 27, 2015, 08:39:42 AM
 #1
It's a simple question that I kinda need answered:

Can I safely make public my SecurePrint paper backup?

If this is not the case, I really don't see the point of SecurePrint. Reason: The whole point of SecurePrint is to guard against the risk that the printed backup leaks to someone else. (That's why you write down the SecurePrint code on the paper after printing it.) That someone else could leak it public.

So without an affirmative answer to the above question, SecurePrint is pointless.
goatpig
Moderator
Legendary
*
Offline Offline

Activity: 3668
Merit: 1347

Armory Developer


View Profile
September 27, 2015, 11:47:18 AM
 #2
https://bitcointalk.org/index.php?topic=1127391.msg11912743#msg11912743

TLDR: If you don't like the security of SecurePrint, use fragmented backups.
https://btcarmory.com
pf (OP)
Full Member
***
Offline Offline

Activity: 176
Merit: 105


View Profile
September 27, 2015, 03:01:45 PM
 #3
Quote from: goatpig on September 27, 2015, 11:47:18 AM
https://bitcointalk.org/index.php?topic=1127391.msg11912743#msg11912743

TLDR: If you don't like the security of SecurePrint, use fragmented backups.

Thanks for reminding me.

I guess you're right. I could simply create a 2-2 fragmented backup. Print out one. Write the other down manually. In other words:

Instead of:
SecurePrint paper backup + SecurePrint code
I'd have:
1st fragment printed + 2nd fragment written down

This is a more secure alternative, right? Because with SecurePrint, if an attacker has the SecurePrint paper backup but not the SecurePrint code, he can still try to brute-force it. On the other hand, with the 2/2 fragmented backup, if the attacker gets only one of them, he can't even do anything. There's nothing he can brute force. Am I right? Or is there actually something he can brute force but it's just way more expensive than the SecurePrint brute force?
goatpig
Moderator
Legendary
*
Offline Offline

Activity: 3668
Merit: 1347

Armory Developer


View Profile
September 27, 2015, 03:48:47 PM
 #4
Quote from: pf on September 27, 2015, 03:01:45 PM
This is a more secure alternative, right? Because with SecurePrint, if an attacker has the SecurePrint paper backup but not the SecurePrint code, he can still try to brute-force it. On the other hand, with the 2/2 fragmented backup, if the attacker gets only one of them, he can't even do anything. There's nothing he can brute force. Am I right? Or is there actually something he can brute force but it's just way more expensive than the SecurePrint brute force?

Look up on Shamir Secret Sharing to understand the security behind fragmented backups. If you use SecurePrint fragmented backups, then the attacker really has nothing. Keep in mind the SecurePrint passphrase is unique per wallet, i.e. there's only one SP passphrase for any N fragments.
https://btcarmory.com
Pages: [1]
  Print  
Bitcoin Forum > Bitcoin > Development & Technical Discussion > Wallet software > Armory > Armory Devs: Can I safely make public my SecurePrint paper backup?
 « previous topic next topic »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!