Pages:
Author

Topic: How can electrum seed be secure - page 2. (Read 4402 times)

staff
Activity: 3458
Merit: 6793
Just writing some code
September 21, 2016, 08:45:42 AM
#7
Just tried Electrum and i can only make english so where are the others
It depends on your computer's language. Default is english, if your computer's language is chinese, japanese, portuguese and spanish, then it will be in one of those languages.

Also, read my edited post for the math.
newbie
Activity: 16
Merit: 0
September 21, 2016, 08:41:46 AM
#6
Just tried Electrum and i can only make english so where are the others
hero member
Activity: 896
Merit: 1006
September 21, 2016, 08:36:48 AM
#5
Basically, to sum up the post achow101 is refering to... It's like cracking a 12 character password written in an alphabet containing 2048 letters... But 4 different alphabets can be used.

Mathematically, it's waaaaaaaaaaaay harder than cracking a 12 character password written using a standard 26 character alphabet.

At least, that's how i always understood it.
staff
Activity: 3458
Merit: 6793
Just writing some code
September 21, 2016, 08:28:44 AM
#4

But in electrum there are 2048 words that are public so we can consider that each word is 1 alphabet letter so brute forcing a 12 character password from 2048 pool doesn't seem that hard to do?
And after the seed is used is it possible to force it to use user generated password for make any transaction or after someone gets seed they have full access
You didn't read the post, did you? The search space is massive, in fact much more so than a 12 character password. Read the post and look at the math.

Electrum's mnemonic is similar to BIP39 but not the same. AFAIK, Electrum actually uses 13 words. That means that there are 11,150,372,599,265,311,570,767,859,136,324,180,752,990,208 possible combinations. Furthermore, there are 5 languages, so if you don't know the language, there are 55,751,862,996,326,557,853,839,295,681,620,903,764,951,040 possible combinations. Because the seed is random, there is no pattern, so the only way to get the seed is through brute force. Even if you were able to guess 50 Million seeds per second, it would still take 1.3274253094363466155676022781338310420226438095238095... × 10^31 years to go through the search space.
newbie
Activity: 16
Merit: 0
September 21, 2016, 08:23:55 AM
#3

But in electrum there are 2048 words that are public so we can consider that each word is 1 alphabet letter so brute forcing a 12 character password from 2048 pool doesn't seem that hard to do?
And after the seed is used is it possible to force it to use user generated password for make any transaction or after someone gets seed they have full access
staff
Activity: 3458
Merit: 6793
Just writing some code
newbie
Activity: 16
Merit: 0
September 21, 2016, 08:08:23 AM
#1
The electrum seed is 12 words randomly generated from 2048 words list
the word list is public and everyone know what the words are so for someone to brute force it they dont need to brute force 12 words but simply 12 characters since every word is known
how can it be secure?
i want to store some of my BTC with electrum but i just do not see how a 12 word seed from 2048 public words can be secure it seems like very bad protection
Pages:
Jump to: