Author

Topic: Deleted (Read 446 times)

jr. member
Activity: 71
Merit: 4
April 19, 2024, 10:24:46 AM
#29
Any hardware wallet that has a secure element chip, and most of them do, can't be called open-source hardware-wise. The proper term would be as open-source as possible, something that Trezor used in one of its public communications a long time ago when the info about them creating their own secure element was fresh. I think even Foundation describes their products as having fully open-source hardware and software.

I want to know details about the secure element chip. Can you please elaborate on the cryptographic protocols employed by the secure element chip within the hardware wallet to protect users' private keys and sensitive data?
legendary
Activity: 2730
Merit: 7065
April 19, 2024, 12:01:02 PM
#25
I want to know details about the secure element chip. Can you please elaborate on the cryptographic protocols employed by the secure element chip within the hardware wallet to protect users' private keys and sensitive data?
This isn't really the place to discuss hardware wallets or secure elements, but since you brought it up... A secure element is a safe enclosure for your private keys. They stay safely on the chip to prevent outside access. The data is encrypted and only decrypted when needed. Random number generators create the private keys in a fair and unbiased manner.

I am not sure if that answers your question. You can read Secure Elements in Hardware Wallets for more information.
legendary
Activity: 2730
Merit: 7065
April 19, 2024, 09:02:29 AM
#24
And few hardware wallet is completely open (both hardware and software), where theoretically you could verify everything assuming you have time and skill to do that.
Any hardware wallet that has a secure element chip, and most of them do, can't be called open-source hardware-wise. The proper term would be as open-source as possible, something that Trezor used in one of its public communications a long time ago when the info about them creating their own secure element was fresh. I think even Foundation describes their products as having fully open-source hardware and software.
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
April 19, 2024, 05:27:04 AM
#23
FWIW, some hardware wallet company create list of authorized reseller/distributor.
It still comes down to trusting someone.

Quote
few hardware wallet is completely open (both hardware and software), where theoretically you could verify everything assuming you have time and skill to do that.
Just like with Open Source software, most people will rely on other people to do that. There's always some trust involved, and that's the part I dislike (but I can't avoid it either).
legendary
Activity: 2870
Merit: 7490
Crypto Swap Exchange
April 19, 2024, 04:48:00 AM
#22
Everyone trusts hardware wallets to secure cryptocurrencies, but how can the authenticity of a hardware wallet be verified so that it has not been tampered with or compromised during production or distribution?
That's a tough one Sad It's recommended to only buy hardware wallets directly from the manufacturer (and never from third parties). After that, you can follow the authentication process on their website. But indeed, it's one of the things I never feel 100.0000000% sure about. It's too much of a black box.

FWIW, some hardware wallet company create list of authorized reseller/distributor. Although i don't expect they're being monitored closely by HW company. And few hardware wallet is completely open (both hardware and software), where theoretically you could verify everything assuming you have time and skill to do that.

legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
April 19, 2024, 12:54:14 AM
#21
Everyone trusts hardware wallets to secure cryptocurrencies, but how can the authenticity of a hardware wallet be verified so that it has not been tampered with or compromised during production or distribution?
That's a tough one Sad It's recommended to only buy hardware wallets directly from the manufacturer (and never from third parties). After that, you can follow the authentication process on their website. But indeed, it's one of the things I never feel 100.0000000% sure about. It's too much of a black box.

Quote
Which one do you recommend hardware wallet or air gapped wallet?
It depends on your usage, and skills. You could go extreme and setup an air gapped hardware wallet, with a seed created from dice rolls. But for the average user, usually a hardware wallet is the safest compromise. Unless they enter their seed words on a recovery phishing website, there's no protection against that.
A hardware wallet is a lot more convenient to use than an air gapped system. You don't have to limit yourself to just one wallet.
legendary
Activity: 2730
Merit: 7065
April 18, 2024, 10:59:21 AM
#20
You are using your Bitcoin Core software where your private keys are on an internet-connected computer, so you are already much less secure than you could be if you took advantage of its airgapped capabilities.
Since it's a hot wallet, you can at least try to control what you do with that computer. If I were you, I would stop using it for any everyday activities online. Get a different laptop for that. For instance, I have a separate laptop I only use for my financials. I have never done anything else with it. It has never even had a USB connected to it that I use with my other computers. 
hero member
Activity: 714
Merit: 1298
April 17, 2024, 04:46:46 AM
#19
.

Can anyone share some practical security tips or precautions they've taken while using Bitcoin Core? I want to make sure my wallet and funds are as safe as possible. Any advice or insights would be greatly appreciated!

Thanks in advance!

Update your Bitcoin Core to the newest v.27.0 that was released 12 hours ago. Among various improvements effecting RPC, P2P network and wallet itself  it has the noticeable  striking point which should positively influence the security - the issue which bothers your most.


hero member
Activity: 882
Merit: 792
Watch Bitcoin Documentary - https://t.ly/v0Nim
April 16, 2024, 07:12:39 AM
#18
...don't visit malicious website, i.e. stick with FAANG websites (Amazon, Netflix, Facebook, etc), then you'll be safe (but for maximum security you need an air-gapped computer).
This will give Op the impression that popular means safe. Those top websites track us and have far more data on their user than all the other loew reputable websites, we just trust them not to do anything with it (publicly) that will harm their reputation.

- Jay -
You are right, I should have clarified it better but I'll try it now. When I speak about popular websites, I mean the fact that those websites won't inject malware and trojan on your website, so you won't become a victim of computer virus. I think we should take the security of hot wallet as well as we do on cold wallet (but cold should be another level). So, if I have a hot wallet on my computer, I would stick with FAANG websites because they won't inject my pc with malware. But I completely agree with you that these websites track us and trade with our data but if you want to communicate with people and have some fun online, you are almost forced to use them.

But this doesn't mean either that you'll become hacked. If your computer is clean, you don't download pirated content, don't visit malicious website, i.e. stick with FAANG websites (Amazon, Netflix, Facebook, etc), then you'll be safe (but for maximum security you need an air-gapped computer).

Those popular website (especially Facebook) sometimes shows malicious ads and may be mistaken as regular content though. Some goods on Amazon (and other online shop) may be fake or malicious. Here's an example, Another crap Amazon wallet find: Material Bitcoin.
Don't click on ads, never click on ads when you have Bitcoin wallet in your computer. I prefer to have different computer for cold wallet, different for hot wallet and different for exploring the world wide web without restrictions.
By the way, no one should buy wallet from Amazon. To be honest, amazon sucks, I have heard that they put all the staff together and ship from them, so, even the shipped and sold by amazon doesn't guarantee you that you'll receive a genuine product.
legendary
Activity: 2870
Merit: 7490
Crypto Swap Exchange
April 16, 2024, 04:53:31 AM
#17
But this doesn't mean either that you'll become hacked. If your computer is clean, you don't download pirated content, don't visit malicious website, i.e. stick with FAANG websites (Amazon, Netflix, Facebook, etc), then you'll be safe (but for maximum security you need an air-gapped computer).

Those popular website (especially Facebook) sometimes shows malicious ads and may be mistaken as regular content though. Some goods on Amazon (and other online shop) may be fake or malicious. Here's an example, Another crap Amazon wallet find: Material Bitcoin.
hero member
Activity: 1120
Merit: 540
Duelbits - Play for Free | Win for Real
April 15, 2024, 08:32:17 PM
#16
I chose it because of the security and autonomy it offers. And I have direct access to the entire blockchain if I running a full node with Bitcoin Core And I have full control over my funds. While lite wallets like Electrum offer convenience but I prioritize security.
I'm glad you understood the importance of choosing a full node and not depending on third-party servers to validate your transactions. I've been using Bitcoin Core since 2017 and I think it's the ideal wallet for Bitcoin due to the multitude of features and control.

Your wallet is so secure as your computer, so take care of the security of your computer, it'd be ideal if you had a notebook just for this and/or a Linux partition just to manage the bitcoin core wallet, to protect the majority of your funds, you can use an air gapped offline computer where you use one to sign transactions (it would be in the offline machine) and the signed transaction would be broadcasted on the online machine, so if you don't know this yet, I recommend doing a lot of research on how to do this the way correct.

Encrypt your wallet with a strong password and make backups, bitcoin core allows you to export your wallet and it is encrypted with your password, therefore, I advise you to create a password between 16 - 20 characters and make sure you don't forget/lose this password. Use complex passwords containing letters, numbers and some characters, do not use well-known phrases or song lyrics as your password, as this is not recommended.

Never stop doing your research, you will find several good quality posts and learn a lot here.
hero member
Activity: 994
Merit: 1089
April 15, 2024, 12:49:21 PM
#15
I prioritize security.
On a hot wallet?
Whether it is hot or cold wallet, I think security is a top priority. I want to take necessary steps to safeguard my funds, whether they are stored in a hot or cold wallet,  I just want to ensure the security of my assets.
You don't get the point. Anything online is prone to hacking, so the funds in your wallet is never safe if it is online, the most important step to ensure the security of your funds is to ensure that your keys are offline, and to do that you either have to use a hardware wallet or set up your own airgapped wallet. However, you can use an online wallet if it does not store a large amount of coins.
hero member
Activity: 994
Merit: 1089
April 15, 2024, 12:06:21 PM
#14
Choose passphrase that will be difficult for other people to guess to hack, but very easy for you to always remember.
If it is easy for you to remember or commit to memory, then it is most likely weak and an attacker can brute force it. If you are going to extend your seed phrase with a passphrase, you should not try to create one you can remember, set a strong passphrase and back it up safely, just in a different location from your seed phrase.
full member
Activity: 560
Merit: 161
April 15, 2024, 11:46:59 AM
#13
Can anyone share some practical security tips or precautions they've taken while using Bitcoin Core? I want to make sure my wallet and funds are as safe as possible. Any advice or insights would be greatly appreciated!!

Downloading wallet from a reliable source.

Choose passphrase that will be difficult for other people to guess to hack, but very easy for you to always remember.
hero member
Activity: 644
Merit: 661
- Jay -
April 15, 2024, 08:08:37 AM
#12
...don't visit malicious website, i.e. stick with FAANG websites (Amazon, Netflix, Facebook, etc), then you'll be safe (but for maximum security you need an air-gapped computer).
This will give Op the impression that popular means safe. Those top websites track us and have far more data on their user than all the other loew reputable websites, we just trust them not to do anything with it (publicly) that will harm their reputation.

- Jay -
hero member
Activity: 882
Merit: 792
Watch Bitcoin Documentary - https://t.ly/v0Nim
April 15, 2024, 05:10:34 AM
#11
Do you have any reason why you chose to use a Bitcoin core wallet rather than a lite wallet like Electrum?
Even without a reason, it's good that he runs a Bitcoin Node.


By the way, I would suggest you to buy an air-gapped wallet like Passport and Coldcard or download an Electrum wallet on separate air-gapped computer and use that wallet as a cold wallet. I suggest this because if you are looking for maximum security, you need a computer that doesn't have access to the internet and if you run Bitcoin Node, you need to access internet, so this combo is not the safest option. But this doesn't mean either that you'll become hacked. If your computer is clean, you don't download pirated content, don't visit malicious website, i.e. stick with FAANG websites (Amazon, Netflix, Facebook, etc), then you'll be safe (but for maximum security you need an air-gapped computer).

I also want to give you this advice: The more you try to protect your safety, the more responsibilities you'll have to take on your shoulders. The more you'll secure and encrypt everything, the harder it gets to recover things and please keep this in mind. Adjust your wallet's security to how much responsibility you can handle well.
legendary
Activity: 3122
Merit: 2178
Playgram - The Telegram Casino
April 15, 2024, 04:45:56 AM
#10
I chose it because of the security and autonomy it offers. And I have direct access to the entire blockchain if I running a full node with Bitcoin Core And I have full control over my funds. While lite wallets like Electrum offer convenience but I prioritize security.

Be aware that while running a full node via Bitcoin Core is commendable, it might not give the kind of security you are looking for.

Running full nodes versus just using a SPV wallet like Electrum is important for network health and more secure in the sense that your own node verifies transactions rather than relying on a third party to do it for you.

However for most people that is not how you get your coins stolen. What you are looking for is a way to protect your private keys. And for that you either need to set up cold storage, as mentioned by LoyceV, or a hardware wallet. While for the latter there have been various concerning developments I'd argue that they are still preferable over just keeping your coins in a hot wallet like the standard Bitcoin core setup.

Note that simply encrypting your wallet as suggested by promise444c5 will not protect your coins in case of a compromised machine. Even something as simple as a keylogger will completely break this "security" model.

legendary
Activity: 2870
Merit: 7490
Crypto Swap Exchange
April 15, 2024, 04:44:23 AM
#9
This is somewhat vague question, so i only could give vague answer such as,
1. Avoid using Windows OS if possible.
2. Verify the downloaded Bitcoin Core. https://bitcoincore.org/en/download/ shows how to do it.
3. Do not execute command on Bitcoin Core's console or RPC-JSON if you don't understand what it does.

While lite wallets like Electrum offer convenience but I prioritize security.
There really is nothing like a lite bitcoin wallet. Closest example I can think of is a web wallet which is constantly offline and is very unsafe.

He probably use term "lite" because Electrum doesn't download whole blockchain. It's definitely lighter than Bitcoin Core.
hero member
Activity: 644
Merit: 661
- Jay -
April 15, 2024, 03:04:30 AM
#8
While lite wallets like Electrum offer convenience but I prioritize security.
There really is nothing like a lite bitcoin wallet. Closest example I can think of is a web wallet which is constantly offline and is very unsafe.

How you handle your wallet determines the security you get back. A cold wallet on electrum which keys that have never been online is safer than a hot wallet on bitcoin core which is managed less securely.

- Jay -
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
April 15, 2024, 02:22:20 AM
#7
I prioritize security.
On a hot wallet?
legendary
Activity: 3290
Merit: 16489
Thick-Skinned Gang Leader and Golden Feather 2021
April 14, 2024, 12:56:07 PM
#6
I want to make sure my wallet and funds are as safe as possible.
That means: cold storage, and backups. A hot wallet should only be used for amounts needed for daily use, and amounts you can afford to lose. Anything else should be in cold storage. Setting up proper cold storage is a bit of work, but it's the only way to be sure online attacks are not possible.
Depending on your needs there are many different ways to create cold storage.
hero member
Activity: 994
Merit: 1089
April 14, 2024, 12:51:15 PM
#5
I am interested to understand how Bitcoin Core tackles security threats. Could you share some insights into the security measures built into Bitcoin Core to protect users' funds and data?
No wallet 'tackles' security threats for you, it is recommended to use open source, self custodial and well reviewed wallets, but your funds is only as safe as the device you use, your opsec and your knowledge. Bitcoin core is recommended, but if you use it, just like any other wallet, in an unsafe environment, you may lose your funds.

If you want to use Bitcoin core only because you think it will protect your funds for you, then i feel you should go for open source light client wallets like Electrum or BlueWallet, and focus on your opsec as well as running your wallet offline.
legendary
Activity: 3374
Merit: 3095
Playbet.io - Crypto Casino and Sportsbook
April 14, 2024, 12:43:34 PM
#4
Do you have any reason why you chose to use a Bitcoin core wallet rather than a lite wallet like Electrum?
Because Bitcoin core wallet needs lots of resources unless you need a full node for development or something?

For the best solution securing your Bitcoin core wallet only install and create your wallet into cold storage never connect it to online to avoid malware and hacking.
You just need to learn how to do offline transactions you can use Electrum as your watch-only wallet and where you can make unsigned transactions and sign them in your offline Bitcoin core wallet.
sr. member
Activity: 476
Merit: 299
Learning never stops!
April 14, 2024, 12:00:22 PM
#3
Firstly, you  need to understand that Bitcoin core uses AES ( Advanced  Encryption Standard) to encrypt its  wallet, the encryption  is considered  a very  secure one.
That feels like   the major implementation
Apart from that, once you run a bitcoin Core you have the same advantage with running a full node along with your wallet  
 Check
https://bitcoin.org/en/bitcoin-core/features/validation
sr. member
Activity: 476
Merit: 299
Learning never stops!
April 14, 2024, 10:58:12 AM
#2
Encrypt  your wallet.dat and then back it up to a safe place like an external drive, use a very strong combination  for your passphrase while encrypting.
To prevent your external drive from getting  corrupt  do not use it on any random device
Write down your passphrase in a cold form mostly paper   but because  of some hazardous events  that may occur like fire you could  craft it on an aluminium  sheet keep it somewhere  safe.
Next time you try to import your wallet you will be needing the passphrase to make it possible
jr. member
Activity: 71
Merit: 4
April 14, 2024, 10:55:03 AM
#1
Deleted
Jump to: