Although (brain wallet produced by human) --> seed key
is recognized and accepted as a bad idea,
f(brain wallet produced by human) --> seed key
where f is a easily remembered math procedure such as modulo(x), may form an acceptable key
is recognized and accepted as a bad idea,
f(brain wallet produced by human) --> seed key
where f is a easily remembered math procedure such as modulo(x), may form an acceptable key
that's ridiculous as f() is also produced by human.
Not to mention that in order to get a 256 private key value from the memorable passphrase, you need some kind of f() anyway.
WTF does it even mean that something 'is recognized and accepted as a bad idea'?
Sounds to me like an argument brought by someone who has no arguments
No, please try to think through these things.
Your arguments say are A B C.
A is not "ridiculous" because issue is discoverable key, and f() moves the human-phrase from determinable low entropy to high entropy difficult to determine. Yes I can pick method which is simple yet generates huge difficulty. (see EX f() )
B this f() is common knowledge, so an attacker always applies it as part of his algorithm. I refer to an f() which the attacker can only guess at.
C Human phrases are in fact recognized and accepted as bad idea. Time to break these phrases is the proof not opinion
EX f()
Require user of a brain wallet to a four digit base 58 value "c"
To increase entropy of the phases strip spaces from the phrase, than
Apply simple function based on "c" to characters of the brain wallet.
Brute force attack is now 58^4 or 10M times harder. And that's the "best case," where the attacker knew some sort of human-generated brain wallet was used. If attacker did not know that, he's out of luck.
But show me wrong. I'm certainly not expert at this.