Author

Topic: [ANN] Cool Storage Wallets - Risk Mitigation of storage of funds (Read 1030 times)

full member
Activity: 308
Merit: 100
full member
Activity: 308
Merit: 100
so the TLDR is: you are making multisig wallets easier to use and be developed upon. Right?

Yes, basically. I also want to make it easier to integrate with most wallets without relying on online service or third party agents.

I also have other plans for wallet security, but they are yet just ideas.
member
Activity: 81
Merit: 10
i will also be following this. excuse my dumb question, but how is diff from a multisig wallet where 3 out 6 sigs are needed to transfer funds?
Good question, it is not dumb at all!

Both cool wallets and multisig wallets use (usually) the same Shamir's algorithm, so they are not different in the core, except in the use case, just as different coins use the same blockchain technology to provide different services.

The purpose of this project is to create tools (even embeddable libraries) that allow common users to secure his / her funds easily, so the tool will be designed to be as simple as possible, using familiar vocabulary over technical or theoretical terms, to promote higher adoption.

We're considering the design an interface that the user can use to get Wallet parts from QR codes and the application will be designed to hold the recovered key in RAM memory, and use it with different wallets, so the user will not need internet or online portals to produce and open his wallet. We will probably have to cooperate with developers of different wallets.

The purpose is one: Higher adoption of better security standards for users of cryptocurrencies, and higher options to produce the idea cool storage wallets, by his own risk tolerance and requirements.

so the TLDR is: you are making multisig wallets easier to use and be developed upon. Right?
full member
Activity: 308
Merit: 100
Alpha Release Available

You can now explore the project's code.

Soon, an executable of the console application will be released, but for now any programmer can compile it himself, or even contribute.

The tool works and it can produce up to 4 / 100000 cool wallets pretty fast, which is a pretty good stress test.

I think instructions for usage are pretty clear in the README file.

If everything works as expected, and interest is built up, I will develop the GUI application.
full member
Activity: 224
Merit: 100
This really looks like a good idea that should be able to attract a lots of investors and that will be good for the community in a whole I look forward to seeing where this is going.....
full member
Activity: 308
Merit: 100
i will also be following this. excuse my dumb question, but how is diff from a multisig wallet where 3 out 6 sigs are needed to transfer funds?
Good question, it is not dumb at all!

Both cool wallets and multisig wallets use (usually) the same Shamir's algorithm, so they are not different in the core, except in the use case, just as different coins use the same blockchain technology to provide different services.

The purpose of this project is to create tools (even embeddable libraries) that allow common users to secure his / her funds easily, so the tool will be designed to be as simple as possible, using familiar vocabulary over technical or theoretical terms, to promote higher adoption.

We're considering the design an interface that the user can use to get Wallet parts from QR codes and the application will be designed to hold the recovered key in RAM memory, and use it with different wallets, so the user will not need internet or online portals to produce and open his wallet. We will probably have to cooperate with developers of different wallets.

The purpose is one: Higher adoption of better security standards for users of cryptocurrencies, and higher options to produce the idea cool storage wallets, by his own risk tolerance and requirements.
sr. member
Activity: 546
Merit: 250

Okay i will just see this a good project, i need to see how this development is next on this thread, at least it can be much cooler than others
member
Activity: 81
Merit: 10
i will also be following this. excuse my dumb question, but how is diff from a multisig wallet where 3 out 6 sigs are needed to transfer funds?
full member
Activity: 357
Merit: 100
look promising project and this is a nice project i think.
can you explain deep for me about your project? send me pM
full member
Activity: 308
Merit: 100
reserving indonesian translation for ann and whitepaper if you need.
i give moderation on the tread by the way.
thank you.

I appreciate your interest. If the concept gets enough attention, I will really appreciate your help.

The concept looks interesting. Would like to follow the progress as you develop it.

Thanks! The tool's core is ready. I will try to complete the tool to generate the Cool Wallets tonight, so I may publish it very soon.

I'm also in contact with a leader of a coin project to consider alliances.
sgk
legendary
Activity: 1470
Merit: 1002
!! HODL !!
The concept looks interesting. Would like to follow the progress as you develop it.
full member
Activity: 356
Merit: 100
reserving indonesian translation for ann and whitepaper if you need.
i give moderation on the tread by the way.
thank you.
full member
Activity: 308
Merit: 100
The issue
As you probably know, a Cold Wallet is a safe way to preserve your funds from a cybernetic attacks or digital lost. Must people will agree that Cold Wallets are the safest and easiest way to get the maximum security for the least of the cost.

Cold Wallets also yield their own serious risks, like physical lost. Yes, they are safe from the Internet, but they are not safe from the world: a fire, an accidental disposal, a simple lost... can be enough for all your funds to be lost. A more general way to describe the risk of Cold Wallets is physical centralization: all you fund are centralized on a specialized drive some QR codes on a paper.

It is clear that the answer to this problem must be risk mitigation.

These are some examples of bad methods for risk mitigation of Cold Wallets:
  • Multiple copies of a Cold Wallet - Increased risk of wallet's exposure to third parties.
  • Save a digital copy of the cold wallet - Not really a Cold wallet anymore. It has all risks associated to any wallet stored in a digital media.
  • Funds in multiple Cold Wallets - Users often do not have enough different safe places to store many different wallets. Many wallets may lead to lost of track, or imply a batch storage of them, which leads to the same storage risks of a simple Cold Wallet.
  • Divide a wallet in multiple parts and store the parts in different places, or trust parties* -  If you divide a wallet in 3 parts, the 1x risk of one wallet being lost is now x3 the total risk, since only missing piece of the wallet is required for all funds to be gone forever.

The solution
It is clear we need a different and clever approach to this problem.

The point of cryptocurrency is that now the user has greater control of his own funds, not only the government, banks or other finantial institutions. Of course, we can trust third parties to store our funds safely, and we are free to do so, but we still need the option to store our funds in a safe, reliable, private and accessible way.

A solution to many of these problems is a Cool Wallet.

What is a Cool Wallet? - The concept
The theoretical definition of a Cool Wallet is a compound wallet of m total parts, in a way that a quantity under n parts is not enough to recover the private key, but on or over n parts is, assuming that n is less or equal to m.

Maybe an example is a better way to explain what a Cool Wallet is.

Suppose Mark wants to mitigate the risk of storing the 12 BTC he saved growing up. He first considered a Cold Wallet, but he also likes to travel, so the media can be lost or stolen. He still wants to have his funds in hand for any emergency. He realizes that a Cold Wallet is not ideal for his purposes, so he considered a Cool Wallet instead. He generated a simple Public-Private key pair and provided the Private Key to a Cold Wallet tool to generate the parts of a Cool Wallet. He generated 6 parts in a way that only 3 different parts are required to recover the Private Key and get all his funds, which means he created a 3 / 6 Cool Wallet.

Mark stored one wallet part in his mother's house (1), he gave another to a trusted friend (2), he stored another one in his laptop (3, remember it is not a Cold Wallet), another one in his physical wallet as a QR code (4), he stored another one in his USB drive (5) and the last one is stored as an image in his cell phone (6). Mark may lost his wallet, phone and wife (just kidding), but he will still able to recover the funds from the parts left and create a new Cool Wallet to move the funds from the previous one. A very clever hacker could had access to the Cool Wallet's part stored in Mark's laptop, but the hacker was unable to get any funds without more different parts to combine.

Mark never lost control of his wallet, since only he knew and had access to all his Cool Wallet's parts. He also mitigated the risk of losing his wallet, since only a fraction of the generated parts are required to recover the Private Key.

Therefore, Cool Wallets are called as such because they may or may not be strictly used as Cold Wallets, but they are a lot safer than online wallets or exchanges as storage of money.

The tool
I created a tool to create Cool Wallets. Any string can be a Private Key, so you can use any Private Key generated with your favorite tool, or even use directly the Electrum Seed Phrase instead of a common private key.

I will be developing the Tool's User Interface as required. Later, I will release the source code in GitHub.

As technology and its security risks increase, and the adoption of cryptocurrency reaches new high levels every year, privacy and security of digital funds will have to become a top priority, since there is a lot of room for technological growth and safety improvement in the world of cryptocurrency.

Roadmap (may change)
  • Publish the concept - done
  • Release the alpha version of the command-line tool to generate cool wallets, for QA testing. - soon
  • Release the Core's Source Code on Github.
  • Marketing phase
  • Release the alpha version of the GUI tool.
  • Release the NuGet, for developers.

FAQ
I will try to answer your questions and concerns in this thread and later add the information here.
Jump to: