Are bitcoins still safe even on computers disconnected from the Internet?

[franky1]

Your response ignores the fact that if your credit card information is stolen and used without your permission then you are protected as a consumer, while if your private key is stolen then your bitcoin is essentially gone. This prevents people from being incentived to taking great measures to protect their credit card information, as the worse case scenario is they suffer a minor inconvenience while waiting for a replacement card while someone who has bitcoin has a vested interest in keeping their private keys safe (as asked about by the OP) because if they are compromised then you are essentially out of luck.

my responses do not ignore it at all. again
THE TECHNOLOGY!! does not prevent data loss via NSA spies.

the whole reimbursement and convenience aspect is nothing to do with security or technoogy *think outside the box please*

the reimbursement and convenience is an after the fact effort. which is done by businesses. and as such bitstampt or coinbase COULD add this.

again the insurance and reimbursment is something BUSINESSES should think about as it has nothing to do with the bitcoin-core team,
again the insurance and reimbursment is something related to human social preferences, not something to do with financial security based on hacking.

paypal and credit cards, even with pin numbers and cvs numbers, even with asking for names and addresses still wont stop NSA hacks.

[sifter]

http://m.nydailynews.com/news/national/nsa-hacked-100-000-computers-radio-signals-article-1.1580254

This is fairly old news, and I'm also not familiar with what kind of threat this might pose.  Hopefully someone more knowledgable can share their input.

Since it's now no secret that the NSA has the capacity to hack into computers via radio waves (though apparently only on computers constructed with the proper hardware), what does this mean for things like Armory's offline transactions?  Do you believe that this poses a viable threat, particularly if companies increasingly integrate backdoor radio transceivers into household computers and mobile devices?

Moreover, has this issue been considered by the core devs?

I really hope not, but if your hardware is touched your probably in deep sh1t.

[wasserman99]

http://m.nydailynews.com/news/national/nsa-hacked-100-000-computers-radio-signals-article-1.1580254

This is fairly old news, and I'm also not familiar with what kind of threat this might pose.  Hopefully someone more knowledgable can share their input.

Since it's now no secret that the NSA has the capacity to hack into computers via radio waves (though apparently only on computers constructed with the proper hardware), what does this mean for things like Armory's offline transactions?  Do you believe that this poses a viable threat, particularly if companies increasingly integrate backdoor radio transceivers into household computers and mobile devices?

Moreover, has this issue been considered by the core devs?

I don't think it would be an issue. The possibility of this happening is still only theoretical and has not been proven. There are also ways to shield your computer from radio waves relatively  easily.

Also if you have your offline wallet secured with a sufficiently strong password this will not be as much as an issue because even if they got the wallet file they would need to crack your password in order to do anything with it.

[the joint]

http://m.nydailynews.com/news/national/nsa-hacked-100-000-computers-radio-signals-article-1.1580254

This is fairly old news, and I'm also not familiar with what kind of threat this might pose.  Hopefully someone more knowledgable can share their input.

Since it's now no secret that the NSA has the capacity to hack into computers via radio waves (though apparently only on computers constructed with the proper hardware), what does this mean for things like Armory's offline transactions?  Do you believe that this poses a viable threat, particularly if companies increasingly integrate backdoor radio transceivers into household computers and mobile devices?

Moreover, has this issue been considered by the core devs?

I don't think it would be an issue. The possibility of this happening is still only theoretical and has not been proven. There are also ways to shield your computer from radio waves relatively  easily.

Also if you have your offline wallet secured with a sufficiently strong password this will not be as much as an issue because even if they got the wallet file they would need to crack your password in order to do anything with it.

Referring to bolded section, I considered this but quickly dismissed it as it would certainly not be an issue to upload a keylogger and wait.

[ForgottenPassword]

Referring to bolded section, I considered this but quickly dismissed it as it would certainly not be an issue to upload a keylogger and wait.

Why would an attacker even need to upload one? hardware keyloggers are really cheap:
https://www.keelog.com/

There is no question about it, if someone can modify your hardware they can easily steal your data, there are plenty of ways to do this kind of thing. How about a Raspberry Pi with a hardware keylogger connected to your keyboard, a SATA interface connected to your drive and a 3G modem to send back the data, all of that is dirt cheap and freely available. <$100 and you can exfiltrate data from an airgapped machine pretty easily. You could probably make it smaller by using a modified android phone instead for example.

[itsAj]

http://m.nydailynews.com/news/national/nsa-hacked-100-000-computers-radio-signals-article-1.1580254

This is fairly old news, and I'm also not familiar with what kind of threat this might pose.  Hopefully someone more knowledgable can share their input.

Since it's now no secret that the NSA has the capacity to hack into computers via radio waves (though apparently only on computers constructed with the proper hardware), what does this mean for things like Armory's offline transactions?  Do you believe that this poses a viable threat, particularly if companies increasingly integrate backdoor radio transceivers into household computers and mobile devices?

Moreover, has this issue been considered by the core devs?

I don't think it would be an issue. The possibility of this happening is still only theoretical and has not been proven. There are also ways to shield your computer from radio waves relatively  easily.

Also if you have your offline wallet secured with a sufficiently strong password this will not be as much as an issue because even if they got the wallet file they would need to crack your password in order to do anything with it.

Referring to bolded section, I considered this but quickly dismissed it as it would certainly not be an issue to upload a keylogger and wait.

The paranoid would not use a hardware keyboard to enter their password, but would rather use a keyboard that allows you to click on the various letters on a screen (preferably with the letters in some random order) to enter your password.

[sifter]

http://m.nydailynews.com/news/national/nsa-hacked-100-000-computers-radio-signals-article-1.1580254

This is fairly old news, and I'm also not familiar with what kind of threat this might pose.  Hopefully someone more knowledgable can share their input.

Since it's now no secret that the NSA has the capacity to hack into computers via radio waves (though apparently only on computers constructed with the proper hardware), what does this mean for things like Armory's offline transactions?  Do you believe that this poses a viable threat, particularly if companies increasingly integrate backdoor radio transceivers into household computers and mobile devices?

Moreover, has this issue been considered by the core devs?

I don't think it would be an issue. The possibility of this happening is still only theoretical and has not been proven. There are also ways to shield your computer from radio waves relatively  easily.

Also if you have your offline wallet secured with a sufficiently strong password this will not be as much as an issue because even if they got the wallet file they would need to crack your password in order to do anything with it.

Referring to bolded section, I considered this but quickly dismissed it as it would certainly not be an issue to upload a keylogger and wait.

The paranoid would not use a hardware keyboard to enter their password, but would rather use a keyboard that allows you to click on the various letters on a screen (preferably with the letters in some random order) to enter your password.
[/quote
If this is the case,  use the ease of access keyboard not a third party software. (assuming that you are using Windows)

[BitCoinNutJob]

blah blah blah boring topic.

the real question is

Is using paypal safe on computers connected from the Internet?
Is using debit/credit cards safe on computers connected from the Internet?

Yeah with the reversal options i never worry about my paypal tbh

[master-P]

Referring to bolded section, I considered this but quickly dismissed it as it would certainly not be an issue to upload a keylogger and wait.

Why would an attacker even need to upload one? hardware keyloggers are really cheap:
https://www.keelog.com/

There is no question about it, if someone can modify your hardware they can easily steal your data, there are plenty of ways to do this kind of thing. How about a Raspberry Pi with a hardware keylogger connected to your keyboard, a SATA interface connected to your drive and a 3G modem to send back the data, all of that is dirt cheap and freely available. <$100 and you can exfiltrate data from an airgapped machine pretty easily. You could probably make it smaller by using a modified android phone instead for example.

You would need physical access for this to be possible. It should also be somewhat obvious if there is a raspberry PI near your cold storage computer that should not be there. The article in the OP is talking about the NSA using radio waves to get your cold storage wallet file, if they had physical access then they might as well make a physical copy of the hard drive and would be redundant to use this technology.

[cambda]

yes since the 1960's you should always have assumed telephone and mobile communication devices were being listened into. but sinc 2000 (well atleast publicly known 2008) you have to also assume any device mobile or desktop, router or houselight may contain this chip.

I dont believe all devices are infiltrated with some NSA chip, only if your suspected and order something you receive modified device, thats almost certain.

[itsAj]

http://m.nydailynews.com/news/national/nsa-hacked-100-000-computers-radio-signals-article-1.1580254

This is fairly old news, and I'm also not familiar with what kind of threat this might pose.  Hopefully someone more knowledgable can share their input.

Since it's now no secret that the NSA has the capacity to hack into computers via radio waves (though apparently only on computers constructed with the proper hardware), what does this mean for things like Armory's offline transactions?  Do you believe that this poses a viable threat, particularly if companies increasingly integrate backdoor radio transceivers into household computers and mobile devices?

Moreover, has this issue been considered by the core devs?

I don't think it would be an issue. The possibility of this happening is still only theoretical and has not been proven. There are also ways to shield your computer from radio waves relatively  easily.

Also if you have your offline wallet secured with a sufficiently strong password this will not be as much as an issue because even if they got the wallet file they would need to crack your password in order to do anything with it.

Referring to bolded section, I considered this but quickly dismissed it as it would certainly not be an issue to upload a keylogger and wait.

The paranoid would not use a hardware keyboard to enter their password, but would rather use a keyboard that allows you to click on the various letters on a screen (preferably with the letters in some random order) to enter your password.

If this is the case,  use the ease of access keyboard not a third party software. (assuming that you are using Windows)

Even a third party software keyboard would likely provide sufficient protection because the computer would not be exposed to the internet.

Also now that I think about it a little bit, I would question the legal standing for the NSA to be able to remotely search a person's computer like this.

[ariyaromadhona]

i think we dont talk about safe oor unsafe .. i think everythink has a risk ..
somebody can steal your computers and find your wallet pasword and get your BTC .. etc.
anythink can happend ,
somebody already talk about it a while ago .. he ask 'Do you like Bitcoin because it concept or just going to be rich? "
if you love it concept i think you'll enjoy it , and if you are like to be rich .. you have to take the risk

[cameltoe]

Nothing is 100% safe I tell ya

[QuestionAuthority]

Nothing is 100% safe I tell ya

Cameltoe is always right. 

[dankkk]

http://m.nydailynews.com/news/national/nsa-hacked-100-000-computers-radio-signals-article-1.1580254

This is fairly old news, and I'm also not familiar with what kind of threat this might pose.  Hopefully someone more knowledgable can share their input.

Since it's now no secret that the NSA has the capacity to hack into computers via radio waves (though apparently only on computers constructed with the proper hardware), what does this mean for things like Armory's offline transactions?  Do you believe that this poses a viable threat, particularly if companies increasingly integrate backdoor radio transceivers into household computers and mobile devices?

Moreover, has this issue been considered by the core devs?

I don't think it would be an issue. The possibility of this happening is still only theoretical and has not been proven. There are also ways to shield your computer from radio waves relatively  easily.

Also if you have your offline wallet secured with a sufficiently strong password this will not be as much as an issue because even if they got the wallet file they would need to crack your password in order to do anything with it.

Referring to bolded section, I considered this but quickly dismissed it as it would certainly not be an issue to upload a keylogger and wait.

How would they upload a key-logger if the computer is disconnected from the internet? I think they would need to have physical access in order to accomplish this.