c5h3ris1253 (OP)
Newbie
Offline
Activity: 35
Merit: 0
|
|
July 11, 2014, 06:26:08 AM |
|
https://bitscan.com/articles/multisig-vs-determinsitic-bitcoin-wallets I read this earlier, It's a decent article about the benefits of multisig and the added security.A brief snippet: If you have ever read anything about keeping your bitcoins secure, you may have heard that keeping the bulk of your funds in an offline wallet is recommended. This is primarily due to the fact that the private keys to your funds would not be under your control in an online environment. However, with the recent implementations of deterministic wallets and multisignature bitcoin addresses, it’s possible that tighter security can exist in an online environment.
BitScan takes a look at two relatively new and upcoming wallets to the market, that use these diffferent methods, to weigh up the pros and cons.
Deterministic Wallets
For those who are unfamiliar, a deterministic wallet is one which generates all of its keys (public and private) based on a given a random sequence of words, or a “seed”. A seed is highly unlikely to be guessed like a brain wallet password would due to the fact it is hashed multiple times to create entropy (or uncertainty). A wallet of this type has a few advantages regarding security.
|
|
|
|
|
|
|
|
"In a nutshell, the network works like a distributed
timestamp server, stamping the first transaction to spend a coin. It
takes advantage of the nature of information being easy to spread but
hard to stifle." -- Satoshi
|
|
|
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
|
FrozenBit
|
|
July 12, 2014, 09:11:45 PM |
|
Thanks for finding this, can't believe I actually missed this. Very insightful article.
|
|
|
|
Netamer
Newbie
Offline
Activity: 7
Merit: 0
|
|
July 12, 2014, 09:24:50 PM |
|
You can generate a determinsitic wallet at bitaddress.org
|
|
|
|
neverminer77
Newbie
Offline
Activity: 38
Merit: 0
|
|
July 13, 2014, 12:27:49 PM |
|
Copay is deterministic and multisig. There is no need to choose one VS the other. You can have both at the same time.
|
|
|
|
12inchdick
Newbie
Offline
Activity: 20
Merit: 0
|
|
July 13, 2014, 12:40:00 PM |
|
If you give one of the private keys of a multisig address to another person, can he/she regenerate your other private keys because your wallet is deterministic?
|
|
|
|
GTA
Member
Offline
Activity: 90
Merit: 10
|
|
July 14, 2014, 10:02:43 AM |
|
If you give one of the private keys of a multisig address to another person, can he/she regenerate your other private keys because your wallet is deterministic?
No. The private keys are calculated based off a seed by taking a hash of the seed. Since a hash is a one-way function, the resulting private key doesn't give any info about the seed, and thus doesn't provide any way to obtain other private keys that would be generated by it. Here's a basic example (not actually the way most deterministic wallets work, but a simplified example): To generate a private key take SHA256(string + n), where n is an ASCII-coded number that starts from 1 and increments as additional keys are needed.
|
|
|
|
jbreher
Legendary
Offline
Activity: 3038
Merit: 1660
lose: unfind ... loose: untight
|
|
July 14, 2014, 08:00:22 PM |
|
Here's a basic example (not actually the way most deterministic wallets work, but a simplified example): To generate a private key take SHA256(string + n), where n is an ASCII-coded number that starts from 1 and increments as additional keys are needed.
So for the purpose of this perhaps overly-simplified example... When such a deterministic wallet is scanning the blockchain, how does it determine the value of 'n' at which to stop scanning? Is there not a tradeoff between efficiency (stop scanning some time before 'n' reaches infinity), and potential leakage of funds?
|
Anyone with a campaign ad in their signature -- for an organization with which they are not otherwise affiliated -- is automatically deducted credibility points.
I've been convicted of heresy. Convicted by a mere known extortionist. Read my Trust for details.
|
|
|
Envrin
|
|
July 14, 2014, 10:29:01 PM |
|
If you give one of the private keys of a multisig address to another person, can he/she regenerate your other private keys because your wallet is deterministic?
You have to clarify your question, as it depends on the wallet structure, and what private key you're giving. Think of the wallet structure as a family -- you have grandparents, parents, kids, grand-kids, etc. If you hand someone over a private key belonging to a kid, then they can easily generate all private keys belonging to their kids. If you give someone a privat3e key belonging to a parent, they can't get the grandparents private keys, but they can get any of the kids or grand-kids private keys. Hope that makes sense.
|
|
|
|
|
CryptoDomains
|
|
July 15, 2014, 02:55:21 AM |
|
If a site or tool like multisig ever goes away or offline, I can still access the wallet, no adverse affect, correct ?
|
|
|
|
Envrin
|
|
July 15, 2014, 05:17:57 AM |
|
If a site or tool like multisig ever goes away or offline, I can still access the wallet, no adverse affect, correct ?
Ummm, depends. Multisig in and of itself is 100% on the blockchain, so: 1 multisig address = X standard addresses + # of signatures required. That's it. When money is sent to that multisig address, in order to send it out, you need the necessary # of signatures, or else the blockchain will reject it. And the only private keys that can sign the outgoing transaction are the "X standard addresses" the multisig address was created using. For example, if you're using a multisig service that's a 2 of 2 solution (1 = you, 1 = the site), and the site disappears, then your funds will be stuck. You need the private key from the site to send any funds.
|
|
|
|
FrozenBit
|
|
July 15, 2014, 05:36:33 AM |
|
Wow, I haven't seen this wallet before. It looks awesome! Can't wait to see it finished. I would like to state we (FrozenBit) are both MULTISIG, AND DETERMINISTIC!
|
|
|
|
|