Pages:
Author

Topic: How can we be sure that our private keys have been generated safely? (Read 372 times)

legendary
Activity: 2450
Merit: 4415
🔐BitcoinMessage.Tools🔑
I think the real question is :  could a device be considered as air-gapped once plugged in a computer which is not air-gapped itself ?

It is doable but you couldn't use your Trezor to send any Bitcoin in this case
Not only the term "air-gapped" can be applied to specific devices but also to networks of devices and systems. If you have a network of devices (a standard LAN, for instance) in which one of the devices has had direct communication with the external Internet, that means your network no longer should be considered air-gapped. On the other hand, if you physically connect your hardware wallet to an isolated computer (which is part of the air-gapped system), your device remains to be an air-gapped one, despite of direct connection via USB cable or some other physical means. To transfer a signed transaction from an isolated network, you can use such means of indirect (non-Internet) communication as QR-codes, microSD cards, or mesh networks.
hero member
Activity: 406
Merit: 443
I think the real question is :  could a device be considered as air-gapped once plugged in a computer which is not air-gapped itself ?
It is doable but you couldn't use your Trezor to send any Bitcoin in this case

The term air-gapped comes from the fact that the connection between your device and the place where the private key is located is air so you can guarantee that there is no physical medium connecting the two parties.

In other words, all communication methods that do not guarantee physical linking are acceptable, and the most prominent example of this is the QR code, which is an example of high privacy, since in this way your currencies can only be accessed by physical attack or brute force, which is impossible if the private key is truly random generated.



is hardware wallets have to be air-gapped to be secure? hardware wallets are secure, even if they are not air-gapped. Nevertheless, they allow you to easily manage several crypto-currency pairs, which is difficult in air-gapped systems.
legendary
Activity: 2184
Merit: 1302
but by reading from friends' suggestions I think I will buy one of the open wallets as mentioned, because so far I only believe in truswallet and the like
If you don't have the funds to buy an open source hardware wallet, use electrum, it is a software wallet and is free to use, mind you to download it only from the official website, if you download it from anywhere else, you might prolly get a fake version of it and incur losses.
Another question : are hardware wallets like bitbox or Trezor considered as air-gapped ?
There are airgapped hardware wallets like Passport, but you can also build your own airgapped wallet with electrum and it'd be completely safe if you do everything perfectly.
legendary
Activity: 2380
Merit: 5213
Another question : are hardware wallets like bitbox or Trezor considered as air-gapped ?
Not all hardware wallets are airgapped. Both bitbox and Trezor are non-airgapped.
You can visit the topic created by dkbit98 to know some airgapped hardware wallets.
AirGapped Hardware Wallets
hero member
Activity: 504
Merit: 1065
Crypto Swap Exchange
Another question : are hardware wallets like bitbox or Trezor considered as air-gapped ?

I think the real question is :  could a device be considered as air-gapped once plugged in a computer which is not air-gapped itself ?

It is doable but you couldn't use your Trezor to send any Bitcoin in this case
hero member
Activity: 1820
Merit: 775
actually I'm not sure of the existing private key, by looking at previous wallet hackers
but by reading from friends' suggestions I think I will buy one of the open wallets as mentioned, because so far I only believe in truswallet and the like

Trustwallet is not open-source and it's not recommended, that's what I read on the forum.

Another question : are hardware wallets like bitbox or Trezor considered as air-gapped ?

legendary
Activity: 2156
Merit: 1018
Buzz App - Spin wheel, farm rewards
actually I'm not sure of the existing private key, by looking at previous wallet hackers
but by reading from friends' suggestions I think I will buy one of the open wallets as mentioned, because so far I only believe in truswallet and the like
legendary
Activity: 2380
Merit: 5213
To create a secure key, you must turn off the internet during the wallet setup process and generate the key.
You don't make your wallet more secure just with disconnecting your device from internet when creating the wallet.
If your wallet to be secure, it should be created on an airgapped device. This means that you should create your wallet using a device which has been always offline and will be never online.


move your wallet files to an offline location and use them only the next time you access the wallet.
This is not enough.
Note that the wallet file isn't permanently gone once you remove it. That's why there are tools that can be used to recover deleted files.
legendary
Activity: 2660
Merit: 1141
In order to fully understand the question I asked and get some interesting answers, I'd like to make it clear that it's not a question of knowing how to secure your keys, but how to generate them securely. If you secure badly generated keys, it makes no sense. Thank you  Smiley
Have you found the answer you want?

I think I understand what you mean now. To create a secure key, you must turn off the internet during the wallet setup process and generate the key. You also need to secure all that data offline including passwords and seeds, or if possible, move your wallet files to an offline location and use them only the next time you access the wallet. But I do it with electrum, not on Trustwallet.
hero member
Activity: 1820
Merit: 775
Hello,

I understood that Trustwallet is closed source, so it's not great. Atomic wallet has just been hacked. Ledger offers a recovery service that raises questions.

How can we be sure that our private keys have been generated securely?

Thank you
As little as I've learnt since I join this forum, I still believe the best means of securing our assets or wallet is by using hard wallet and avoid interacting with decentralized apps we do not completely trust in order not to get out wallets or recovery phrases compromised.

Thank you but I didn't ask how to secure the keys.

If you are using the right crypto wallet

Ok which wallets for example ?


When the wallet is safe, it is our duty as users to secure the key properly. there are many methods that can be applied to secure wallet keys. Each method has a different level of difficulty and security. I usually use a stainless steel plate ring to record the key and store it in a safe place in my opinion. I also save in digital form but with good protection and rarely connected to the internet. having backup storage is also necessary.


Thank you for your answers. In order to fully understand the question I asked and get some interesting answers, I'd like to make it clear that it's not a question of knowing how to secure your keys, but how to generate them securely. If you secure badly generated keys, it makes no sense. Thank you  Smiley

legendary
Activity: 2338
Merit: 1084
zknodes.org
I use only the Electrum wallet for many years and I have no idea how the private keys are generated but because I trust this wallet and I use the right site, I'd feel safe and no worries. And if you think and doubted that your private keys are not safe, then never use them but look for another. It was you to keep what makes you comfortable but if you are using the right site, I'm very certain that those keys are safe and just only for you as the owner of the wallet. Hacks happened when you share your keys with another person or someone got into your computer and found your keys there. Better stored it separately for more security.
When the wallet is safe, it is our duty as users to secure the key properly. there are many methods that can be applied to secure wallet keys. Each method has a different level of difficulty and security. I usually use a stainless steel plate ring to record the key and store it in a safe place in my opinion. I also save in digital form but with good protection and rarely connected to the internet. having backup storage is also necessary.
sr. member
Activity: 952
Merit: 275
If you are using the right crypto wallet, non-custodial and fully open source then you can be rest assured that it's generated successfully, the future safety of your private key is in your care, you need to keep the private key safe from leaks and hijacks online, the best way to store your keys are offline and private to yourself only, if you can do this then your assets will be safe.
legendary
Activity: 2184
Merit: 1302
*bitcoin core is the official Bitcoin wallet, I always suggest my friend download that wallet 1st on his PC. I know that little complicated, but if understands, I am really sure he will be safe and understand to save his private key and wallet.dat.
Bitcoin does not have any official wallet, Bitcoin is a decentralized network, so there is no official wallet, website or whatever. Bitcoin core is just the first Bitcoin software created by Satoshi that one can use to run a full node. Spv wallets are also very safe to use, instead of downloading Bitcoin core when you do not have enough storage space, just use a good spv wallet like electrum. Bitcoin core would definitely give you more privacy than spv clients, but other than that your funds are safe in a good spv wallet.
sr. member
Activity: 658
Merit: 441
It is impossible to make the necessary knowledge and checks in a security company.
Specialists connect wallets to their servers to check the data sent and the entropy of the seed phrase.
An open source application is easier to hack than a closed source application.
No chief you are wrong, It's actually the other way round. Closed source wallet are easy to be hacked because there are less people looking through the source codes while open source as the name implies, the code is made open for everyone to verify. So there are many eyes looking through it and if there's any bug or security threat, it is quickly reported and the harm can be averted. I've not read or seen any open source wallet hack report and I'm not saying that it can't be compromised either. Users can lose funds in their open source wallet if they are careless with their seed phrase or click phishing links.
member
Activity: 136
Merit: 11
Hello,

I understood that Trustwallet is closed source, so it's not great. Atomic wallet has just been hacked. Ledger offers a recovery service that raises questions.

How can we be sure that our private keys have been generated securely?

Thank you
As little as I've learnt since I join this forum, I still believe the best means of securing our assets or wallet is by using hard wallet and avoid interacting with decentralized apps we do not completely trust in order not to get out wallets or recovery phrases compromised.
hero member
Activity: 868
Merit: 737
Close or Open source wallet, it just depends on you how to safely, It's vain if using open source wallet but you don't know how to read the source code on Git Hub.

It's happening to me, open source wallet is just giving me convenience, but I can't read how safe, because I can't read the code on Git Hub.

So if you want to be safe, and can't read the code, Use the old wallet used since the beginning, for example, bitcoin core (*) which was created by Satoshi Nakamoto where always updated by the developer forum. Electrum wallet is safe also, which is widely used and always has much support from a legendary member here.

*bitcoin core is the official Bitcoin wallet, I always suggest my friend download that wallet 1st on his PC. I know that little complicated, but if understands, I am really sure he will be safe and understand to save his private key and wallet.dat.
sr. member
Activity: 854
Merit: 424
I stand with Ukraine!
How can we be sure that our private keys have been generated securely?
You only can know it if that wallet is open-sourced.

If it has an open source code, you can check code and see that wallet as backdoors or not. If you can not check codes, you will have to rely on reviews from others but Bitcoin community is big and if an open-sourced wallet has backdoors, many developers in community will warn us about that.

[LIST] Open Source Hardware Wallets
[LIST] Open-source Lightning wallets
hero member
Activity: 406
Merit: 443
How can we be sure that our private keys have been generated securely?
You want to ensure that your coins are safe from whom? For example, all wallets fail to protect you from physical attacks or social attacks, as hackers can collect information about you and use it to access your computer and know the password for decryption. Therefore, keep your investments silent and always use an airgapped wallet that will not connect to the Internet.

Then, the open source wallets, which have been reviewed by thousands of developers, are safer than the closed source wallets, which may not be reviewed by many, so your use of well-reviewed open source wallets reduces the risk of losing your investment.

using open-source airgapped wallets better than hot wallet.
Increasing your technical knowledge, following the news reduces the possibility of losing any coins if any vulnerability is discovered.

Thus, it is an ongoing process of reducing risks to be closer to zero.
legendary
Activity: 3024
Merit: 2148
I use Electrum because it's a wallet with very good reputation that has been around for many years and generally it didn't fail. It has been reviewed many times by the best experts in the field, so it's very unlikely that there are any critical vulnerabilities or backdoors. In my opinion the only wallet better than Electrum is Bitcoin Core, but it requires full blockchain sync, which has been for some reason going very slowly for me, so for convenience I'm using Electrum instead.
hero member
Activity: 1820
Merit: 775

That's why it's important to always verify with the PGP signatures when downloading wallets. This gives you peace of mind afterwards.


You always have great tips that seem insurmountable to me.  Undecided

It's not very difficult and it is always very good for your security to be familiar with PGP!

If you are interested by verifying your Electrum, here is an excellent topic from DireWolfM14 about it :    
[GUIDE] How to Safely Download and Verify Electrum
and here is a Youtube video I found on bitcointalk some time ago, which is cool too if you prefer video tutorials



cool merci !
Pages:
Jump to: