Author

Topic: Electrum: How can it be safe? (Read 879 times)

newbie
Activity: 13
Merit: 0
April 07, 2013, 09:28:39 PM
#13
Yeah, like completely abandoning everything we know about cryptology. Lol.
legendary
Activity: 1078
Merit: 1002
Bitcoin is new, makes sense to hodl.
March 30, 2013, 07:28:00 AM
#12
If the technology reaches that point we pry have other bigger problems to worry about.
legendary
Activity: 1896
Merit: 1353
March 30, 2013, 06:26:21 AM
#11
I suppose if technology does get close to that, then people with Electrum wallets will need to upgrade and move their coins to a new wallet with higher entropy passphrases.

Exactly. If a technological breakthrough, such as quantum computing, was even remotely threatening 128 bit seeds, we would upgrade immediately.
The same is true for Bitcoin addresses, which have 160 bits of entropy.

btw, thank you OP for the fear mongering thread title.
legendary
Activity: 1120
Merit: 1016
090930
March 30, 2013, 06:18:44 AM
#10
You're absolutely correct.

I was simply using a 64 bit password hash to illustrate that a 128 bit brute force isn't exactly a walk in the park. You would have to *really* want to get in there, and have lots of time to do it.

Just to add my 2 cents: if by "lots of time" you mean "10 times the age of Earth" you would still be underestimating how long it takes on average.
newbie
Activity: 13
Merit: 0
March 30, 2013, 05:48:20 AM
#9
You're absolutely correct.

I was simply using a 64 bit password hash to illustrate that a 128 bit brute force isn't exactly a walk in the park. You would have to *really* want to get in there, and have lots of time to do it.
legendary
Activity: 3528
Merit: 4945
March 25, 2013, 06:18:20 AM
#8
it would take you approximately a year to bruteforce a 10 didget alpha-numeric dual-case pass phrase's hash

10 character pass phrase??  That's only something like 64 bits.

Electrum uses 128 bits.  That is a HUGE difference. 
legendary
Activity: 3528
Merit: 4945
March 25, 2013, 06:11:58 AM
#7
So the endgame for those types of wallets would be to send all coins to a different wallet, incurring a transaction fee? I'd assume if you could regenerate it from a seed, the master key would be compromised.

Yes.  Depending on the size of the transaction and the popularity of bitcoin at the time a fee may or may not be required.  If a fee is required, it may or may not be large enough at that time to be of concern to the individual making the transfer.  But, any bitcoins left behind at an address that resulted from a cracked (or otherwise compromised) seed phrase would be vulnerable.  The only way to be sure that the funds were secure would be to transfer them to a new address that was not derived from the compromised seed.
newbie
Activity: 13
Merit: 0
March 25, 2013, 06:09:35 AM
#6
Honestly, using normal hardware available non-commercially, it would take you approximately a year to bruteforce a 10 didget alpha-numeric dual-case pass phrase's hash, and that's if you actually have the hash, and it's not salted.. I think we'll be fine for a while. =)
newbie
Activity: 6
Merit: 0
March 25, 2013, 06:04:37 AM
#5
Shorter and composed of actual words, I think.

Ah, I just took a quick look at the Electrum website.  You are correct.  The Electrum Seed phrase is generated as 128 random bits.  A private key on the other hand is 256 random bits.  So apparently, once 128 bit keys can be brute-forced, then Electrum passphrases will be brute-forceable as well.  Personally, I'm not concerned about an ability to brute force a random 128 bit passphrase in my lifetime.  I suppose if technology does get close to that, then people with Electrum wallets will need to upgrade and move their coins to a new wallet with higher entropy passphrases.
So the endgame for those types of wallets would be to send all coins to a different wallet, incurring a transaction fee? I'd assume if you could regenerate it from a seed, the master key would be compromised.
legendary
Activity: 3528
Merit: 4945
March 25, 2013, 05:55:17 AM
#4
Shorter and composed of actual words, I think.

Ah, I just took a quick look at the Electrum website.  You are correct.  The Electrum Seed phrase is generated as 128 random bits.  A private key on the other hand is 256 random bits.  So apparently, once 128 bit keys can be brute-forced, then Electrum passphrases will be brute-forceable as well.  Personally, I'm not concerned about an ability to brute force a random 128 bit passphrase in my lifetime.  I suppose if technology does get close to that, then people with Electrum wallets will need to upgrade and move their coins to a new wallet with higher entropy passphrases.
newbie
Activity: 6
Merit: 0
March 25, 2013, 05:46:38 AM
#3
If in the future there was an easy way to brute force seed phrases, wouldn't your wallet be unsafe sometime in the future?

Yes, "if there was an easy way to brute force seed phrases", then your wallet would be unsafe.

Why do you believe that it will be any easier to brute force seed phrases than it is to brute force private keys?
Shorter and composed of actual words, I think.
legendary
Activity: 3528
Merit: 4945
March 25, 2013, 05:42:28 AM
#2
If in the future there was an easy way to brute force seed phrases, wouldn't your wallet be unsafe sometime in the future?

Yes, "if there was an easy way to brute force seed phrases", then your wallet would be unsafe.

Why do you believe that it will be any easier to brute force seed phrases than it is to brute force private keys?
newbie
Activity: 6
Merit: 0
March 25, 2013, 05:38:19 AM
#1
If in the future there was an easy way to brute force seed phrases, wouldn't your wallet be unsafe sometime in the future?
Jump to: