1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
|
Return-Path: <keatonatron@gmail.com>
Received: from smtp1.linuxfoundation.org (smtp1.linux-foundation.org
[172.17.192.35])
by mail.linuxfoundation.org (Postfix) with ESMTPS id 6779D10CE4
for <bitcoin-dev@lists.linuxfoundation.org>;
Wed, 6 Mar 2019 01:06:22 +0000 (UTC)
X-Greylist: whitelisted by SQLgrey-1.7.6
Received: from mail-wr1-f49.google.com (mail-wr1-f49.google.com
[209.85.221.49])
by smtp1.linuxfoundation.org (Postfix) with ESMTPS id D9250180
for <bitcoin-dev@lists.linuxfoundation.org>;
Wed, 6 Mar 2019 01:06:21 +0000 (UTC)
Received: by mail-wr1-f49.google.com with SMTP id t18so11501005wrx.2
for <bitcoin-dev@lists.linuxfoundation.org>;
Tue, 05 Mar 2019 17:06:21 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
h=mime-version:references:in-reply-to:from:date:message-id:subject:to;
bh=8jHfnsmfEFGaK4VY1QOlN72muLdZwNdJod+tkA3IIGM=;
b=Tx0fmGN1DVfT2D4cJUFh89/BXDLFj6iZc1cmfzKNdt9FUMT0bmPFT5Z9Om9B7KIkON
XRVMlLiIXOVE1tq7/YUeR5Xrfqy5pH+uQ2PkZFr93w38EdGO2+oRAi+xhUZtwkAEcDMD
zWf53ljhFlQaptfwSvgBPOLK4bVNEf/RGljcnuh/IdIBP/qDovOek4trkmwPeQRCPCBo
oLCys4+nu+gmVQT5BuhjIq32Y6xzStANtZNSWxgIDvjqWRpaoz82jo972y9WZhzdGPxU
XbsDMBtmzi/cAjbeKfecwOq6JgWpSC85OzvyxdkMrkM4VVVPTmMjFwABfanWx59EMCu/
bmGg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20161025;
h=x-gm-message-state:mime-version:references:in-reply-to:from:date
:message-id:subject:to;
bh=8jHfnsmfEFGaK4VY1QOlN72muLdZwNdJod+tkA3IIGM=;
b=imMZQZLGtezD8iNYOp/Tm7qeBMHbyqG5Sj7aOAzbb6cAtB5pdkf/94vswFl81L3lku
lXJXr5ZmrvcXkI8ua4LEH06cG/AS6ktO4eWOhmGiXAB0FBeO64Okj1tKcrnu/GuHzfYD
YpBnH9EdTTD4Pz3h5lax/hVxvM9aKQBgqvbXMccBARGFtE+3PGb3cZwzenSnwXyzUyGQ
5zGf3ctB5dvkgtTXdutbx2zhlc0jf5DuQNyOQXMvtTW0ViQhTe0ELiKfQekxVt6rn8z4
aFQ1WeZT5gHxMtnpbl/UTg+Enn+Du2w26RaIiP56a1DNbTtk8WzPeCSO+M34NnteU5sw
jUZQ==
X-Gm-Message-State: APjAAAVuVdv44GqwEsETCzkemg20YFrVXLV07dz3//nAFRPUeGn1hcLw
xufd3HrLTlAOHZh714eu5QZLnCDjS5OumUZVQAE=
X-Google-Smtp-Source: APXvYqxCJc696ntyar6t1YGkfCVBT9VK8O68LddIUIP5zL7cmDaHjtrsjUDnbJZn+oaw14GPX6oh0L2m+ZdXEgba8W8=
X-Received: by 2002:adf:fc87:: with SMTP id g7mr985788wrr.136.1551834380418;
Tue, 05 Mar 2019 17:06:20 -0800 (PST)
MIME-Version: 1.0
References: <CAFUsdzpsoia+1XZs2qzWbanYoOT1g_+43=iGutyKYrCjFCCM5w@mail.gmail.com>
In-Reply-To: <CAFUsdzpsoia+1XZs2qzWbanYoOT1g_+43=iGutyKYrCjFCCM5w@mail.gmail.com>
From: James MacWhyte <macwhyte@gmail.com>
Date: Tue, 5 Mar 2019 17:05:54 -0800
Message-ID: <CAH+Axy7YXDC4M0o9WHwaR2k46nWYBtM9VetXyBMx=B9-fxupug@mail.gmail.com>
To: Trey Del Bonis <j.delbonis.3@gmail.com>,
Bitcoin Protocol Discussion <bitcoin-dev@lists.linuxfoundation.org>
Content-Type: multipart/alternative; boundary="000000000000fec2db0583629844"
X-Spam-Status: No, score=-2.0 required=5.0 tests=BAYES_00,DKIM_SIGNED,
DKIM_VALID, DKIM_VALID_AU, FREEMAIL_FROM, HTML_MESSAGE,
RCVD_IN_DNSWL_NONE autolearn=ham version=3.3.1
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
smtp1.linux-foundation.org
X-Mailman-Approved-At: Wed, 06 Mar 2019 14:37:25 +0000
Subject: Re: [bitcoin-dev] Fortune Cookies to Bitcoin Seed
X-BeenThere: bitcoin-dev@lists.linuxfoundation.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Bitcoin Protocol Discussion <bitcoin-dev.lists.linuxfoundation.org>
List-Unsubscribe: <https://lists.linuxfoundation.org/mailman/options/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=unsubscribe>
List-Archive: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/>
List-Post: <mailto:bitcoin-dev@lists.linuxfoundation.org>
List-Help: <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=help>
List-Subscribe: <https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=subscribe>
X-List-Received-Date: Wed, 06 Mar 2019 01:06:22 -0000
--000000000000fec2db0583629844
Content-Type: text/plain; charset="UTF-8"
On Tue, Mar 5, 2019 at 4:39 PM Trey Del Bonis via bitcoin-dev <
bitcoin-dev@lists.linuxfoundation.org> wrote:
> Keeping 20 around is a little excessive but it gives 390700800 possible
> wallets. So security can be trivially parameterized based on how secure you
> want your wallet to be if someone finds your stash.
>
Mid-level hardware can check 50k addresses per second, which means it would
only take around 2 hours to check all possibilities. So please don't think
this presents any kind of challenge to someone who finds your 20 pieces of
paper and assumes you would only keep them if they are hiding your wallet ;)
Entropy-wise, simply using a strong RNG would provide a better result than
relying on the printing company. Maybe they only print 35 different
combinations and assume people don't eat Chinese food enough to notice?
If it's poor entropy and doesn't really provide any protection against
being brute forced if found, I'm not sure why you would want to go
this route :)
James
--000000000000fec2db0583629844
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
<div dir=3D"ltr"><div dir=3D"ltr"><div><div dir=3D"ltr" class=3D"gmail_sign=
ature" data-smartmail=3D"gmail_signature"><div dir=3D"ltr"><div>On Tue, Mar=
5, 2019 at 4:39 PM Trey Del Bonis via bitcoin-dev <<a href=3D"mailto:bi=
tcoin-dev@lists.linuxfoundation.org">bitcoin-dev@lists.linuxfoundation.org<=
/a>> wrote:</div></div></div></div></div><div class=3D"gmail_quote"><blo=
ckquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-left=
:1px solid rgb(204,204,204);padding-left:1ex">Keeping 20 around is a little=
excessive but it gives 390700800 possible wallets. So security can be triv=
ially parameterized based on how secure you want your wallet to be if someo=
ne finds your stash.<br></blockquote><div>=C2=A0</div><div>Mid-level hardwa=
re can check 50k addresses per second, which means it would only take aroun=
d 2 hours to check all possibilities. So please don't think this presen=
ts any kind of challenge to someone who finds your 20 pieces of paper and a=
ssumes you would only keep them if they are hiding your wallet ;)</div><div=
><br></div><div>Entropy-wise, simply using a strong RNG would provide a bet=
ter result than relying on the printing company. Maybe they only print 35 d=
ifferent combinations and assume people don't eat Chinese food enough t=
o notice?<br><br>If it's poor entropy and doesn't really provide an=
y protection against being brute forced if found, I'm not sure why you =
would want to go this=C2=A0route :)</div><div><br></div><div>James</div></d=
iv></div>
--000000000000fec2db0583629844--
|
