Topic: Are some private keys safer than others? (Read 2124 times)

It depends on how long the string is. The longer and more random the string, the better it is compared to shorter keys. Another factor is how well you secure the said key. It does not matter even if you got a key that has a thousand random characters, if you leave it lying around for all the people to see, the key is not that secure.

Technically yes, but if you store the coin the cold storage that will be more safer than ever. Have you seen on how it works? Well, they're really interesting on how it works and I will definitely say that they're safe even if you're not a technical genius you will understand its concept.

Well, I am pretty sure that what he meant was that you need a public key in order to figure out the private key using a quantum computer. The hashing of the public key would not be possible to be done as quickly on quantum computer due to the way the work. I have no clue how exactly these quantum computers should work, but to be honest, no one really does in detail either, they are just tests currently and don't really offer anything useful now. No one really understands the quantum physics, they make no logical sense, they are paradoxes that we can't solve, but are trying to utilize.

There is something called Shor's algorithm https://en.wikipedia.org/wiki/Shor's_algorithm
That, to my understanding, is using a public key to find a private key, however on Wikipedia they talk about RSA keys and Bitcoin uses ECDSA, but I know that ECDSA require even smaller quantum computers, due to the efficiency of the algorithm. Shor's algorithm doesn't generate new public/private key pairs, but finds the period for a certain public key, from which it derives the private key. It requires a bit of understanding of RSA keys to know what it does, but that is the idea.


Other than the fact that you need multiple keys to break, not really. No, he is talking about randomness of generating keys.


It really isn't that complex. You could really learn it all in one course at collage. The tech used here is quite new and there isn't that much of it.
It would take a lot of time to learn the history, but the present technology has little to do with it. So my advice would be the opposite of yours, don't learn history, learn the present.


Some of the brain wallets were less secure then a normal desktop wallet and even less then a hardware wallet. They were easily guessable.
The online wallet is hardly a wallet, we should all know that, but we are not even discussing this right now. Calling an online wallet a wallet is like calling your online bank account a wallet.

Private keys generated in the online wallet might be shared to you and hold by the wallet providers. But hardware wallets and desktop wallet are unique can be utilize by the user alone. Henceforth private key is much safer for you to import the wallet and hold the amount in the wallet with much safety. To whom may ever, don't share your private key and wallet.dat file to keep your wallet safe.

well those private keys derived from brain wallets were pretty bad actually. They are not really private keys, but still, I guess you can think of it that way, and brain wallets are absolutely terrible security

Don't waste your time wondering about cryptography. 

Simon Singh has a set of  5 videos on the history of cryptography.  Available on amazon prime video.

Codebreakers: Science of Secrecy

https://www.amazon.com/dp/B011NM2ICG

It’s in 5 parts each about 30 minutes.  The last is “going public”  and a great explination of the development of key pair encryption.

His book "The Code Book" also covers the history of cryptography. 

Trying to take on key pair encryption, digital signatures and all the internals of bitcoin's block chain will take more time then you have left on this earth when you add in all the other stuff you need to do. 

I will say that in my opinion, not even the NSA will be able to crack you private key let along the billions of others being generated.  For now it's safe.

As a general rule of course don't derive your private key from something simple. If you use 1 or all 5s etc while generating your wallet with b6 you can expect those funds to be gone rather quickly. Just use some random method and you're good to go.

Is having a multisig address more secure? Is that sort of what this guy is asking about right now?

Im not sure I understand this the way you do. I don't think you can generate private keys from a public key with the way you suggest. It's possible to get the private key by brute forcing to reveal every private key (which, in quantum computing would be considered a great accomplishment). It's unreasonable to imagine now, but one day it could be possible.

If I'm wrong here, can you help by posting a theoretical algorithm about how the private keys can be brute forced from a public key. Also, by public keys, that could be xpub, mpk or a bitcoin address as they are all technically public keys, although presumably this relates to xpub.

Even a quantum computer CAN'T get a private key from a bitcoin address because sha256 hash algorithm is quantum resistant.
However a quantum computer can get the private key from the public key, which is visible if you use bitcoin incorrectly and re-use your address. Public key becomes visible, when you have made a single spend action from your address.

All keys are "standard" private keys. Some of them can be weak. eg. "1", or any key that is too simple. If you generate a key truly randomly, then you can get a weak or a strong key.

What is a "standard" private key?

I don't see how any standard private key could get hacked in today's world.

I mean, in the future when quantum computing comes around we will definitely need to take that into consideration, but in the meanwhile there is not much to worry about if you use the standard private keys.

Yes.
Many brain wallet addresses have already been "guessed".
Also some human selected keys have been found.
And there has been bad random number generators in use, which have ended in weaker keys.

And a collision is super duper unlikely, but not impossible.

I think that some are compared to others. some have brain wallet phrases attached to them that may be easy to guess.

This guy gets it.

There are different scales of unlikely. There is winning a lottery unlikely and falling through the floor due to quantum tunneling of every particle in your body unlikely. It is one thing to win a lottery twice and another to trow a can of toothpicks on the floor and them all stacking up vertically one on top of another and staying balanced like that.

You simply don't understand the scale here. Winning a lottery is more common then one in a billion and a billion is a joke for address collision. If there was a lottery that only one in 7 billion people won, getting address collision is like one person wining it billion times in a row all of a sudden (actually not even close, not even quadrillion is anywhere close, the number is so high that you can't possibly humanly understand).

Bitcoin private key is usually a 256-bit number, that is like 77 zeros. A billion is just 9. A billion of billions (quadrillion) is just 18. So try quadrillion sets of quadrillion sets of quadrillion sets of quadrillion numbers, well if you can wrap your head around it (you can't) it is still 100 000 that amount.

Yep. It is very unlikely. There are awfully lots and lots of numbers in a private key.

But, anything can happen. And sometimes amazing things do happen.

I have not done the exact math before responding, but to get a collision is far beyond the scale of getting hit by lightning multiple times. I think it would be more like getting struck by lightning every day for a year or a decade kind of thing.

Would not be so sure about the never will be a collision -part
Yes. It is extremely unlikely, but unlikely things can an do happen.
There are several people, who have won the lottery twice. Unlikely, but it happens.
There are also people that have been hit by lightning multiple times.

Your address could also be generated by someone else by chance, but this is not considered a problem due to ridiculously small possibility that is still way higher then that your key is 1 or anything else small. There are millions of addresses and there was never a collision and there never will be if mathematics about it hold up. Checking for couple of numbers (even a million is considered a couple of numbers) is unreasonable to say the least. Chances are just so low, that you might as well not waste your time or start worrying for all the more likely things to happen, like getting hit by a lightning a thousand times in a row.

Humans are just not good at understanding such huge numbers so people naturally worry about address collisions and similar stupid things.
Don't worry, your key will not be in the first or the last million keys. It is simply not going to happen if your random number generator is any good.