Bitcoin Forum
November 09, 2024, 09:11:37 AM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1] 2 »  All
  Print  
Author Topic: Are some private keys safer than others?  (Read 2166 times)
alikim (OP)
Member
**
Offline Offline

Activity: 80
Merit: 11


View Profile
September 20, 2017, 09:57:37 PM
 #1

Considering that many people generate public keys non-stop, I guess some private keys are better to be avoided, for example private key 1 or the maximum key value allowed. Are there any general rules for checking that you private key is safe in this terms i.e. how far it is from the both ends of the range for example, or from the middle or with a few zero bytes in it or with a simple pattern that might attract people picking up keys?

The same question about seeds that are used to generate private keys: are all seeds acceptable or are there some checks in place?

Thank you!
jackg
Copper Member
Legendary
*
Offline Offline

Activity: 2856
Merit: 3071


https://bit.ly/387FXHi lightning theory


View Profile
September 20, 2017, 10:51:27 PM
 #2

Considering that many people generate public keys non-stop, I guess some private keys are better to be avoided, for example private key 1 or the maximum key value allowed. Are there any general rules for checking that you private key is safe in this terms i.e. how far it is from the both ends of the range for example, or from the middle or with a few zero bytes in it or with a simple pattern that might attract people picking up keys?

The same question about seeds that are used to generate private keys: are all seeds acceptable or are there some checks in place?

Thank you!

This more comes down to how your computer functions IMO. If your compuer is good at randomely generating numbers, then your private keys/public keys should be safe and not be repeated. There have been reports that the randomisation in linux that is used is not as accurate as the randomisation in Windows (I'm not sure how accurate this was or whether it's still significant enough to cause a difference).

It's probably a good idea to check addresses/public keys on block explorers first to see if there's anything significant on them and see if they've already been used (but there probably won't be - and if they have, try to report it and not take any temptation to steal from the user's address you have the private key of if by an odd chance you manage to generate someone else's private key - but this would be near impossible).
aleksej996
Sr. Member
****
Offline Offline

Activity: 490
Merit: 389


Do not trust the government


View Profile
September 21, 2017, 12:48:08 AM
 #3

Considering that many people generate public keys non-stop, I guess some private keys are better to be avoided, for example private key 1 or the maximum key value allowed. Are there any general rules for checking that you private key is safe in this terms i.e. how far it is from the both ends of the range for example, or from the middle or with a few zero bytes in it or with a simple pattern that might attract people picking up keys?

The same question about seeds that are used to generate private keys: are all seeds acceptable or are there some checks in place?

Thank you!

Of course small keys aren't safe. There are no checks for key nor for the seed words. Only important thing is that it was randomly generated.
If it was, then it would be pointless to check if it some small key due to the huge possible range of numbers it could be. If there was any realistic chance for a key to be small, then random number generator is not doing a good job in the first place and that would be the actual problem to solve.

You simply shouldn't choose the numbers or seeds yourself, because as a human you are not a good source of randomness. As such, there is no need for checks then, as it is simply random otherwise.

This more comes down to how your computer functions IMO. If your compuer is good at randomely generating numbers, then your private keys/public keys should be safe and not be repeated. There have been reports that the randomisation in linux that is used is not as accurate as the randomisation in Windows (I'm not sure how accurate this was or whether it's still significant enough to cause a difference).

It's probably a good idea to check addresses/public keys on block explorers first to see if there's anything significant on them and see if they've already been used (but there probably won't be - and if they have, try to report it and not take any temptation to steal from the user's address you have the private key of if by an odd chance you manage to generate someone else's private key - but this would be near impossible).

I doubt that Windows is better at randomness. Not just because it is generally less security focused system and is closed source, which means there could be a quite predictable algorithm that chooses numbers under the hood. But also because there were many cases when the randomness was attacked in .NET framework. Some of the ransomwere was cracked due to these issues and they just started popping up relatively recently.

Of course there were old Linux versions with bad RNG, and some old routers still have crackable WiFi because of this, but as an open source software, you know what you are using.
AVAMONEY
Full Member
***
Offline Offline

Activity: 406
Merit: 100



View Profile
September 21, 2017, 03:01:29 AM
 #4

Considering that many people generate public keys non-stop, I guess some private keys are better to be avoided, for example private key 1 or the maximum key value allowed. Are there any general rules for checking that you private key is safe in this terms i.e. how far it is from the both ends of the range for example, or from the middle or with a few zero bytes in it or with a simple pattern that might attract people picking up keys?

The same question about seeds that are used to generate private keys: are all seeds acceptable or are there some checks in place?

Thank you!
use generate privates keys, since it is important key to access your account, you need strong combinations to make it
aplistir
Full Member
***
Offline Offline

Activity: 378
Merit: 197



View Profile
September 21, 2017, 07:52:38 AM
 #5

Quote
Of course small keys aren't safe. There are no checks for key nor for the seed words. Only important thing is that it was randomly generated.
If it was, then it would be pointless to check if it some small key due to the huge possible range of numbers it could be. If there was any realistic chance for a key to be small, then random number generator is not doing a good job in the first place and that would be the actual problem to solve.

If it is truly random, then your randomly generated private key could be 1 just as probably as anything else. I prefer to check that my randomly generated key is NOT very small  or close to the biggest possible number.

My Address: 121f7zb2U4g9iM4MiJTDhEzqeZGHzq5wLh
posi
Hero Member
*****
Offline Offline

Activity: 2282
Merit: 579


DGbet.fun - Crypto Sportsbook


View Profile
September 21, 2017, 10:18:09 AM
 #6

What I understand is that generating private is not bad or not secure and what you need to put in check or always make sure is secure is your passcode/password which mean you have to use a genuine and uncrackable.

onnz423
Hero Member
*****
Offline Offline

Activity: 840
Merit: 508


Make winning bets on sports with Sportsbet.io!


View Profile
September 21, 2017, 10:50:52 AM
 #7

use generate privates keys, since it is important key to access your account, you need strong combinations to make it

Which combinations are you talking about now?

If it is truly random, then your randomly generated private key could be 1 just as probably as anything else. I prefer to check that my randomly generated key is NOT very small  or close to the biggest possible number.

That is a good exercise, however the bitcoin private keys would be pretty much uncrackable at least on modern computer. I think winning in  a lottery has a bigger chance, than generating a private key that already has bitcoins on it.

What I understand is that generating private is not bad or not secure and what you need to put in check or always make sure is secure is your passcode/password which mean you have to use a genuine and uncrackable.

Generating vanity addresses is the same security as far as i know, as just using the automatically generated keys by your wallet. Also it does not matter if you have a password, unless you have a BIP39 encrypted key, which is not used by the wallets by standard. I  use at least vanitygen for my keys, and generating a key on vanitygen is as safe as your computer is, assuming that you take care of your security well enough.

   ▄▄██████▄▄
  ████████████
███▄▄
 ██████████████▀▀▀██▄
████████████████   ▀██▄
████████████████     ▀██
██████████████       ██▌
██████████████        ▐██
██▌▀▀██████▀▀         ▐██
▐██                   ██▌
 ██▄                 ▄██
  ▀██▄             ▄██▀
    ▀██▄▄▄     ▄▄▄██▀
      ▀▀█████████▀▀





███████████████████████████
████████▀▀       ▀▀████████
█████▀   ▄ ▀███▀ ▄   ▀█████
████  ▄████▄ ▀ ▄████▄  ████
███  ▄ ▀███▀ ▄ ▀███▀ ▄  ███
██  ▄██ ▀▀ ▄███▄ ▀▀ ██▄  ██
██  █▀ ▄█ ███████ █▄ ▀█  ██
██   ▄███▄ █████ ▄███▄   ██
███  ████▀ ▄▄▄▄▄ ▀████  ███
████  ▀ ▄ ▀█████▀ ▄ ▀  ████
█████▄  ▀▀▄ ███ ▄▀▀  ▄█████
████████▄▄       ▄▄████████
███████████████████████████





█▀▀











█▄▄
▀▀█











▄▄█
█▀▀











█▄▄
▀▀█











▄▄█
aleksej996
Sr. Member
****
Offline Offline

Activity: 490
Merit: 389


Do not trust the government


View Profile
September 21, 2017, 11:39:36 AM
 #8

Quote
Of course small keys aren't safe. There are no checks for key nor for the seed words. Only important thing is that it was randomly generated.
If it was, then it would be pointless to check if it some small key due to the huge possible range of numbers it could be. If there was any realistic chance for a key to be small, then random number generator is not doing a good job in the first place and that would be the actual problem to solve.

If it is truly random, then your randomly generated private key could be 1 just as probably as anything else. I prefer to check that my randomly generated key is NOT very small  or close to the biggest possible number.

Your address could also be generated by someone else by chance, but this is not considered a problem due to ridiculously small possibility that is still way higher then that your key is 1 or anything else small. There are millions of addresses and there was never a collision and there never will be if mathematics about it hold up. Checking for couple of numbers (even a million is considered a couple of numbers) is unreasonable to say the least. Chances are just so low, that you might as well not waste your time or start worrying for all the more likely things to happen, like getting hit by a lightning a thousand times in a row.

Humans are just not good at understanding such huge numbers so people naturally worry about address collisions and similar stupid things.
Don't worry, your key will not be in the first or the last million keys. It is simply not going to happen if your random number generator is any good.
aplistir
Full Member
***
Offline Offline

Activity: 378
Merit: 197



View Profile
September 21, 2017, 01:07:32 PM
 #9

There are millions of addresses and there was never a collision and there never will be if mathematics about it hold up. Checking for couple of numbers (even a million is considered a couple of numbers) is unreasonable to say the least. Chances are just so low, that you might as well not waste your time or start worrying for all the more likely things to happen, like getting hit by a lightning a thousand times in a row.

Humans are just not good at understanding such huge numbers so people naturally worry about address collisions and similar stupid things.
Don't worry, your key will not be in the first or the last million keys. It is simply not going to happen if your random number generator is any good.
Would not be so sure about the never will be a collision -part
Yes. It is extremely unlikely, but unlikely things can an do happen.
There are several people, who have won the lottery twice. Unlikely, but it happens.
There are also people that have been hit by lightning multiple times.

My Address: 121f7zb2U4g9iM4MiJTDhEzqeZGHzq5wLh
PrivCoin
Full Member
***
Offline Offline

Activity: 356
Merit: 113


View Profile WWW
September 21, 2017, 01:26:19 PM
 #10

There are millions of addresses and there was never a collision and there never will be if mathematics about it hold up. Checking for couple of numbers (even a million is considered a couple of numbers) is unreasonable to say the least. Chances are just so low, that you might as well not waste your time or start worrying for all the more likely things to happen, like getting hit by a lightning a thousand times in a row.

Humans are just not good at understanding such huge numbers so people naturally worry about address collisions and similar stupid things.
Don't worry, your key will not be in the first or the last million keys. It is simply not going to happen if your random number generator is any good.
Would not be so sure about the never will be a collision -part
Yes. It is extremely unlikely, but unlikely things can an do happen.
There are several people, who have won the lottery twice. Unlikely, but it happens.
There are also people that have been hit by lightning multiple times.

I have not done the exact math before responding, but to get a collision is far beyond the scale of getting hit by lightning multiple times. I think it would be more like getting struck by lightning every day for a year or a decade kind of thing.

aplistir
Full Member
***
Offline Offline

Activity: 378
Merit: 197



View Profile
September 21, 2017, 01:39:04 PM
 #11

I have not done the exact math before responding, but to get a collision is far beyond the scale of getting hit by lightning multiple times. I think it would be more like getting struck by lightning every day for a year or a decade kind of thing.

Yep. It is very unlikely. There are awfully lots and lots of numbers in a private key.

But, anything can happen. And sometimes amazing things do happen.

My Address: 121f7zb2U4g9iM4MiJTDhEzqeZGHzq5wLh
aleksej996
Sr. Member
****
Offline Offline

Activity: 490
Merit: 389


Do not trust the government


View Profile
September 21, 2017, 06:45:08 PM
 #12

I have not done the exact math before responding, but to get a collision is far beyond the scale of getting hit by lightning multiple times. I think it would be more like getting struck by lightning every day for a year or a decade kind of thing.

Yep. It is very unlikely. There are awfully lots and lots of numbers in a private key.

But, anything can happen. And sometimes amazing things do happen.


There are different scales of unlikely. There is winning a lottery unlikely and falling through the floor due to quantum tunneling of every particle in your body unlikely. It is one thing to win a lottery twice and another to trow a can of toothpicks on the floor and them all stacking up vertically one on top of another and staying balanced like that.

You simply don't understand the scale here. Winning a lottery is more common then one in a billion and a billion is a joke for address collision. If there was a lottery that only one in 7 billion people won, getting address collision is like one person wining it billion times in a row all of a sudden (actually not even close, not even quadrillion is anywhere close, the number is so high that you can't possibly humanly understand).

Bitcoin private key is usually a 256-bit number, that is like 77 zeros. A billion is just 9. A billion of billions (quadrillion) is just 18. So try quadrillion sets of quadrillion sets of quadrillion sets of quadrillion numbers, well if you can wrap your head around it (you can't) it is still 100 000 that amount.
PrivCoin
Full Member
***
Offline Offline

Activity: 356
Merit: 113


View Profile WWW
September 21, 2017, 07:26:57 PM
 #13

I have not done the exact math before responding, but to get a collision is far beyond the scale of getting hit by lightning multiple times. I think it would be more like getting struck by lightning every day for a year or a decade kind of thing.

Yep. It is very unlikely. There are awfully lots and lots of numbers in a private key.

But, anything can happen. And sometimes amazing things do happen.

It is one thing to win a lottery twice and another to trow a can of toothpicks on the floor and them all stacking up vertically one on top of another and staying balanced like that.

This guy gets it.

zmhtech
Member
**
Offline Offline

Activity: 108
Merit: 10


View Profile WWW
September 21, 2017, 11:54:10 PM
 #14

I think that some are compared to others. some have brain wallet phrases attached to them that may be easy to guess.
aplistir
Full Member
***
Offline Offline

Activity: 378
Merit: 197



View Profile
September 22, 2017, 08:05:35 AM
 #15

I think that some are compared to others. some have brain wallet phrases attached to them that may be easy to guess.

Yes.
Many brain wallet addresses have already been "guessed".
Also some human selected keys have been found.
And there has been bad random number generators in use, which have ended in weaker keys.

And a collision is super duper unlikely, but not impossible.

My Address: 121f7zb2U4g9iM4MiJTDhEzqeZGHzq5wLh
NewBet
Hero Member
*****
Offline Offline

Activity: 966
Merit: 500


View Profile
September 22, 2017, 09:17:31 PM
 #16

Quote
Of course small keys aren't safe. There are no checks for key nor for the seed words. Only important thing is that it was randomly generated.
If it was, then it would be pointless to check if it some small key due to the huge possible range of numbers it could be. If there was any realistic chance for a key to be small, then random number generator is not doing a good job in the first place and that would be the actual problem to solve.

If it is truly random, then your randomly generated private key could be 1 just as probably as anything else. I prefer to check that my randomly generated key is NOT very small  or close to the biggest possible number.

I don't see how any standard private key could get hacked in today's world.

I mean, in the future when quantum computing comes around we will definitely need to take that into consideration, but in the meanwhile there is not much to worry about if you use the standard private keys.
alikim (OP)
Member
**
Offline Offline

Activity: 80
Merit: 11


View Profile
September 22, 2017, 09:57:09 PM
 #17

I don't see how any standard private key could get hacked in today's world.

I mean, in the future when quantum computing comes around we will definitely need to take that into consideration, but in the meanwhile there is not much to worry about if you use the standard private keys.

What is a "standard" private key?
aplistir
Full Member
***
Offline Offline

Activity: 378
Merit: 197



View Profile
September 23, 2017, 10:19:47 AM
Last edit: September 23, 2017, 09:51:08 PM by aplistir
 #18

I don't see how any standard private key could get hacked in today's world.

I mean, in the future when quantum computing comes around we will definitely need to take that into consideration, but in the meanwhile there is not much to worry about if you use the standard private keys.

Even a quantum computer CAN'T get a private key from a bitcoin address because sha256 hash algorithm is quantum resistant.
However a quantum computer can get the private key from the public key, which is visible if you use bitcoin incorrectly and re-use your address. Public key becomes visible, when you have made a single spend action from your address.

All keys are "standard" private keys. Some of them can be weak. eg. "1", or any key that is too simple. If you generate a key truly randomly, then you can get a weak or a strong key.



My Address: 121f7zb2U4g9iM4MiJTDhEzqeZGHzq5wLh
jackg
Copper Member
Legendary
*
Offline Offline

Activity: 2856
Merit: 3071


https://bit.ly/387FXHi lightning theory


View Profile
September 23, 2017, 11:30:23 PM
 #19

I don't see how any standard private key could get hacked in today's world.

I mean, in the future when quantum computing comes around we will definitely need to take that into consideration, but in the meanwhile there is not much to worry about if you use the standard private keys.

Even a quantum computer CAN'T get a private key from a bitcoin address because sha256 hash algorithm is quantum resistant.
However a quantum computer can get the private key from the public key, which is visible if you use bitcoin incorrectly and re-use your address. Public key becomes visible, when you have made a single spend action from your address.

All keys are "standard" private keys. Some of them can be weak. eg. "1", or any key that is too simple. If you generate a key truly randomly, then you can get a weak or a strong key.




Im not sure I understand this the way you do. I don't think you can generate private keys from a public key with the way you suggest. It's possible to get the private key by brute forcing to reveal every private key (which, in quantum computing would be considered a great accomplishment). It's unreasonable to imagine now, but one day it could be possible.

If I'm wrong here, can you help by posting a theoretical algorithm about how the private keys can be brute forced from a public key. Also, by public keys, that could be xpub, mpk or a bitcoin address as they are all technically public keys, although presumably this relates to xpub.
suppersz
Sr. Member
****
Offline Offline

Activity: 336
Merit: 250

There is a day to be born, and another to die


View Profile
September 24, 2017, 03:02:15 AM
 #20

Is having a multisig address more secure? Is that sort of what this guy is asking about right now?

Pages: [1] 2 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!