Bitcoin Forum
November 05, 2024, 11:32:44 AM *
News: Latest Bitcoin Core release: 28.0 [Torrent]
 
   Home   Help Search Login Register More  
Poll
Question: How do you Secure Most of your bitcoin savings?
Offline computer or device - 32 (26.4%)
Brain Wallet - 10 (8.3%)
Hardware wallet - 20 (16.5%)
Paper Wallet or physical coins - 36 (29.8%)
Multisig paper/electronic wallet - 4 (3.3%)
Online Hotwallet or exchange - 7 (5.8%)
Online multisig wallet - 3 (2.5%)
Full or SPV wallet on personal device - 9 (7.4%)
Total Voters: 121

Pages: [1] 2 3 4 5 6 »  All
  Print  
Author Topic: Options for Securing your Bitcoin wallet  (Read 13563 times)
inBitweTrust (OP)
Hero Member
*****
Offline Offline

Activity: 658
Merit: 501



View Profile
November 15, 2014, 05:32:43 PM
Last edit: November 03, 2017, 01:43:45 PM by inBitweTrust
 #1

Here I want to discuss an overview of various methods to secure your bitcoin savings and the strengths and weaknesses of each approach for storing ones savings in Bitcoin. There is a time and place for using hot wallets, exchanges, tipping services, smartphone apps for daily spending but that is another conversation. We do not need to waste our time discussing extremely dangerous methods of storing ones savings like hot wallets and non-regulated exchanges.

Please offer any criticism and suggestions to build to this list:

Paper Wallets


Strengths:

Secure against Malware, viruses, trojans, and keyloggers. (As long as keys are generated with secure equipment) Secure against online theft initiated by hackers or unscrupulous employees and owners of online wallets. Once setup, easy to maintain and re-import. Fairly secure against State and legal theft. Practically Free to setup
Practically Free to setup


Weaknesses:

Initially difficult to securely generate with an audited and clean computer
Online Utilities not as secure as offline generators
Insecure against physical theft


Tutorials:

https://en.bitcoin.it/wiki/Paper_wallet
https://bitcointalk.org/index.php?topic=342691.0
http://www.coindesk.com/information/paper-wallet-tutorial/
https://99bitcoins.com/create-99-9-secure-bitcoin-paper-wallet/


Online Utilities to generate Paper wallets-
https://www.bitaddress.org   (Code Independently audited=?)
https://www.offlineaddress.com  (Code Independently audited=?)
https://bitcoinpaperwallet.com/bitcoinpaperwallet/generate-wallet.html   (Code Independently audited=?)

Offline Utility to generate Paper Wallets  
https://github.com/casascius/Bitcoin-Address-Utility   (Code Independently audited=?)


Devices:

1) Piper  -229 USD
http://cryptographi.com/

2) https://mycelium.com/entropy  - 40USd
released , but sold out except for reseller - http://asicminer-shop.de/Mycelium-Entropy

Concerns with paper wallets –

https://np.reddit.com/r/Bitcoin/comments/670zhy/summary_pitfalls_of_paper_wallets/

https://np.reddit.com/r/Bitcoin/comments/6ss91w/seriously_how_are_you_all_generating_your_private/dlf4uhr/


-----------------------------------------------------------------------------------------------------------------------------------
Physical Bitcoins



Strengths:

Secure against Malware, viruses, trojans, and keyloggers. (As long as keys are generated with secure equipment)
Secure against online theft initiated by hackers or unscrupulous employees and owners of online wallets.
Once setup, easy to maintain and re-import.
Fairly secure against State and legal theft.



Weaknesses:

Initially difficult to securely generate keys with an audited and clean computer
Online Utilities not as secure as offline generators
Insecure against physical theft
Much more expensive than paper wallets
Insecure unless you generate and add the private keys yourself



Sources:


1) https://www.casascius.com
In person or bulk only 500 for 0.39 BTC

2) https://www.titanbtc.com/
68 USD - ~2k USD

3) http://www.lealana.com/
various prices

4) https://www.infinitumbitcoins.com/
179 to 339 USD per coin

5) https://denarium.com/
19.9 € to 2199 € per coin



-----------------------------------------------------------------------------------------------------------------------------------

Offline Computer or device



Strengths:

Somewhat secure against Malware, viruses, trojans, and keyloggers. (As long as keys are generated with secure equipment)
Secure against online theft initiated by hackers or unscrupulous employees and owners of online wallets.
Once setup, easy to maintain and re-import.
Fairly secure against State and legal theft.



Weaknesses:

Initially difficult to securely generate keys with an audited and clean computer
Much more expensive than paper wallets(need a separate computer or device)
Vulnerabilities with possible USB /network infections if device isn't properly secure
Less reliable than physical or paper wallets, so one should backup the wallet on an additional separate key or write down a HD key phrase


Tutorials:

https://bitcointalk.org/index.php?topic=235584.0
http://codinginmysleep.com/cold-storage-part-1/
https://bitcoinarmory.com/tutorials/armory-advanced-features/offline-wallets/


Devices(besides offline computers , notepads, and laptops):


http://www.pi-wallet.com/
124.95 €

CIYAM Safe - https://susestudio.com/a/kp8B3G/ciyam-safe

12-sided dice and a TI-89 Calculator to create a bitcoin address.
http://motherboard.vice.com/read/how-to-make-a-bitcoin-address-with-a-ti-89-calculator

-----------------------------------------------------------------------------------------------------------------------------------

Hardware wallets



Strengths:

Secure against Malware, viruses, trojans, and keyloggers. (If the hardware has not been tampered with- Audits needed)
Secure against online theft initiated by hackers or unscrupulous employees and owners of online wallets.
Once setup, easy to maintain and re-import.
Fairly secure against State and legal theft.
Easier to actively make secure transactions, without needing to import private keys


Weaknesses:

Few of these devices has been thoroughly independently audited
More expensive than paper wallets
Less reliable than physical or paper wallets, so one should backup the wallet on an additional separate key or write down a HD key phrase

Comparison of
KeepKey vs Trezor vs Ledger Nano
https://www.youtube.com/watch?v=aOnOBl_MxmQ


Devices:


1) Trezor
https://www.bitcointrezor.com/
Original 99 USD
TREZOR model T - preorder 139 € - 149 €
Source Code: Open source

https://www.youtube.com/watch?v=pT1j_kbZBEo

2) ledger wallet
 https://www.ledgerwallet.com/
Ledger nano S  58.00 €
nano 49 usd (will not have future firmware upgrade support soon)
HW.1 23 usd (will not have future firmware upgrade support soon)
Ledger Blue - 229 €
Source Code: open

https://www.youtube.com/watch?v=YI1OntWB7wc

3) Keep Key
https://www.keepkey.com/
129 usd
Source Code: Open source

https://www.youtube.com/watch?v=bs4N3jtZrEI

4) Digital Bitbox
https://digitalbitbox.com/
54 €
Source Code: open

https://www.youtube.com/watch?v=VBfgG-WXzhc

5) Open Dime
http://www.opendime.com/
29 usd for 3
Unique HW wallet that acts as a fungible and verifiable offline form of currency

https://www.youtube.com/watch?v=1LrKLsZYGjQ

https://www.youtube.com/watch?v=QqkKtJSPvlU

-----------------------------------------------------------------------------------------------------------------------------------

Muti-sig Hot wallets and services



Strengths:

Somewhat secure against Malware, viruses, trojans, and keyloggers. (As long as keys are generated with secure equipment)
Somewhat Secure against online theft initiated by hackers or unscrupulous employees and owners of online wallets.
Easy to setup and maintain
Easier to actively make secure transactions, without needing to import private keys
Added features such as 2FA , online access, and Insurance


Weaknesses:

None of these services have been thoroughly independently audited
Concerns that private keys generated with the service are also stored or captured by companies
Vulnerable to malware,  trojans, and keyloggers within the browser (mainly at time of creation)
Vulnerable to privacy concerns
Vulnerable to legal and state theft

Tutorials -
http://sx.dyne.org/multisig.html
https://www.youtube.com/watch?v=zIbUSaZBJgU
https://www.youtube.com/watch?v=ZKRLJGBMqWo



Services:


1) https://greenaddress.it
 2-of-2 or 2 of 3 multisignature with nLockTime (possible temporarily unable to spend funds) / Free
https://bitcointalk.org/index.php?topic=521988.0

2)https://www.bitgo.com/
2 of 3 multisig / Free
 
3) https://www.coinbase.com/vault
2 of 3 multisig / insured / Free

4) https://www.bitalo.com/why_bitalo
 2-of-2 multisignature


-----------------------------------------------------------------------------------------------------------------------------------

Muti-sig Paper/electronic wallets


Strengths:

Secure against Malware, viruses, trojans, and keyloggers. (As long as keys are generated with secure equipment)
Secure against online theft initiated by hackers or unscrupulous employees and owners of online wallets.
Once setup, easy to maintain and re-import.
Fairly secure against State and legal theft.
Practically Free to setup
Secure against physical theft if only one of the private keys is physical and the other 2 are encrypted and stored independently.


Weaknesses:

Initially difficult to securely generate with an audited and clean computer (with exception to entropy)
Online Utilities not as secure as offline generators



Tutorials:


1) Armory
https://www.armoryguide.com/OfflineWalletSetup.html
https://bitcoinarmory.com/tutorials/armory-advanced-features/offline-wallets/
https://bitcoinarmory.com/tutorials/armory-advanced-features/lockbox/create-lockbox/
https://bitcoinarmory.com/tutorials/armory-advanced-features/fragmented-backups/


Devices:


1) https://mycelium.com/entropy  - 40USd
released , but sold out except for reseller - http://asicminer-shop.de/Mycelium-Entropy


-----------------------------------------------------------------------------------------------------------------------------------

Brain wallets


Strengths:

Secure against Malware, viruses, trojans, and keyloggers. (As long as keys are generated with secure equipment)
Secure against online theft initiated by hackers or unscrupulous employees and owners of online wallets.
Fairly secure against State and legal theft.
Free to setup
Secure against physical theft but not torture


Weaknesses:

Difficult to remember
risk of forgetting private keys
Difficult to re-import
Risk the passphrase isn't secure


Tutorials:


http://www.coindesk.com/how-to-create-a-brain-wallet/
https://bitcointalk.org/index.php?topic=710434.0


Tools:


1) https://brainwallet.github.io/

-----------------------------------------------------------------------------------------------------------------------------------

Manually Creating a Wallet


Strengths:

Secure against Malware, viruses, trojans, and keyloggers.
Secure against online theft initiated by hackers or unscrupulous employees and owners of online wallets.
Fairly secure against State and legal theft.
Sometimes free to setup


Weaknesses:

Time consuming
Difficult to securely generate
Insecure against physical theft once written down


Tutorials:


https://en.bitcoin.it/wiki/Technical_background_of_Bitcoin_addresses



inBitweTrust (OP)
Hero Member
*****
Offline Offline

Activity: 658
Merit: 501



View Profile
November 15, 2014, 05:48:42 PM
Last edit: March 24, 2015, 12:13:15 AM by inBitweTrust
 #2



This thread isn't intended to argue about Bitcoin vs any Alts security differences.
This thread isn't a place for trolls to disparage Bitcoin.

Healthy criticism is welcomed, but in the context of securing Bitcoin proactively. Trolls and Shills are not welcomed and should be ignored.

crazy-pilot
Sr. Member
****
Offline Offline

Activity: 860
Merit: 253


SmartFi - EARN, LEND & TRADE


View Profile WWW
November 15, 2014, 08:24:40 PM
 #3

How is it that physical bitcoin difficult for the government to seize? Would they not be able to seize them the same way they would seize a TV (for example) that is in your house?

Quote
Secure against Malware, viruses, trojans, and keyloggers.
^^This is not true for any of your security methods. In order for this to be true you must create the private key on a computer that is not infected with any of the above. If you attempt to create a private key with a computer infected with malware then your private key will not be private

████
██
██
██
██
██
██
██
██
██
██
██
████
...The Open..............
...Lending Platform...
████
████
████
████
████
████
████
████
████
████
████
████
████
▄▄█████████▄▄
▄█████████████████▄
▄██████████▀▀▀▀███████▄
█████████▀        ███████
████████▀        ▄█████████
█████████       ▄▀▀██████████
█████████     ▄▀   ▀█████████
██████████  ▄▀      █████████
█████████▀▀       ▄████████
███████        ▄█████████
▀███████▄▄▄▄██████████▀
▀█████████████████▀
▀▀█████████▀▀
.SMARTFI..████
████
████
████
████
████
████
████
████
████
████
████
████
...Join the SmartFi.....
...Token Sale...
████
██
██
██
██
██
██
██
██
██
██
██
████
████████████████████████████
████████████████████████████
████████████████████████████
█████████████████▀▀  ███████
█████████████▀▀      ███████
█████████▀▀   ▄▄     ███████
█████▀▀    ▄█▀▀     ████████
█████████ █▀        ████████
█████████ █ ▄███▄   ████████
██████████████████▄▄████████
████████████████████████████
████████████████████████████
████████████████████████████
████████████████████████████
████████████████████████████
████████████████████████████
████████▀▀▄██████▄▀▀████████
███████  ▀        ▀  ███████
██████                ██████
█████▌   ███    ███   ▐█████
█████▌   ▀▀▀    ▀▀▀   ▐█████
██████                ██████
███████▄  ▀██████▀  ▄███████
████████████████████████████
████████████████████████████
████████████████████████████
inBitweTrust (OP)
Hero Member
*****
Offline Offline

Activity: 658
Merit: 501



View Profile
November 15, 2014, 08:39:55 PM
 #4

Thanks for your input. Smiley

How is it that physical bitcoin difficult for the government to seize? Would they not be able to seize them the same way they would seize a TV (for example) that is in your house?

Paperwallets and physical bitcoins are difficult for governments to seize because they have to physically find these small items that can be hidden. With Multisig added as another layer to paper wallets, it makes it much more difficult as a thief(state or individual) to uncover or even be aware of a set of the keys that can be stored in different locations and or different methods.

So say you purchased or received some bitcoins, as soon as they are transferred to a new address(in this case paper wallet /physical BTC) that isn't link to your identity there is no trace if you lost it, sold them , gifted them, ect..

What would be ideal is generating your own random seed and using a device like entropy to generate a 2 of 3 multisig, where one of the 3 keys is placed in a encrypted password manager(physical key destroyed after) , the second key is laminated and stored in a safe or hidden location, the last key is stored physically in a third location that is not routinely checked.

Quote
Secure against Malware, viruses, trojans, and keyloggers.
^^This is not true for any of your security methods. In order for this to be true you must create the private key on a computer that is not infected with any of the above. If you attempt to create a private key with a computer infected with malware then your private key will not be private

This is the reason I listed "Initially difficult to securely generate with an audited and clean computer" as a weakness , but I will reinforce the principle in the strengths as well now.

HeroCat
Hero Member
*****
Offline Offline

Activity: 658
Merit: 500


View Profile
November 18, 2014, 08:45:12 AM
 #5

I think bicointrezor is the best device for BTC wallet security. With time, can be some problems with electronical parts in this device - I think after ~ 10 years, but you can change device after let say 8 years.
inBitweTrust (OP)
Hero Member
*****
Offline Offline

Activity: 658
Merit: 501



View Profile
November 28, 2014, 12:06:19 PM
 #6

Don't become a victim-
https://bitcointalk.org/index.php?topic=875805.0

Immediately store most of your wealth using one of these methods.

Bitcoin Seller
Full Member
***
Offline Offline

Activity: 567
Merit: 148


View Profile
November 28, 2014, 12:35:51 PM
 #7

I would vote for Trezor Hardware wallet for the moment , I think it's the best even if the price is a little bit high i guess it worth it.

also Mycelium Bitcoincard https://mycelium.com/bitcoincard looks interessting , cant wait to see it when they finish developping it
Soros Shorts
Donator
Legendary
*
Offline Offline

Activity: 1617
Merit: 1012



View Profile
November 28, 2014, 12:54:55 PM
 #8

I would vote for whatever you are most comfortable with. I already have a proven system to secure and manage private keys used to encrypt/decrypt sensitive and important information related to my line of work. I simply extended it to protect my wallet.dat - I PGP encrypt my wallet and store redundant copies in plain sight in the cloud.
LiteCoinGuy
Legendary
*
Offline Offline

Activity: 1148
Merit: 1014


In Satoshi I Trust


View Profile WWW
November 28, 2014, 05:37:08 PM
 #9

hopefully we see some more good and cheap hardware wallets. i would use one maybe  Smiley

johnyj
Legendary
*
Offline Offline

Activity: 1988
Merit: 1012


Beyond Imagination


View Profile
November 28, 2014, 09:48:45 PM
 #10

I think at least two levels of security in both physical and software are needed: Either a bip38 encrypted paper wallet, or a password protected usb drive

Unlike using a traditional bank, you need to keep some backup of your wallet, it is this part most troublesome, since the backup should have the same or higher security level than the main storage, otherwise it will become the weakest point of the system

jonald_fyookball
Legendary
*
Offline Offline

Activity: 1302
Merit: 1008


Core dev leaves me neg feedback #abuse #political


View Profile
November 28, 2014, 11:19:27 PM
 #11

I'm personally a fan of using a brain wallet.  One advantage I haven't seen
listed is the portability factor -- if you're in travelling broad, you
can still access your coins.  If you have to leave your home
or your country, you can access your coins.  Your coins are safe
from fires, floods, earthquakes, etc.

The risk of forgetting a password/passphrase is a factor, but
it is also a factor in other kinds of wallets.  And you can make
an encrypted backup of your passphrase somewhere.

 

turvarya
Hero Member
*****
Offline Offline

Activity: 714
Merit: 500


View Profile
November 28, 2014, 11:23:18 PM
 #12

I would vote for Trezor Hardware wallet for the moment , I think it's the best even if the price is a little bit high i guess it worth it.

also Mycelium Bitcoincard https://mycelium.com/bitcoincard looks interessting , cant wait to see it when they finish developping it
I might get the chance to test a prototype of the Mycelium Bitcoincard. I am pretty excited about that Wink

https://forum.bitcoin.com/
New censorship-free forum by Roger Ver. Try it out.
LiteCoinGuy
Legendary
*
Offline Offline

Activity: 1148
Merit: 1014


In Satoshi I Trust


View Profile WWW
November 29, 2014, 08:22:29 AM
 #13

you should remove

4) https://www.bitalo.com/why_bitalo
 2-of-2 multisignature


because their website is offline since weeks  Embarrassed

anshar
Sr. Member
****
Offline Offline

Activity: 350
Merit: 250


View Profile
November 29, 2014, 09:20:19 AM
 #14

Thank you so much for this.

I will try setting up a brain and paper wallet later this week.
fairglu
Legendary
*
Offline Offline

Activity: 1100
Merit: 1032


View Profile WWW
November 29, 2014, 10:22:44 AM
 #15

Key vulnerability of hardware wallets or offline computers is they can break down, without need to be physically damaged (unlike a paper wallet)

dKingston
Hero Member
*****
Offline Offline

Activity: 482
Merit: 500


LAUNDER BITCOIN: https://BitLaunder.com


View Profile WWW
November 29, 2014, 11:45:16 AM
 #16

electrum would be the best for this ...

LAUNDER & ANONYMIZE YOUR BITCOIN:
https://www.BitLaunder.com/?aid=41
inBitweTrust (OP)
Hero Member
*****
Offline Offline

Activity: 658
Merit: 501



View Profile
November 29, 2014, 11:50:06 AM
 #17

you should remove

4) https://www.bitalo.com/why_bitalo
 2-of-2 multisignature


because their website is offline since weeks  Embarrassed

Thanks, done...  They may come back but the fact that they have been down this long makes me not even want to mention them regardless.

Key vulnerability of hardware wallets or offline computers is they can break down, without need to be physically damaged (unlike a paper wallet)

Agreed, updated.

inBitweTrust (OP)
Hero Member
*****
Offline Offline

Activity: 658
Merit: 501



View Profile
December 09, 2014, 12:16:04 PM
 #18

Added Cryptolabs "case" harware wallet to list of things to look forward to.

http://www.choosecase.com/

http://techcrunch.com/2014/11/17/cryptolabs-launches-with-bitcoin-storage-hardware/

CIYAM
Legendary
*
Offline Offline

Activity: 1890
Merit: 1086


Ian Knowles - CIYAM Lead Developer


View Profile WWW
December 09, 2014, 12:39:12 PM
 #19

The CIYAM Safe (https://susestudio.com/a/kp8B3G/ciyam-safe) is another offline transaction signing solution (100% air-gapped by usage of QR codes and cams).

With CIYAM anyone can create 100% generated C++ web applications in literally minutes.

GPG Public Key | 1ciyam3htJit1feGa26p2wQ4aw6KFTejU
jokerboy
Sr. Member
****
Offline Offline

Activity: 266
Merit: 250


View Profile
December 09, 2014, 12:51:14 PM
 #20

Which one is best ?
Pages: [1] 2 3 4 5 6 »  All
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!