Bitcoin Forum
May 02, 2024, 04:47:31 AM *
News: Latest Bitcoin Core release: 27.0 [Torrent]
 
   Home   Help Search Login Register More  
Bitcoin Forum > Bitcoin > Development & Technical Discussion > Wallet software > Electrum > Do electrum wallets actually have 148 bits of security?
Pages: [1]
« previous topic next topic »
  Print  
Author Topic: Do electrum wallets actually have 148 bits of security?  (Read 1034 times)
jonald_fyookball (OP)
Legendary
*
Offline Offline

Activity: 1302
Merit: 1004


Core dev leaves me neg feedback #abuse #political


View Profile
July 15, 2014, 05:02:53 AM
 #1
The seed has 128 bits of entropy, so that's a 128 bit
of security against a collision.

But against a brute-force attack, the 100,000 round
hashing key-stretch gives additional security.   But,
what I just realized is that every address in the wallet
needs to run through that algorithm.  So, if an attack
wants to check, say 5 receive addresses and 5
change addresses, that's a million rounds of hashing,
or roughly 20 bits.  (and still doesn't guarantee they
will find all the addresses of a wallet). 

So you add 20 bits on top of the 128 bits, and
you're really talking about 148 bits of security
against brute force attacks against the seed.
proof LN isn't Decentralized           official Electron Cash wallet
1714625251
Hero Member
*
Offline Offline

Posts: 1714625251

View Profile Personal Message (Offline)

Ignore
1714625251
1714625251
Reply with quote  #2
1714625251
Report to moderator
Even if you use Bitcoin through Tor, the way transactions are handled by the network makes anonymity difficult to achieve. Do not expect your transactions to be anonymous unless you really know what you're doing.
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
1714625251
Hero Member
*
Offline Offline

Posts: 1714625251

View Profile Personal Message (Offline)

Ignore
1714625251
1714625251
Reply with quote  #2
1714625251
Report to moderator
1714625251
Hero Member
*
Offline Offline

Posts: 1714625251

View Profile Personal Message (Offline)

Ignore
1714625251
1714625251
Reply with quote  #2
1714625251
Report to moderator
1714625251
Hero Member
*
Offline Offline

Posts: 1714625251

View Profile Personal Message (Offline)

Ignore
1714625251
1714625251
Reply with quote  #2
1714625251
Report to moderator
Abdussamad
Legendary
*
Offline Offline

Activity: 3598
Merit: 1560



View Profile
July 15, 2014, 06:39:44 AM
 #2
You only need to compute the stretched seed and master private key once. Then you can create address specific private keys at will.
jonald_fyookball (OP)
Legendary
*
Offline Offline

Activity: 1302
Merit: 1004


Core dev leaves me neg feedback #abuse #political


View Profile
July 16, 2014, 03:21:47 AM
 #3
Quote from: Abdussamad on July 15, 2014, 06:39:44 AM
You only need to compute the stretched seed and master private key once. Then you can create address specific private keys at will.

i guess so, although doesn't appear to be the way electrum does it.
You still need to run ECDSA code though, which could still slow
things down to give similar result.
proof LN isn't Decentralized           official Electron Cash wallet
Pages: [1]
  Print  
Bitcoin Forum > Bitcoin > Development & Technical Discussion > Wallet software > Electrum > Do electrum wallets actually have 148 bits of security?
 « previous topic next topic »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!