[BTC] Online/Offline Wallet - page 2.

presidentcoin

full member

Activity: 224

Merit: 100

Any store can buy, sell, and accept Crypto

Quote from: cp1 on March 22, 2014, 07:18:44 PM

So where is the wallet stored? It can't be in your cache because if you delete your cache you'd delete your wallet

In the Browser Cache. And no if you delete the Browser Cache you still can access your Bitcoin. You passphrase is your access(the key). With the passphrase you can generate again the Wallet with the same addresses and privat keys. Your passphrase is you Wallet only encypted

cp1

hero member

Activity: 616

Merit: 500

Stop using branwallets

So where is the wallet stored? It can't be in your cache because if you delete your cache you'd delete your wallet

presidentcoin

full member

Activity: 224

Merit: 100

Any store can buy, sell, and accept Crypto

Quote from: ryanmnercer on March 22, 2014, 07:03:23 PM

Quote from: presidentcoin on March 22, 2014, 07:01:19 PM

Hold on. Your Bitcoins are not at my Wallet there are in you PC. I generate nothing

You are using javascript. There is no reason on the planet for anyone to use javascript. Period. It's a steaming pile of shit with a bazillion known vulnerabilities and more found daily.

No. JavaScript is secure. And not all is JavaScrypt the most is HTML,PHP. Java+JavaScrypt only for Bitcoind (https://code.google.com/p/bitcoinj/)

presidentcoin

full member

Activity: 224

Merit: 100

Any store can buy, sell, and accept Crypto

Quote from: odolvlobo on March 22, 2014, 06:46:06 PM

Quote from: presidentcoin on March 22, 2014, 06:04:22 PM

Nothing of that. If you access our Server your PC download the SourceCode and encrypt/decrypt there the Wallet. But if you delete the Browser Cache your PC download the Code again and open the Wallet again. The Website is only the GUI/Userinterface for the Wallet. Your passphrase is like a door key. All Software runs local at your PC

Thanks. I understand.

Next question ... As I understand it, the passphrase is encrypted as a first step to generate the private keys. Where does the key used to encrypt the passphrase come from?

Now i don't und er stand you question. But i try to answer.

Generate:

1. Your Browser download the Scrypt
2. You generate a passphrase (OpenSSL+AES)
3. Bitcoind generate a encypted Wallet (AES) and generate 10 addresses (JavaScrypt/Bitcoind/Bitcoinj)
4.It encrypt all together (OpenSSL+AES)

Login:

1. You access KryptoWallet (online)
2.You enter the passphrase (offline)
3. It decrypt the passphase (offline) (OpenSSL with AES)
4.It decrypt the Wallet (OpenSSL with AES) (offline)
5. access to Wallet (offline)

This is a short Version of how KryptoWallet works

ryanmnercer

member

Activity: 70

Merit: 10

Quote from: presidentcoin on March 22, 2014, 07:01:19 PM

Hold on. Your Bitcoins are not at my Wallet there are in you PC. I generate nothing

You are using javascript. There is no reason on the planet for anyone to use javascript. Period. It's a steaming pile of shit with a bazillion known vulnerabilities and more found daily.

presidentcoin

full member

Activity: 224

Merit: 100

Any store can buy, sell, and accept Crypto

Quote from: ryanmnercer on March 22, 2014, 06:28:54 PM

Quote from: presidentcoin on March 22, 2014, 05:13:26 PM

Quote from: cp1 on March 22, 2014, 05:07:36 PM

Quote from: presidentcoin on March 22, 2014, 04:53:13 PM

At your Browser Cache, there is your Wallet,BTC ... saved. If you delete your Cache you still have access to your Coins

But what algorithm do you use to generate the private keys from the passphrase?

AES 256bit with OpenSSL, bitcoind in JavaScrypt

Hold on. You want me, to trust you ( a stranger) with my bitcoin in YOUR wallet... on a site that uses javascript... that claims to encrypt my wallet with a key YOU generate via javascript.

PASS

Hold on. Your Bitcoins are not at my Wallet there are in you PC. I generate nothing

odolvlobo

legendary

Activity: 4466

Merit: 3391

Quote from: presidentcoin on March 22, 2014, 06:04:22 PM

Nothing of that. If you access our Server your PC download the SourceCode and encrypt/decrypt there the Wallet. But if you delete the Browser Cache your PC download the Code again and open the Wallet again. The Website is only the GUI/Userinterface for the Wallet. Your passphrase is like a door key. All Software runs local at your PC

Thanks. I understand.

Next question ... As I understand it, the passphrase is encrypted as a first step to generate the private keys. Where does the key used to encrypt the passphrase come from?

ryanmnercer

member

Activity: 70

Merit: 10

Quote from: presidentcoin on March 22, 2014, 05:13:26 PM

Quote from: cp1 on March 22, 2014, 05:07:36 PM

Quote from: presidentcoin on March 22, 2014, 04:53:13 PM

At your Browser Cache, there is your Wallet,BTC ... saved. If you delete your Cache you still have access to your Coins

But what algorithm do you use to generate the private keys from the passphrase?

AES 256bit with OpenSSL, bitcoind in JavaScrypt

Hold on. You want me, to trust you ( a stranger) with my bitcoin in YOUR wallet... on a site that uses javascript... that claims to encrypt my wallet with a key YOU generate via javascript.

PASS

presidentcoin

full member

Activity: 224

Merit: 100

Any store can buy, sell, and accept Crypto

Quote from: odolvlobo on March 22, 2014, 05:41:06 PM

Quote from: presidentcoin on March 22, 2014, 04:53:13 PM

Quote from: odolvlobo on March 22, 2014, 04:49:57 PM

If the private keys are generated from an encrypted passphrase, then I cannot access my bitcoins if your site goes down, right?
Where is the encryption of the passphrase done? Do I send the passphrase to your service or is your encryption key sent to me?

At your Browser Cache, there is your Wallet,BTC ... saved. If you delete your Cache you still have access to your Coins

Sorry, I didn't understand your answer. Let's assume the wallet isn't cached.

If the wallet is not cached, then the passphrase must be encrypted to generate the private keys. Do I send my passphrase to you to be encrypted or do you send the encryption key to me?

If the wallet is not cached, then I can only access my bitcoins if your service is available because I need you to encrypt the passphrase, right?

Nothing of that. If you access our Server your PC download the SourceCode and encrypt/decrypt there the Wallet. But if you delete the Browser Cache your PC download the Code again and open the Wallet again. The Website is only the GUI/Userinterface for the Wallet. Your passphrase is like a door key. All Software runs local at your PC

odolvlobo

legendary

Activity: 4466

Merit: 3391

Quote from: presidentcoin on March 22, 2014, 04:53:13 PM

Quote from: odolvlobo on March 22, 2014, 04:49:57 PM

If the private keys are generated from an encrypted passphrase, then I cannot access my bitcoins if your site goes down, right?
Where is the encryption of the passphrase done? Do I send the passphrase to your service or is your encryption key sent to me?

At your Browser Cache, there is your Wallet,BTC ... saved. If you delete your Cache you still have access to your Coins

Sorry, I didn't understand your answer. Let's assume the wallet isn't cached.

If the wallet is not cached, then the passphrase must be encrypted to generate the private keys. Do I send my passphrase to you to be encrypted or do you send the encryption key to me?

If the wallet is not cached, then I can only access my bitcoins if your service is available because I need you to encrypt the passphrase, right?

presidentcoin

full member

Activity: 224

Merit: 100

Any store can buy, sell, and accept Crypto

Quote from: cp1 on March 22, 2014, 05:18:51 PM

How do you generate additional addresses?

Your passphrase is turned into a 128bit key and it is into a 256bit key encrypted which is then stretched into 10 bitcoin addresses. There is no limit but for now 10 per passphrase should be adequate. (OpenSSL+AES+Bitcoind)

cp1

hero member

Activity: 616

Merit: 500

Stop using branwallets

How do you generate additional addresses?

presidentcoin

full member

Activity: 224

Merit: 100

Any store can buy, sell, and accept Crypto

Quote from: cp1 on March 22, 2014, 05:07:36 PM

Quote from: presidentcoin on March 22, 2014, 04:53:13 PM

At your Browser Cache, there is your Wallet,BTC ... saved. If you delete your Cache you still have access to your Coins

But what algorithm do you use to generate the private keys from the passphrase?

AES 256bit with OpenSSL, bitcoind in JavaScrypt

cp1

hero member

Activity: 616

Merit: 500

Stop using branwallets

Quote from: presidentcoin on March 22, 2014, 04:53:13 PM

At your Browser Cache, there is your Wallet,BTC ... saved. If you delete your Cache you still have access to your Coins

But what algorithm do you use to generate the private keys from the passphrase?

presidentcoin

full member

Activity: 224

Merit: 100

Any store can buy, sell, and accept Crypto

Quote from: odolvlobo on March 22, 2014, 04:49:57 PM

If the private keys are generated from an encrypted passphrase, then I cannot access my bitcoins if your site goes down, right?

Where is the encryption of the passphrase done? Do I send the passphrase to your service or is your encryption key sent to me?

At your Browser Cache, there is your Wallet,BTC ... saved. If you delete your Cache you still have access to your Coins

presidentcoin

full member

Activity: 224

Merit: 100

Any store can buy, sell, and accept Crypto

Quote from: amspir on March 22, 2014, 04:45:13 PM

Just curious, how much complexity do you enforce when generating a passphrase?

It would seem that running an extensive dictionary password attack could yield some ill-gotten dividends if you have a high enough usage.

AES 256bit keys with AES 128bit

odolvlobo

legendary

Activity: 4466

Merit: 3391

If the private keys are generated from an encrypted passphrase, then I cannot access my bitcoins if your site goes down, right?

Where is the encryption of the passphrase done? Do I send the passphrase to your service or is your encryption key sent to me?

amspir

member

Activity: 112

Merit: 10

Just curious, how much complexity do you enforce when generating a passphrase?

It would seem that running an extensive dictionary password attack could yield some ill-gotten dividends if you have a high enough usage.

presidentcoin

full member

Activity: 224

Merit: 100

Any store can buy, sell, and accept Crypto

https://kryptowallet.org/ Grin

We love BTCBTCBTCBTC

It's time to get a secure Bitcoin wallet.We don't store your Bitcoins locally or on our servers. So there is no Hacking possible like in MtGox.

Why should You use KryptoWallet ?

We are Open Source
We are a zero footprint wallet.
We support online or cold storage.
You can access your Bitcoin at every Computer with/without Internet access

We will do everything we can to protect your Bitcoins.

However you also need to take responsibility and follow these guidelines.

Never give out your passphrase.
Consider multiple passphrases
Never lose your passphrases.

For more infomation visit kryptowallet.org/ or newtimes.co Try also our encrypted Cloud Service newtimes.co/infinity

Copyright (C) NewTimes/Devision KryptoWallet.

Topic: [BTC] Online/Offline Wallet - page 2. (Read 3003 times)