Paper wallet inside 7-Zip file

[rhasan]

Hi, I keep all of my paper wallets inside 7-Zip file which is encrypted with strong password.

Then I keep the multiple copy of that 7-Zip file on PC, google drive and drop box.

So is this a good idea?

Can the strong password of my 7-Zip file be cracked if someone has get my file but not the password?

[unholycactus]

Paper wallet implies offline generation and actually using paper to store the private keys.
None of what you described is a paper wallet.

It's just as insecure as using an encrypted wallet.
Even less since you can easily grab it on third party sites.

Your password can always be cracked depending on how strong your password is and how you encrypted the data.

[NeuroticFish]

Can the strong password of my 7-Zip file be cracked if someone has get my file but not the password?

There's always a chance for a password to be cracked, sooner or later.
The idea is to conceal everything you can.

1. I hope that at least the priv+pub ("paper wallet") you've generated offline, zipped, deleted then rebooted before going online. It's the super minimum imho.
2. If you put the 7z file as my_10_btc_wallet.7z onto the internet, people will spend more time to try to crack it than if you have it in a pics_with_my_arse.7z
Keeping them offline could be a much welcome extra protection.

Ah, and make sure you don't forget the "strong password".

[rhasan]

Thank you.

I think there should be finger print generated system

[pooya87]

use BIP38 for encrypting your private key.
you can use an offline copy of https://www.bitaddress.org
go to Wallet Details tab, there is a textbox entering your private key that was generated then a checkbox for BIP38 encryption.
the difference is, BIP38 is open source, tested and works fine. we don't know how strong 7-zip's encryption is. it may be as good but unless you are sure it is best to use other encryption in combination with it.

use a really strong password not a password that you think is strong.
Strong:

Code:

D@m1,F5e6Eo$kn6$0dp

weak:

Code:

rhasanPasswordIsStrong

[UrosViewly]

Any file encrypted with a password that can be taken from online and stored offline, given enough time, can be decrypted, it depends of the attackers speed in which he can iterate passwords and how strong enough is your password.

Let's say you break that archive into multiple ones, still mostly the first file has headers which can lead to revealing some information.

You are also depending on 7Zip using AES encryption bug free and/or being certain that there are no security/encryption back-doors.

[rhasan]

Here I talked to other people on this : https://www.facebook.com/groups/303525260097501/permalink/380557552394271/

use BIP38 for encrypting your private key.
you can use an offline copy of https://www.bitaddress.org
go to Wallet Details tab, there is a textbox entering your private key that was generated then a checkbox for BIP38 encryption.
the difference is, BIP38 is open source, tested and works fine. we don't know how strong 7-zip's encryption is. it may be as good but unless you are sure it is best to use other encryption in combination with it.

use a really strong password not a password that you think is strong.
Strong:

Code:

D@m1,F5e6Eo$kn6$0dp

weak:

Code:

rhasanPasswordIsStrong

Thank you. I might consider using VetaCrypt. And keep one copy on Mega.nz.

[crypto-words]

I would strongly advice against it if you are planning on hodling a larger amount. (hodl = hold)
Cloud storage is never a good idea for obvious security reasons.

Better keep a copy of that on several flash drives or burn these files to 2-3 CDs .

[exknoxeric]

I want some sort of National Treasure protection where you can only see the private key at a certain time of day with specially designed glasses.