|
razorfishsl
|
 |
July 08, 2013, 12:43:51 AM |
|
Is your passphrase just too simple?
Any passphrase you can memorize is almost too simple by definition. That's crap for a start..... "Mary had a little 公羊 it's prick was red as blood and every time that Mary bled the Ram surly understood" |
|
|
|
|
|
|
|
|
TalkImg was created especially for hosting images on bitcointalk.org: try it next time you want to post an image
|
|
|
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
|
|
|
|
mechs (OP)
|
|
July 08, 2013, 02:37:39 AM |
|
Very colorful, here is the private key: 5KTJj2XjQiFCXMwNEhoJCpz9exodNBC9PMeQF5hhnABa4SVj2HL
I think the point is that it still does not have as much entropy as a randomly generated key since it uses real words which are finite.
|
|
|
|
|
Mike Hearn
Legendary
 Offline
Activity: 1526
Merit: 1128
|
|
July 08, 2013, 09:38:41 AM
Last edit: July 08, 2013, 12:06:32 PM by Mike Hearn |
|
I totally agree that more noobs like the OP will lose their money which would be evitable if brainwallets were known only as a concept on well documented blogs and not easily accessible to noobs through sites like brainwallet.org. Still I can't see why it shouldn't be possible to memorize secure passwords. What is your estimate how long it would take for a sentence long, yet memorizable like this one to end up in a rainbowtable? With a mutation like every second word later? Without ever mentioning the sentence on the internet?
That's very hard to say because we don't know the kind of resources that might be invested into calculating rainbow tables. It depends a lot on things we can't know, like the cost of hardware and the future price of Bitcoins (that could be stolen). Also, over what time period? If someone extends their rainbow table every day and after 3 years is able to compromise your brainwallet, you're still going to be upset, even though it was secure for 3 years. Also, to be super clear here when I say "brainwallet" I'm talking about the form where you turn a password like "stfu!" into a private key. It probably is possible to memorize a randomly generated private key, but it would certainly require some training in memory techniques that most people have never used, and assistance from software (e.g. to turn your private key into a series of words that you then convert into an imaginative story that you repeat to yourself every day). So, the way Electrum does it can at least theoretically work, though I don't know if anyone has studied how memorizable the generated word lists really are, even with training. The way brainwallet.org does it cannot work because you just aren't going to randomly select words from your entire vocabulary, at best you'll come up with a long password that's just a grammatical sentence, and that significantly reduces the entropy because it'll be much more biased towards words like "the" and small sentence fragments that can reduce the search space. I ever only made one Brainwallet for a friend with one Bitcoin. She is of the non-smartphone-and-better-non-computer type, so I promised her to give her the bitcoin to "this piece of paper". I made her think up five long words that are mutually unrelated. She wrote them down and I consider this a safe password until I hear of more serious brain wallets being breached than stfu! (five closely related symbols)
If they were really random words then that's probably fine, the average adult has a vocab size of around 20,000 words so that's 20,000^5 combinations which is certainly not as good as a real private key but is likely good enough for now (it's about 71 bits of security instead of 128). But people are very bad at thinking up truly random things, so I'd question whether they were really unrelated or not. Regardless if you're going to write something down, then it's not really a brainwallet is it? It's then a paper wallet and you may as well let the computer choose the random words for you, it will do a much better job. |
|
|
|
|
|
AliceWonder
|
|
July 08, 2013, 10:47:49 AM |
|
One simple thing you can do that will avoid rainbow tables -
pass phrase + drivers license / ID number
Your drivers license number will act as a fairly effective salt.
|
|
|
|
Rampion
Legendary
Offline
Activity: 1148
Merit: 1018
|
|
July 08, 2013, 11:15:38 AM |
|
|
|
|
|
|
whiskers75
|
|
July 08, 2013, 12:04:06 PM |
|
People have been spamming up the network with it. (I remember adding it to my wallet, and a few days later my whole wallet was filled with transations  ) |
|
|
|
Moogle
Full Member
Offline
Activity: 238
Merit: 100
KUPO!
|
|
July 08, 2013, 12:19:21 PM |
|
think i'll stick to my offline wallets rather than any of the online versions. cant trust anything these days  |
|
|
|
BurtW
Legendary
Offline
Activity: 2646
Merit: 1130
All paid signature campaigns should be banned.
|
|
July 08, 2013, 12:22:53 PM |
|
think i'll stick to my offline wallets rather than any of the online versions. cant trust anything these days Brain wallets are offline wallets. That is not the issue. The issues is passphrase entropy or lack of entropy. |
Our family was terrorized by Homeland Security. Read all about it here: http://www.jmwagner.com/ and http://www.burtw.com/ Any donations to help us recover from the $300,000 in legal fees and forced donations to the Federal Asset Forfeiture slush fund are greatly appreciated! |
|
|
|
Insu Dra
|
|
July 08, 2013, 01:31:36 PM |
|
The issues is passphrase entropy or lack of entropy.
This +9000, I don't think the site is compromised. Some people probably have tables up and running monitoring all possible addresses created from basic to medium complex pass phrases. Tbh I would not be surprised if the creator of the site is one of them. * Insu Dra runs off to create a new vps for his new rainbow tables .... |
"drugs, guns, and gambling for anyone and everyone!"
|
|
|
westkybitcoins
Legendary
Offline
Activity: 980
Merit: 1004
Firstbits: Compromised. Thanks, Android!
|
|
July 08, 2013, 02:07:10 PM |
|
Clearly a new solution for the security issues it required for mass adoption for laypeople - the hardware wallets, if they can be made very affordable, will certainly be a move in that direction.
Yeah, that would be great. You don't even need it to be a full featured wallet: as long as it's a "hardware containing private keys", that are used by a software, that would be a great first step. We already have this though. Cheap smartphones (either low-quality, or old-and-used.) Restrict it to wifi instead of getting a mobile plan, and only have 2 or so apps on it (a bitcoin wallet and a QR-code reader.) That seems like a good enough first step to me, at least. |
Bitcoin is the ultimate freedom test. It tells you who is giving lip service and who genuinely believes in it.
... ... In the future, books that summarize the history of money will have a line that says, “and then came bitcoin.” It is the economic singularity. And we are living in it now. - Ryan Dickherber... ... ATTENTION BFL MINING NEWBS: Just got your Jalapenos in? Wondering how to get the most value for the least hassle? Give BitMinter a try! It's a smaller pool with a fair & low-fee payment method, lots of statistical feedback, and it's easier than EasyMiner! (Yes, we want your hashing power, but seriously, it IS the easiest pool to use! Sign up in seconds to try it!)... ... The idea that deflation causes hoarding (to any problematic degree) is a lie used to justify theft of value from your savings.
|
|
|
justusranvier
Legendary
Offline
Activity: 1400
Merit: 1009
|
|
July 08, 2013, 03:18:47 PM |
|
Also, to be super clear here when I say "brainwallet" I'm talking about the form where you turn a password like "stfu!" into a private key. It probably is possible to memorize a randomly generated private key, but it would certainly require some training in memory techniques that most people have never used, and assistance from software (e.g. to turn your private key into a series of words that you then convert into an imaginative story that you repeat to yourself every day). Memorizing a passphrase of sufficient entropy is possible, but it should be thought of as a feat of mental effort equivalent in terms of difficulty and time investment required to doing this: http://www.hundredpushups.com/It's something that will require training, and effort, and continual practise in order to maintain. |
|
|
|
|
|
Lohoris
|
|
July 08, 2013, 06:09:19 PM |
|
Clearly a new solution for the security issues it required for mass adoption for laypeople - the hardware wallets, if they can be made very affordable, will certainly be a move in that direction.
Yeah, that would be great. You don't even need it to be a full featured wallet: as long as it's a "hardware containing private keys", that are used by a software, that would be a great first step. We already have this though. Cheap smartphones (either low-quality, or old-and-used.) Restrict it to wifi instead of getting a mobile plan, and only have 2 or so apps on it (a bitcoin wallet and a QR-code reader.) That seems like a good enough first step to me, at least. Good (and interesting) point. It's something that will require training, and effort, and continual practise in order to maintain.
a.k.a. "will likely be lost sooner or later". Bad idea. |
|
|
|
TObject
Member
Offline
Activity: 91
Merit: 10
|
 |
July 08, 2013, 08:28:54 PM |
|
Is this the same problem we are going to have with hardware wallets?
What are the hardware wallets seeded with, a security phrase of some sort? Who creates the security phrase, the manufacturer or the end user?
|
|
|
|
|
|
AliceWonder
|
|
July 08, 2013, 08:32:06 PM |
|
Is this the same problem we are going to have with hardware wallets?
What are the hardware wallets seeded with, a security phrase of some sort? Who creates the security phrase, the manufacturer or the end user?
It has to be the end user. If it is the manufacturer, they will keep the seed data justifying that it is for customer service. Then their database will get stolen and a bunch of people will lose their coins. Don't buy a hardware wallet that does not allow you, the consumer, to create private keys that the manufacturer has absolutely no way of ever having seen. |
|
|
|
|
virtualmaster
|
|
July 09, 2013, 07:07:54 AM |
|
I wouldn't be surprised if some federal agents are creating distrust and hate in brainwallet.
If you use correctly it is the most secure form of wallet.
You can never loose it and nobody can confiscate from you.
However this is not a foolproof wallet.
You need to put a private part and a secret part in the passphrase. Then you need to import the generated private keys in a usual wallet to use it more comfortable.
I created for testing the security an easy memorable brainwallet with a passphrase containing my mother name and the 4 digit pin of my debit card and nobody has stolen it until now. If the secret part of the passphrase is even 3 characters longer and contains random characters then you are safe for the next 20 years.
|
|
|
|
giszmo
Legendary
Offline
Activity: 1862
Merit: 1105
WalletScrutiny.com
|
|
July 09, 2013, 07:59:19 AM |
|
I wouldn't be surprised if some federal agents are creating distrust and hate in brainwallet.
If you use correctly it is the most secure form of wallet.
You can never loose it and nobody can confiscate from you.
However this is not a foolproof wallet.
You need to put a private part and a secret part in the passphrase. Then you need to import the generated private keys in a usual wallet to use it more comfortable.
I created for testing the security an easy memorable brainwallet with a passphrase containing my mother name and the 4 digit pin of my debit card and nobody has stolen it until now. If the secret part of the passphrase is even 3 characters longer and contains random characters then you are safe for the next 20 years.
?? I don't understand you. I think if you have an algorithm for brainwallet, that takes for example 5 minutes to mung your password into a key pair, your mothers name and a 4 digit number might be enough as creating the rainbow table would take millennia for even this small password space. Or maybe your mother has a very complicated name and there is no public record of it that somebody might ever take as input for a rainbow table? In any other case I would expect your bitcoins to disappear rather soon. Sad thing is that brainwallet mining is more profitable for some than securing-the-network-mining but it's certainly only beginning. At some point huge amount of computing power will get directed to collect the coins that are said to be lost here in the forum. When we migrate to safer keys, not all coins will migrate and people will hunt for those nobody migrated. |
| ɃɃWalletScrutiny.com | Is your wallet secure?(Methodology)
WalletScrutiny checks if wallet builds are reproducible, a precondition for code audits to be of value. | ɃɃ |
|
|
|
favdesu
Legendary
Offline
Activity: 1764
Merit: 1000
|
|
July 09, 2013, 09:09:09 AM
Last edit: July 09, 2013, 10:50:58 AM by favdesu |
|
tried it yesterday, took me 5min to crack 2 promising addresses. never ever use brainwallet. NEVER, if you're new to passwords.
|
|
|
|
|
inbox
|
|
July 09, 2013, 09:16:04 AM |
|
I imported the private key into Bitcoin-QT using the importprivkey command in the console.
Remove it from your qt client, in case the address gets reused. |
|
|
|
|
|
Lohoris
|
|
July 09, 2013, 09:26:28 AM |
|
You can never loose it and nobody can confiscate from you.
You can loose it easily, and of course they can confiscate it "you stay in prison until you reveal the key" usually works. |
|
|
|
🏰 TradeFortress 🏰
Bitcoin Veteran
VIP
Legendary
Offline
Activity: 1316
Merit: 1043
👻
|
|
July 09, 2013, 09:49:17 AM |
|
tried it yesterday, took me 5min to crack 2 promising vanity addresses. never ever use brainwallet. NEVER, if you're new to passwords.
Crack vanity addresses?   |
|
|
|
|
|
