Author

Topic: Does the Armory wallet format encrypt or protect the chain code? (Read 977 times)

legendary
Activity: 2126
Merit: 1001
As far as I know all wallet app have this shortcoming.  It's not easy to overcome... unless you scan the blockchain on every load Smiley  Because even if you encrypt the watching-only wallet, any data you save between loads can be used to identify what money is in your wallet. 

It's not *exactly* the same. With an encrypted wallet, noone can see the balance when obtaining an encrypted backup. With unencrypted public data in the wallet, this is possible (without access to the Armory computer).

Ente
sr. member
Activity: 285
Merit: 250
You can always just run Armory inside a TrueCrypt container so your addresses and balance is hidden when you are not using the wallet.
legendary
Activity: 1428
Merit: 1093
Core Armory Developer
As far as I know all wallet app have this shortcoming.  It's not easy to overcome... unless you scan the blockchain on every load Smiley  Because even if you encrypt the watching-only wallet, any data you save between loads can be used to identify what money is in your wallet. 

This was one of the benefits to having the super-node version of Armory that maintains a full DB of all spent and unspent UTXOs, so that it can encrypt the watching-only wallet without leaving leaky information all over the disk.  You just decrypt the wallet and instantaneously request all the address balances from your local database (among other uses for the super-node version).  But the super-node stuff will be put on hold for now.  Got some other priorities.

What I hope to do is get the blockchain scanning in Armory faster (I missed a lot of database optimizations in 0.90), and then have an option to disable saving data between loads.  Then it will behave much like 0.88.1 and earlier where it scanned every load.  Then it makes sense to implement the encryption. 
hero member
Activity: 547
Merit: 500
Decor in numeris
The Armory wallets unfortunately do not encrypt the bitcoin addresses it generates.  So the value of the wallet can be seen by anyone getting hold of the file.  It is rumoured that a new format is on its way which addresses this shortcoming.

By the way: The original Bitcoin client has the same problem.
legendary
Activity: 3430
Merit: 3080
From perusing all the talk on developing deterministic wallet formats, and from knowing myself the way Armory operates both when opening the application and when generating a new public key for a given wallet, I have this sense that the answer to my question is "no".

If so, does this mean that the wallet file can be interrogated as to the value of it's chain code, and hence the BTC value of the wallet discovered? (by someone with a copy of any encrypted Armory wallet)
Jump to: