dillpicklechips
|
|
November 15, 2013, 06:04:33 AM |
|
v2.6.2 support input of a private key in base6 format which shall be defined as: 99 characters (1,2,3,4,5,0) where 1=1 and 6=0
This allows you to create a private key with physical randomness with 99 rolls of a die. Use 3 dice and do 33 rolls. Then enter the 99 character string into the wallet details tab of bitaddress.org and you've got yourself a truly randomly generated bitcoin wallet.
Cool! Promoted http://www.reddit.com/r/Bitcoin/comments/1qobdl/get_out_your_dice_bitaddressorg_now_allows/
|
|
|
|
jerfelix
|
|
November 15, 2013, 06:12:50 AM Last edit: November 15, 2013, 01:30:37 PM by jerfelix |
|
My wish list for bitaddress.org:
1) The QR codes are non-standard. This is a recent change, as they used to be good. The QR Code standard says that there's supposed to be a "Quiet Zone" (whitespace) around the QR code, of 4 blocks, I believe. But in Firefox (at least), bitaddress.org writes text adjacent to the QR code.
2) When generating addresses, it'd be nice to also generate a signed message confirming that the private key is ok. For example, a simple signed message saying "This message is signed by the private key calculated for the bitcoin address 1933phfhK3ZgFQNLGSDXvqCn32k2buXY8a" could be used online to verify that the private key actually works (without copying the private key).
I love this site!
|
|
|
|
dillpicklechips
|
|
November 15, 2013, 06:55:22 AM |
|
v2.6.2 support input of a private key in base6 format which shall be defined as: 99 characters (1,2,3,4,5,0) where 1=1 and 6=0
This allows you to create a private key with physical randomness with 99 rolls of a die. Use 3 dice and do 33 rolls. Then enter the 99 character string into the wallet details tab of bitaddress.org and you've got yourself a truly randomly generated bitcoin wallet.
Unless someone reads the changelog the average user will not know what B6 means at the details tab. Perhaps a little explanation would be useful to explain the procedure for creating a B6 key. On second thought, I think having a "dice wallet" tab would be more clear and match the rest of the website functionality.
|
|
|
|
hieroglyph
Member
Offline
Activity: 70
Merit: 10
|
|
November 15, 2013, 11:04:03 PM |
|
Seems pretty technical but many seem to like the site so I will do some reading and hopefully become a user myself once I have an understanding of the general process to acquire an address kudos on the work you done on the site.
|
|
|
|
nightengale
|
|
November 22, 2013, 05:41:50 AM |
|
Thank-you for your patience and responses to my questions, your work on this project is appreciated.
A small donation sent your way (TXID: cadca399d65a67496a77529482598f27f12b906fa6b072afdb370a54898be0c7-000).
I hope everyone who takes advantage of your code will send a little something your way.
|
|
|
|
Dabs
Legendary
Offline
Activity: 3416
Merit: 1912
The Concierge of Crypto
|
|
November 22, 2013, 06:14:52 AM |
|
I don't see the dice tab yet. Maybe it's not yet uploaded?
|
|
|
|
minimalB
Donator
Hero Member
Offline
Activity: 674
Merit: 523
|
|
November 22, 2013, 10:50:16 AM |
|
Just a thought.
As far as i understand, we add extra randomness with mouse movements and add that to the secret_seed.
If there would be an extra tab for "Secret seed", we could have many options, for example: - mouse movements - random keyboard input - B6 (33x3 dice roll) - etc...
So, user could enter whatever he/she wishes and then click "Create Secret Seed".
|
|
|
|
dillpicklechips
|
|
November 23, 2013, 05:22:38 AM |
|
I don't see the dice tab yet. Maybe it's not yet uploaded?
You just enter 99 digits 0-5 in the details tab to get the private key and address.
|
|
|
|
phelix
Legendary
Offline
Activity: 1708
Merit: 1020
|
|
November 23, 2013, 06:48:17 PM Last edit: November 23, 2013, 06:58:36 PM by phelix |
|
I am pretty sure that printing on windows is not secure as the print spooler saves temporary files which don't get (properly) deleted. Is printing safe on linux?
It would be cool to have a random suggestion for a pass phrase (maybe diceware words).
|
|
|
|
dillpicklechips
|
|
November 23, 2013, 08:32:08 PM |
|
Is printing safe on linux?
If you use a live cd it is and your printer doesn't store print jobs in memory.
|
|
|
|
phelix
Legendary
Offline
Activity: 1708
Merit: 1020
|
|
November 23, 2013, 11:22:35 PM |
|
Is printing safe on linux?
If you use a live cd it is and your printer doesn't store print jobs in memory. As long as it only uses the ramdisk for temporary files and not a hard drive.... can you recommend one? So printing from a normal linux machine will potentially leave traces/keys on the system just as printing from a windows machine does? Maybe bitaddress.org should warn about that. It would be cool to have a Bitcoin Live CD with a hardened system, bitaddress and some nice tools ready to go.
|
|
|
|
Martijnvdc
|
|
November 24, 2013, 08:51:45 AM |
|
How do we know the website isn't storing our private keys?
|
|
|
|
TheButterZone
Legendary
Offline
Activity: 3052
Merit: 1032
RIP Mommy
|
|
November 24, 2013, 10:39:39 AM |
|
How do we know the website isn't storing our private keys?
You download it to an airgapped computer, using the website live is only proof of concept.
|
Saying that you don't trust someone because of their behavior is completely valid.
|
|
|
Patel
Legendary
Offline
Activity: 1321
Merit: 1007
|
|
November 24, 2013, 06:01:36 PM |
|
Here is a feature request that I think would help assuage people's fears about random number generation, which have become more valid the more we hear about NSA-rigged RNG.
Right now, the script collects entropy by way of mouse movements.
I propose that the script also collect some additional entropy by way of the keyboard.
When the script generates new private keys, the private key should be SHA256(user-entered-string | prng-generated-string) (where | is concatenation).
I agree and consider this a high priority item on the TODO. Hi, wondering if this was implemented in 2.6.1? I have used 2.6.1 to generate my bulk addresses, can anyone confirm that the generated keys are safe? Sorry kind of noob questions but better safe than sorry
|
|
|
|
thatbluedude
|
|
November 26, 2013, 05:47:29 PM |
|
bitaddress is great as is but I still have a small feature request. Would you consider to add the option to show an extra textbox with only the public keys? this would make saving them digitaly easier.
thanks
|
|
|
|
Dabs
Legendary
Offline
Activity: 3416
Merit: 1912
The Concierge of Crypto
|
|
November 28, 2013, 03:44:14 AM |
|
I have used 2.6.1 to generate my bulk addresses, can anyone confirm that the generated keys are safe? Sorry kind of noob questions but better safe than sorry
If you generated it on an offline computer, it is safe. You can also attempt to import the private keys into your client to see if it accepts them, using an offline computer. bitaddress is great as is but I still have a small feature request. Would you consider to add the option to show an extra textbox with only the public keys? this would make saving them digitaly easier.
I used to grab the whole bulk text, save it as a file, and import the whole thing into a spreadsheet. Then you can save a version with only the public keys after you delete the private keys. I now use vanitygen to generate bulk addresses since it works faster and I can even use a short prefix if I wanted.
|
|
|
|
agent13
Newbie
Offline
Activity: 26
Merit: 0
|
|
December 01, 2013, 08:09:23 AM |
|
v2.6.2 support input of a private key in base6 format which shall be defined as: 99 characters (1,2,3,4,5,0) where 1=1 and 6=0
This allows you to create a private key with physical randomness with 99 rolls of a die. Use 3 dice and do 33 rolls. Then enter the 99 character string into the wallet details tab of bitaddress.org and you've got yourself a truly randomly generated bitcoin wallet.
If throwing 3 dice... would need to ensure you don't introduce any bias such as reading from lowest to highest. Would be best to read dice from left to right as they fell. This is nice. The hex format can be confirmed with this I think - echo 'obase=16; ibase=6; 0123450123450123450123450123450123450123450123450123450123450123450123450123450 12345012345012345012' | bc Nice to not have to rely on computer rng.
|
|
|
|
emp3000
Newbie
Offline
Activity: 7
Merit: 0
|
|
December 01, 2013, 09:18:30 AM |
|
To Pointbiz, et al...
Guys I was reading up in bitcoin's freenode irc room about some people arguing against paper wallets like yours versus Armory's paper wallet.
One or two of the operators stated that depositing more than one time to the public address of a printed bitaddress "wallet"/keypair will create too many signatures which the hackers will use to decode the private address.
But doesn't bitaddress not create signatures to begin with??? Can you guys explain this a little bit to a beginner like myself?
I already know that the random mouse movement and printing everything offline, in a livecd linux, will create a very secure unique set of addresses, but then when bitcoin veterans would advise against using bitaddress puts me in a dilemma on what to use.
Thank you so much and more power to all of you.
|
|
|
|
maxmint
|
|
December 01, 2013, 12:18:27 PM Last edit: December 01, 2013, 02:17:56 PM by maxmint |
|
v2.6.2 support input of a private key in base6 format which shall be defined as: 99 characters (1,2,3,4,5,0) where 1=1 and 6=0
This allows you to create a private key with physical randomness with 99 rolls of a die. Use 3 dice and do 33 rolls. Then enter the 99 character string into the wallet details tab of bitaddress.org and you've got yourself a truly randomly generated bitcoin wallet.
When using 99 rolls, the highest base6 number one could come up would be this: 555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555555 This results in this hex private key: F0BB8A1BBDE9163B9E053E8F918BF8E4D34034D7FFFFFFFFFFFFFFFFFFFFFFFF I'm quoting from the Bitcoin wiki: Nearly every 256-bit number is a valid private key. Specifically, any 256-bit number between 0x1 and 0xFFFF FFFF FFFF FFFF FFFF FFFF FFFF FFFE BAAE DCE6 AF48 A03B BFD2 5E8C D036 4141 is a valid private key. Now there's quite a large amount of numbers between the highest dice generated number at F0BB8A1BBDE9163B9E053E8F918BF8E4D34034D7FFFFFFFFFFFFFFFFFFFFFFFFand the upper limit at FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFEBAAEDCE6AF48A03BBFD25E8CD0364141It seems the 99-rolls dice method is not using the full range of possible private keys, leaving the upper 5.96% of possible keys untouched. I don't think that's a real problem because the pool of dice generated possible private keys is still huge. But I would prefer a dice method that covers the full range of possible private keys. 100 rolls should be enough, but that could produce number that are too large. Is there any easy solution to this? In any case, I love the principle of rolling my own private keys and not being dependent on software RNGs.
|
|
|
|
casascius
Mike Caldwell
VIP
Legendary
Offline
Activity: 1386
Merit: 1140
The Casascius 1oz 10BTC Silver Round (w/ Gold B)
|
|
December 02, 2013, 08:34:56 PM |
|
I don't think that's a real problem because the pool of dice generated possible private keys is still huge. But I would prefer a dice method that covers the full range of possible private keys. 100 rolls should be enough, but that could produce number that are too large. Is there any easy solution to this?
not really... You are getting 255.91 bits of entropy with 99 dice rolls. The idea that you're losing almost 6% of "something" makes it sound much scarier than it is. I will bet that a private key that has only 224 random bits is still for all intents and purposes secure, even though 99.999999999%+ of the key space is being left on the table. And then, keep in mind that a bitcoin address only has 160 bits of entropy in the first place.
|
Companies claiming they got hacked and lost your coins sounds like fraud so perfect it could be called fashionable. I never believe them. If I ever experience the misfortune of a real intrusion, I declare I have been honest about the way I have managed the keys in Casascius Coins. I maintain no ability to recover or reproduce the keys, not even under limitless duress or total intrusion. Remember that trusting strangers with your coins without any recourse is, as a matter of principle, not a best practice. Don't keep coins online. Use paper or hardware wallets instead.
|
|
|
|