Bitcoin Forum
December 03, 2016, 03:44:00 PM *
News: Latest stable version of Bitcoin Core: 0.13.1  [Torrent].
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: Idea to step up wallet security.  (Read 776 times)
shivansps
Sr. Member
****
Offline Offline

Activity: 346


View Profile
August 05, 2011, 05:37:04 AM
 #1

As the network grows, wallet.dat security is one of the biggest flaw in the bitcoin design, as it way too easy to steal.

I was thinking, i dont know if technically possible, about adding a "password" security intro bitcoin transantions. As far i understand how the networks works, the network doest know anything about wallets, it know about address only, from and to.

So lets say, we allow the client to create a "secure" address for recieving coins, that means now the network has to allow to send a passcode along with the transation, them it uses the same method of verification, along with something else, the idea is, if a passcode was used in the past to send coins from that address but is not longer present or is incorrect, then the transaction is rejected by the network(and the coins back to the owner), if a passcode was incluided but older transactions from those address dint incluided them, accept it anyway, as that means those address arent secure.

I think this will allow to create a "secure" address in the bitcoin client, so everything to have to do to secure the coins you already have is to resend all those coins intro a secure address you created, so it will never leave your wallet.

And if someone steal your wallet, so what? he whouldt be able to send the coins that where stored in that address to anywhere, as it will be get rejected by the network, and that msg about a rejected transaction in the list will warm you about someone stealed your wallet.

The main problem i see, that there whould be no way to recover the passcode.

1NEvmZTwLhqBgr3h7LwZap1sEHsyf3QFuv
1480779840
Hero Member
*
Offline Offline

Posts: 1480779840

View Profile Personal Message (Offline)

Ignore
1480779840
Reply with quote  #2

1480779840
Report to moderator
1480779840
Hero Member
*
Offline Offline

Posts: 1480779840

View Profile Personal Message (Offline)

Ignore
1480779840
Reply with quote  #2

1480779840
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1480779840
Hero Member
*
Offline Offline

Posts: 1480779840

View Profile Personal Message (Offline)

Ignore
1480779840
Reply with quote  #2

1480779840
Report to moderator
Stephen Gornick
Legendary
*
Offline Offline

Activity: 1988



View Profile
August 05, 2011, 09:35:27 AM
 #2

I was thinking, i dont know if technically possible, about adding a "password" security intro bitcoin transantions.

Wallet encryption will be possible with Bitcoin 0.4.xx.  There is more here:
- http://gavinthink.blogspot.com/2011/06/why-arent-bitcoin-wallets-encrypted.html

kjj
Legendary
*
Offline Offline

Activity: 1302



View Profile
August 05, 2011, 02:30:18 PM
 #3

Read this thread.

p2pcoin: a USB/CD/PXE p2pool miner - 1N8ZXx2cuMzqBYSK72X4DAy1UdDbZQNPLf - todo
I routinely ignore posters with paid advertising in their sigs.  You should too.
drgr33n
Sr. Member
****
Offline Offline

Activity: 266



View Profile
August 05, 2011, 03:01:53 PM
 #4

Wallet encryption is available in linuxcoin 0.2b-final. There's the encrypt wallet option included with the bitcoin software and also a secure client option that sets up encrypted space and symlinks the wallet back to the client. grsecurity randomizes memory and stops unauthorized applications running. I've really gone to town on security on the latest version to try and bring some of the trust back into bitcoin. LinuxCoin 0.2b-final I think is one of the securest ways to keep your wallet safe along with bitbills.. Not only that you don't have to trust a third party with your coins Wink

I've also tried to make it as easy as possible to setup linuxcoin onto flashed based media. Yesterday i released a patched version of unetbootin to compliment linuxcoin and now it can download the ISO, install to a USB thumb drive and setup persistence so changes are saved. All with a few clicks !! I've also tried to make everything to do with trading and storing bitcoins GUI friendly. If you only want to use your install for a secure wallet you shouldn't even need to open a console once Wink

CD-RW
Jr. Member
*
Offline Offline

Activity: 57


View Profile
August 05, 2011, 04:50:50 PM
 #5

At some point the code/key needs to be loaded into the memory, so the virus/worm will just lurk until it's decrypted. Or it will work with some sort of keylogger.

I don't think these kind of security measures need to be tough about. This is all end-user work.
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!