Bitcoin Forum
March 30, 2024, 08:44:06 AM *
News: Latest Bitcoin Core release: 26.0 [Torrent]
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: Idea to improve bitcoin wallet security that is simple for the average person  (Read 1177 times)
BTCevo (OP)
Legendary
*
Offline Offline

Activity: 1834
Merit: 1008


View Profile
October 03, 2014, 12:57:32 AM
 #1

I was thinking it would be a good idea to make the bitcoin client require that you make an 8-10 digit pin which encrypts the wallet once, and then a password to encrypt the encrypted wallet for double protection and user friendliness, a bit like some online banking services.

What do you think?
1711788246
Hero Member
*
Offline Offline

Posts: 1711788246

View Profile Personal Message (Offline)

Ignore
1711788246
Reply with quote  #2

1711788246
Report to moderator
1711788246
Hero Member
*
Offline Offline

Posts: 1711788246

View Profile Personal Message (Offline)

Ignore
1711788246
Reply with quote  #2

1711788246
Report to moderator
No Gods or Kings. Only Bitcoin
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
1711788246
Hero Member
*
Offline Offline

Posts: 1711788246

View Profile Personal Message (Offline)

Ignore
1711788246
Reply with quote  #2

1711788246
Report to moderator
1711788246
Hero Member
*
Offline Offline

Posts: 1711788246

View Profile Personal Message (Offline)

Ignore
1711788246
Reply with quote  #2

1711788246
Report to moderator
franky1
Legendary
*
Offline Offline

Activity: 4172
Merit: 4370



View Profile
October 03, 2014, 01:34:04 AM
 #2

I was thinking it would be a good idea to make the bitcoin client require that you make an 8-10 digit pin which encrypts the wallet once, and then a password to encrypt the encrypted wallet for double protection and user friendliness, a bit like some online banking services.

What do you think?

sometimes the risk of encryption is the risk of corruption(data)

its fine for small amounts of data, but large files encrypted twice doubles the risk.

there are already cases where people have corrupted wallets due to encryption by encrypting the wallet and then encrypting their hard drive. thats why people have multiple backups and also store privkeys on paper.

for many people they have a password they can remember and just sha256 it. and then use that hash as the password. (nice long entropy) rather than just the password thy can remember. that way its simple to remember but making that password have better entropy.

im not saying encrypting an encrypted wallet is any less secure, but wen peoples funds are involved.. they need to backup in several formats and in several locations incase one gets damaged, there is no single solution that is guaranteed

I DO NOT TRADE OR ACT AS ESCROW ON THIS FORUM EVER.
Please do your own research & respect what is written here as both opinion & information gleaned from experience. many people replying with insults but no on-topic content substance, automatically are 'facepalmed' and yawned at
JohnnyBTC
Newbie
*
Offline Offline

Activity: 57
Merit: 0


View Profile
October 03, 2014, 01:54:22 AM
 #3

doesn't electrum do this? every time you need to do something that uses your private key it asks for a password. not sure if that means it is encrypting the private key with the password though, or if its just to proceed to the next step
a447513372
Sr. Member
****
Offline Offline

Activity: 336
Merit: 250

DLISK - Next Generation Coin


View Profile
October 04, 2014, 05:35:30 AM
 #4

I was thinking it would be a good idea to make the bitcoin client require that you make an 8-10 digit pin which encrypts the wallet once, and then a password to encrypt the encrypted wallet for double protection and user friendliness, a bit like some online banking services.

What do you think?
You should not be forced to encrypt your wallet until you are ready to do so. If you are forced to encrypt it as soon as you create your wallet you might not be ready to think of a password and set something that you forget, this would essentially be the same as your bitcoin being stolen (from your perspective). It would be better to leave your wallet with small amounts of bitcoin unencrypted until you are ready to think of and set a password.

Also limiting a password to between 8 and 10 digits is bad as it gives an attacker a much smaller number of possible combinations as to what it may be.

▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
           ▄▄▄▄█████████▄▄▄
       ▄▄█████▀▀▀▀▀▀▀▀▀▀▀█████▄▄
     ▄████▀ ▄▄▄▀▀▀▀▀▀▀▀▀▄▄ ▀▀████▄
   ▄███▀ ▄▄▀▀      ████  ▀▀▄▄ ▀▀███▄
  ████ ▄███████████████      ▀█  ████
 ███▀ ▄██████████████████      █  ▀███
▄███            ████ ████      ▀█ ███▄
███ ▄█           ████  ████      █▄ ███
███            ████   ████       █ ███
███ ▀█          ████  ████       █▀ ███
▀▀▀▀           █████████       ▄█ ███▀
 ██████████████████████▄▄▄▄▄▄▄▄█▀ ▄███
  ██████████████████████████████████
    ▄▄▄▄  ▀▄▄       ▀▀▀▀▀▀▀█▀▀▀████▀
     ▀████▄ ▀▀▀▀▄▄▄▄▄▄▄▀▀▀▀ ▄████▀
       ▀▀██████▄▄▄▄▄▄▄▄▄██████▀▀
           ▀▀▀▀█████████▀▀▀▀


                ████                ▄████
    ████████████████                ████   ▄▄███████████████          ▄█████▀
   ██████████████████               ██▀▀ ██████████████████        ▄█████▀
             ▀████████             ███ ████▀                    ▄█████▀
             ▄█████████            ██▀ ███▀                  ▄█████▀
             ████ ▀████           ███ ████▄               ▄█████▀
             ████  ████           ███▄ ██████████████▀ ▄█████▀
            ████  ▄████           ████  ▀████████████▄ ▀█████▄
            ████ ▄████           ████               ▀██▄  █████▄
            ████████▀            ████               ▄████   █████▄
           ███████▀            ███▀              ▄█████▀     █████▄
 ██████████████████████████████ ███ ▄█████████████████▀         █████▄
█████████████▀▀▀██████████████ ▄██ ▄████████████████▀             █████▄

▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄
Ozymandias The Third
Newbie
*
Offline Offline

Activity: 55
Merit: 0


View Profile
October 14, 2014, 05:41:23 PM
 #5

Long Custom Passwords are usually sufficient.
bitllionaire
Legendary
*
Offline Offline

Activity: 1120
Merit: 1000


View Profile
October 14, 2014, 06:13:48 PM
 #6

ALWAYS encrypted long password at least 10 letters with upercase and lowercase
Besides; NEVER trust a high amount of bitcoins to an online service
if you have to keep a good amount as a cold storage you should use a paper wallet created in an offline pc
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!