Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Development & Technical Discussion
Merits 1 from 1 user
Re: I REGAINED access to Bitcoins in my made-up brainwallet!
by
LoyceV
on 29/05/2024, 07:35:08 UTC
⭐ Merited by JayJuanGee (1)
Quote from: Quickseller on May 28, 2024, 10:23:38 AM
Maybe I am missing something, but if you remember the passphrases used? Why couldn't you just use the passphrasees to generate the private key and address?
You must have missed this part:
Quote from: LoyceV on May 25, 2024, 01:45:44 PM
my mind had added a character to my passphrase
Now I can reproduce it again.

Quote
I don't really see much value in knowing the details of the transaction if you don't know the private key
Without knowing the address, I had to search the list of all funded addresses each time to see if I had the correct one. It added a manual step to the checking process.

Quote from: larry_vw_1955 on May 28, 2024, 10:19:54 PM
Quote from: LoyceV on May 28, 2024, 09:49:02 AM
The reason I did this, was because I wanted to add heavy encryption to a brainwallet,
what does that even mean though? i don't think you're really encrypting anything. encryption is typically encrypting a final output. your final output is a clear private key.
The final output is produced from encrypted data. I don't see the point of going into semantics.

Quote
so why not use warpwallet then?
When I created this, I didn't know WarpWallet exists. And I'm not entirely sure I can trust it. I do trust BIP38 (for this reason).

Quote
it makes it more likely they will gain access to your coins than if you never published your "brainwallet algorithm". since according to you that's the only way they could come up with the same private key.
Good luck with that Tongue
What you're suggesting is called security through obscurity:
Quote from: security through obscurity
Criticism

Security by obscurity alone is discouraged and not recommended by standards bodies. The National Institute of Standards and Technology (NIST) in the United States recommends against this practice: "System security should not depend on the secrecy of the implementation or its components."[9]
I trust my passphrase to be difficult enough.

Quote from: larry_vw_1955 on May 28, 2024, 10:19:54 PM
now those are some pretty big statements you made there which i'm not so sure i can agree with. for example, if adding one more character is more secure than doing 10 rounds of encryption then i don't know what to say. except maybe we disagree.  Shocked
If you don't understand that one random character added to the passphrase adds more "difficulty" than 10 rounds of the same encryption, I give up Tongue
But here's a hint:
Quote from: minimalB on April 06, 2015, 04:55:23 PM
First wallet was cracked in under 3 hours. [pwd: BarT]
Second wallet was cracked in under 10 hours. [pwd: grAce]
Fourth wallet was cracked in under 2 days. [pwd: pxrmg]
Third wallet was NOT CRACKED in two years. [pwd: zLwMiR]