1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
|
Delivery-date: Sun, 12 May 2024 11:08:09 -0700
Received: from mail-qv1-f59.google.com ([209.85.219.59])
by mail.fairlystable.org with esmtps (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
(Exim 4.94.2)
(envelope-from <bitcoindev+bncBAABBAELQSZAMGQE3BKIA7A@googlegroups.com>)
id 1s6DcG-0002a5-KG
for bitcoindev@gnusha.org; Sun, 12 May 2024 11:08:08 -0700
Received: by mail-qv1-f59.google.com with SMTP id 6a1803df08f44-6a0c1aff9f5sf45725096d6.2
for <bitcoindev@gnusha.org>; Sun, 12 May 2024 11:08:08 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; t=1715537282; cv=pass;
d=google.com; s=arc-20160816;
b=TeIluambsO2a793ay/QNn22aJ0RMwk8+gm+GO4dDj1EBJzsFb3nmqeA7EkzZU9BK7h
bSUUMjNAU2i4aAmN+QJWIa0JXu2H6M5TnKxYYQge7f3pabZhbQ07ke7ppoaC3R8qL1t5
G9eaWrikmxEvP9uvfJkrUmIi5WOVkzpICGOyrQzucu+9s1dT/GUdp4x0cYA7RzdJUywp
cGqz9UDGAyw55G3UdJMUUnxMY9+kJRclQ9hnahd8KtgdOvcuVYs+NwCprwMF+JzZkRQB
/v4WUZsQtsfUnI8xPoi9FDLbx1m1hu8SS/G+I40U2LTRsrV2e63yOtGvihsE2ns/6csa
WXnA==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:reply-to:mime-version:feedback-id
:message-id:subject:from:to:date:dkim-signature;
bh=THXYp0MWKaYfCshtU2d9DrKc5OiPShoGyMutwzK7sXg=;
fh=h+xvhpU4gMuK+GuRlaw4Bh9uxXhqvF0YAQ3Qm1cQJmE=;
b=yMRA5Hr7i8fsGDD+YuFaySjwMidOj52pfOObBbPMQkwiZao6SFc9EpqFljGDReFwfa
x0awyJMIppPb1XCe5NIc6o0YNDkw9D5fvoyuqHuITGp++c/ZO/+qGEPaTqkweu8Pjuqh
bramP2p6YuLqzwAf3WAmFV726ghFaX/Vq6B9STY9xVwsiN7Sr3keF0V6UK3TcpBTb6tj
QIdLhfcQVC8kwGDj6HVrpc1ZsfiSNS/vYNmAj77bEpV2puN+C4nJl5TtDIzbQYL2nsdD
BQMTmnwuQoyAvq0xCsl3or7qwUUKS6NzWUmVIWvns5m+b6weSI7DuoKfcNWQJgO6JLIY
j8iw==;
darn=gnusha.org
ARC-Authentication-Results: i=2; gmr-mx.google.com;
dkim=pass header.i=@proton.me header.s=protonmail header.b=Xy+bBGip;
spf=pass (google.com: domain of ganrama@proton.me designates 185.70.40.141 as permitted sender) smtp.mailfrom=ganrama@proton.me;
dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=proton.me
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=googlegroups.com; s=20230601; t=1715537282; x=1716142082; darn=gnusha.org;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:reply-to
:x-original-authentication-results:x-original-sender:mime-version
:feedback-id:message-id:subject:from:to:date:from:to:cc:subject:date
:message-id:reply-to;
bh=THXYp0MWKaYfCshtU2d9DrKc5OiPShoGyMutwzK7sXg=;
b=R1FBHUDIYVKZNDhNm668A3oYoes9llBDi8fTv4z7ukQA1tkNSJtzF4H5w93870yM3L
ETM8sh+PDI6TWW0OJL5CCURApEqJtMQqTglRm16WkmlzGPjVA4hA9FgQLfgJD8eN9D4L
ePsOJBPeGQO4pF34AqqzdhA0c0FPLv3qGu1L5COzpoHalqsrqjTSayfolHeWFPQGTTbN
ejNF4I6UehtZDkwzCjNU1qTwTm1+Ox2SdJ3IkKB+dDaKUcHKI7XF1T6j5CXBiyuKBloh
kldYKyG1L/lh8Po1tjndgPXOb2CgBfzKx7xpSXISKCrMRxKnTuc1L+h+VDl/iYQ6yY3p
7ynw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20230601; t=1715537282; x=1716142082;
h=list-unsubscribe:list-subscribe:list-archive:list-help:list-post
:list-id:mailing-list:precedence:reply-to
:x-original-authentication-results:x-original-sender:mime-version
:feedback-id:message-id:subject:from:to:date:x-beenthere
:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
bh=THXYp0MWKaYfCshtU2d9DrKc5OiPShoGyMutwzK7sXg=;
b=n39tQ8fLpFdUZzdnahPzLxYdUIuk9OE41XlvAUEMknnoAeF7bKILuWS2ROs3YlCvRI
jwOqNMOS3/XTDX7iFycBeI6HnzDQ9+j08oAnu+9j9jSCMxkrdn6dUGkPRp5DT/wu2llp
vovSR9lihKmXyw9udo5FtsvcbB7ZFSgvahfySvRO1jmoy+UGNQonSMfkhq7Xt/cuaEQ8
M5JjzWdGXqIA7IvE8IeYS+Zogj9uRgaQhk9lOBu6MgFd/KYuo5duCC+tQfRsMdoRJOqV
Hgwhql5GAGCutAlQLHnwZiv+8iU1eSim4yldV5f4DVTf0S8GvTpv9zbaEMyKukNjDk4T
RLzw==
X-Forwarded-Encrypted: i=2; AJvYcCXOtL3/okeORxhwvzWpRhRBEc/vFZlo4cSSNTnqGCvyBNqsKuBW/oJuzHoIgm256E3fzZr9x4P5DithhQohX1vycW/al/w=
X-Gm-Message-State: AOJu0YxJTIvDGlXyCqdJrzPVxXoKjDUcaTVluZVAi6o1ZSybW76q86yM
Moyo9oHokg7bsTDq3BkNyFQVrHnkFGmeLByIflvDnFftsMjzdIoZ
X-Google-Smtp-Source: AGHT+IGq5RNgMQIGvLGle6G2DoKY0NHH6MCx3U6ur5zDcCQMt5jWXoBOOJVH/GqggzzBdE34vjKtMw==
X-Received: by 2002:a05:6214:4602:b0:696:a202:5f53 with SMTP id 6a1803df08f44-6a168258891mr99358636d6.49.1715537281940;
Sun, 12 May 2024 11:08:01 -0700 (PDT)
X-BeenThere: bitcoindev@googlegroups.com
Received: by 2002:a05:6214:1250:b0:6a0:a591:6f3d with SMTP id
6a1803df08f44-6a15d32feeals41778656d6.0.-pod-prod-07-us; Sun, 12 May 2024
11:08:00 -0700 (PDT)
X-Received: by 2002:a05:6214:5281:b0:6a0:ea32:ae66 with SMTP id 6a1803df08f44-6a16821084amr5912346d6.11.1715537280611;
Sun, 12 May 2024 11:08:00 -0700 (PDT)
Received: by 2002:a05:620a:190f:b0:790:ee24:5a3f with SMTP id af79cd13be357-792bcb6ec4dms85a;
Sun, 12 May 2024 11:04:17 -0700 (PDT)
X-Received: by 2002:a2e:98d9:0:b0:2e5:65a3:e67 with SMTP id 38308e7fff4ca-2e565a30f6fmr30649571fa.40.1715537056000;
Sun, 12 May 2024 11:04:16 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1715537055; cv=none;
d=google.com; s=arc-20160816;
b=JEVTudSsMKUq+5tiBaI6s04lqpyeJpaFIqBhOXIrRrJnBxmYZ6gMvzjbSe5EqZKuB9
tWHq+sDSCa4vfO2cluSjUz9uOBwI47hh1WfIo8Y+z0P0qCixNnlKOFcX85p2HjL57Xld
e7vWdnUe0/80BRVmoA3O/Xb6o85VUl2ksIdG9J5J0Kje02dLOUp3VwCcVbH4FUYzV5bP
Ya5X2EI5Edv7DlAVKjVjdXhLbB2uiY+Ndnc4Z6eEtIHiuo6FhNkdPiiNsT+5T86jIf1d
nWO+hgKnmIADHn7mD1ZN0uTolYDAm/rVvtT3W7WMj5IF7phUdYLL5WXi26xKRY2+M8IR
naog==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
h=content-transfer-encoding:mime-version:feedback-id:message-id
:subject:from:to:date:dkim-signature;
bh=IfN9NlVlhD38c823pl2H0zfPZSsIuEk2+6kN5jr5HS0=;
fh=lhFSo2W/mHC0QoJ9oNg3A35n0DTltt3CQl1/0RggJlk=;
b=ZTZe+VaRip2IyFjgw7ka7G/Dh6Z4Ju9zV1Ao/qYZC++hdXBLUxsO30P2Gbf4pBB/tI
UNVO1BvpNTTfjIvrIAhjajJo/gNk8V3uYcosMjuQbopdL1NNLWg5xTL5uH0SLw701E0f
tHBAjeTjZuBiO9NJTke1PWzA3GmUMxfgKTFIgHILlO6krh7Q6Qx/WP7/FAxJ5Tkxgf+b
JZA2NYdTwDL8NxTapiFNZdXEh0H33mCGBrz/mbsj5ChCvtZ4LO3S+0BGkLCCiDeY8iBr
tXEm8trY2U28+r7fYJJlDtyUM9CeRzbtZmVoBM/gF9BmA1sHYO75uLlT7SWxp9jzgOWu
QZLw==;
dara=google.com
ARC-Authentication-Results: i=1; gmr-mx.google.com;
dkim=pass header.i=@proton.me header.s=protonmail header.b=Xy+bBGip;
spf=pass (google.com: domain of ganrama@proton.me designates 185.70.40.141 as permitted sender) smtp.mailfrom=ganrama@proton.me;
dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=proton.me
Received: from mail-40141.protonmail.ch (mail-40141.protonmail.ch. [185.70.40.141])
by gmr-mx.google.com with ESMTPS id 5b1f17b1804b1-420174a84d7si40145e9.1.2024.05.12.11.04.15
for <bitcoindev@googlegroups.com>
(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
Sun, 12 May 2024 11:04:15 -0700 (PDT)
Received-SPF: pass (google.com: domain of ganrama@proton.me designates 185.70.40.141 as permitted sender) client-ip=185.70.40.141;
Date: Sun, 12 May 2024 18:04:09 +0000
To: "bitcoindev@googlegroups.com" <bitcoindev@googlegroups.com>
From: "'Rama Gan' via Bitcoin Development Mailing List" <bitcoindev@googlegroups.com>
Subject: [bitcoindev] Penlock, a paper-computer for secret-splitting BIP39
seed phrases
Message-ID: <9bt6npqSdpuYOcaDySZDvBOwXVq_v70FBnIseMT6AXNZ4V9HylyubEaGU0S8K5TMckXTcUqQIv-FN-QLIZjj8hJbzfB9ja9S8gxKTaQ2FfM=@proton.me>
Feedback-ID: 79991369:user:proton
X-Pm-Message-ID: 8800b2edf451c89cc111b2bb67c954e1de94946b
MIME-Version: 1.0
Content-Type: text/plain; charset="UTF-8"
X-Original-Sender: ganrama@proton.me
X-Original-Authentication-Results: gmr-mx.google.com; dkim=pass
header.i=@proton.me header.s=protonmail header.b=Xy+bBGip; spf=pass
(google.com: domain of ganrama@proton.me designates 185.70.40.141 as
permitted sender) smtp.mailfrom=ganrama@proton.me; dmarc=pass
(p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=proton.me
X-Original-From: Rama Gan <ganrama@proton.me>
Reply-To: Rama Gan <ganrama@proton.me>
Precedence: list
Mailing-list: list bitcoindev@googlegroups.com; contact bitcoindev+owners@googlegroups.com
List-ID: <bitcoindev.googlegroups.com>
X-Google-Group-Id: 786775582512
List-Post: <https://groups.google.com/group/bitcoindev/post>, <mailto:bitcoindev@googlegroups.com>
List-Help: <https://groups.google.com/support/>, <mailto:bitcoindev+help@googlegroups.com>
List-Archive: <https://groups.google.com/group/bitcoindev
List-Subscribe: <https://groups.google.com/group/bitcoindev/subscribe>, <mailto:bitcoindev+subscribe@googlegroups.com>
List-Unsubscribe: <mailto:googlegroups-manage+786775582512+unsubscribe@googlegroups.com>,
<https://groups.google.com/group/bitcoindev/subscribe>
X-Spam-Score: -1.0 (-)
I am excited to introduce Penlock, a printable paper-computer that guides users
through secret-splitting their BIP39 seed phrase without an electronic device. A
beta release is now available for peer-reviewing and early testing:
https://beta.penlock.io.
There are a growing number of people storing a significant portion of their
savings on the blockchain. Most people use a BIP39 seed phrase to back up their
wallet, but this method has disadvantages. If the seed phrase is lost or stolen,
then the funds are at risk of being irremediably lost. Additionally, planning
for inheritance would require entrusting the phrase to a third party, something
that is not advisable.
Secret splitting is a straightforward cryptographic concept that solves these
issues. A 2-of-3 split produces 3 "shares"; Any 2 of these shares can be used to
recover the seed phrase. Each share can be stored in a separate location and no
single share can be used to reveal information about the seed phrase.
Trust-minized inheritance is then possible, as one share can be given directly
to an heir, and another left in the will.
Unfortunately, despite commendable efforts with SLIP39, we still lack a
wallet-agnostic secret splitting standard. Moreover, users who already produced
their BIP39 seed phrase might be legitimately reluctant to enter it into an
electronic device for the purpose of secret splitting.
This is were Penlock enters the scene! Secret-splitting BIP39 seed phrases
guarantees compatibility with all existing wallets. Using the analog
implementation, one can run the algorithm without exposing the seed phrase to an
additional electronic device. You only need a printer, a craft knife, some
scissors, a pencil and paper, and a few hours of free time.
Penlock was inspired by Codex32, a similar project from A. Poelstra and R.
O'Connor. From there, I tried to map the design space by exploring different
trade-offs, producing prototypes, benchmarking their execution speed, their ease
of use, etc. While there is always room for improvement, I believe that the
design of Penlock is now close enough to optimal and deserves to be released.
Penlock is an open-source project that will always remain free to use.
Cryptographers, developers and enthusiasts are very welcome to test and
peer-review Penlock until its public release date, which is currently planned
for Q3 2024. Please share any feedback or comments you may have! :)
Rama Gan
--
You received this message because you are subscribed to the Google Groups "Bitcoin Development Mailing List" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bitcoindev+unsubscribe@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/bitcoindev/9bt6npqSdpuYOcaDySZDvBOwXVq_v70FBnIseMT6AXNZ4V9HylyubEaGU0S8K5TMckXTcUqQIv-FN-QLIZjj8hJbzfB9ja9S8gxKTaQ2FfM%3D%40proton.me.
|