Bitcoin Forum>Other>Archival>MultiBit
Author

Topic: How secure is password generation in MultiBit HD? (Read 1040 times)

BitcoinNewsMagazine
legendary
Activity: 1806
Merit: 1164
How secure is password generation in MultiBit HD?
May 06, 2016, 04:49:31 PM
#5
Quote from: x13 on April 23, 2016, 07:58:59 AM
I just downloaded MultiBit HD. By now, I have used Multibit Classic. I am wondering how secure the 12 words passphrase of MultiBit HD is?
Acutally, the group of words are all known. Is it not possible to try all combination of the words in order to get the right pass? Something like a bruteforce attack.

Well, when you created the wallet and were asked to write down the seed phrase in order to restore the wallet if needed, you need to worry about keyloggers stealing your seed. Same with the password you use for the wallet to encrypt your private keys. This article from Forbes discusses bitcoin stealing malware and this was two years ago.

The author recommended cold storage, specifically Trezor to keep your private keys offline and the use of a hardware wallet is more important today than two years ago. If you own more than a few bitcoin you should be using a hardware wallet or risk an unpleasant surprise one day to find your bitcoin stolen.
shorena
copper member
Activity: 1498
Merit: 1528
No I dont escrow anymore.
Re: How secure is password generation in MultiBit HD?
May 06, 2016, 04:34:36 PM
#4
Quote from: x13 on May 05, 2016, 08:01:17 AM
So, currently I do not worry about the security about my Bitcoins?

I dont know what you worry about.

Quote from: x13 on May 05, 2016, 08:01:17 AM
In your first sentence you state that it is not secure.

No. I say "No, its not" to your "Is it not possible to try all combination of the words in order to get the right pass?".

Quote from: x13 on May 05, 2016, 08:01:17 AM
In the last sentence you state that it is secure by now. Confuseingly.

Quote from: shorena on April 23, 2016, 03:53:08 PM
Quote from: x13 on April 23, 2016, 07:58:59 AM
I just downloaded MultiBit HD. By now, I have used Multibit Classic. I am wondering how secure the 12 words passphrase of MultiBit HD is?
Acutally, the group of words are all known. Is it not possible to try all combination of the words in order to get the right pass? Something like a bruteforce attack.

No its not. The symbols for your private keys are well known as well (1,0 if encoded binary, [a-f0-9] if encoded in hex). Think of the words like a different set of symbols. They still represent a 128-bit (IIRC) number, which is impossible to brute force with currently available technology. It may be possible in the distant future, but for now there are no signs that it ever will be.

Your assumption that because the symbols are known its less secure makes no sense.
x13
sr. member
Activity: 336
Merit: 250
Things are called shit for a reason, dear.
Re: How secure is password generation in MultiBit HD?
May 05, 2016, 08:01:17 AM
#3
So, currently I do not worry about the security about my Bitcoins?

In your first sentence you state that it is not secure. In the last sentence you state that it is secure by now. Confuseingly.

Quote from: shorena on April 23, 2016, 03:53:08 PM
Quote from: x13 on April 23, 2016, 07:58:59 AM
I just downloaded MultiBit HD. By now, I have used Multibit Classic. I am wondering how secure the 12 words passphrase of MultiBit HD is?
Acutally, the group of words are all known. Is it not possible to try all combination of the words in order to get the right pass? Something like a bruteforce attack.

No its not. The symbols for your private keys are well known as well (1,0 if encoded binary, [a-f0-9] if encoded in hex). Think of the words like a different set of symbols. They still represent a 128-bit (IIRC) number, which is impossible to brute force with currently available technology. It may be possible in the distant future, but for now there are no signs that it ever will be.
shorena
copper member
Activity: 1498
Merit: 1528
No I dont escrow anymore.
Re: How secure is password generation in MultiBit HD?
April 23, 2016, 03:53:08 PM
#2
Quote from: x13 on April 23, 2016, 07:58:59 AM
I just downloaded MultiBit HD. By now, I have used Multibit Classic. I am wondering how secure the 12 words passphrase of MultiBit HD is?
Acutally, the group of words are all known. Is it not possible to try all combination of the words in order to get the right pass? Something like a bruteforce attack.

No its not. The symbols for your private keys are well known as well (1,0 if encoded binary, [a-f0-9] if encoded in hex). Think of the words like a different set of symbols. They still represent a 128-bit (IIRC) number, which is impossible to brute force with currently available technology. It may be possible in the distant future, but for now there are no signs that it ever will be.
x13
sr. member
Activity: 336
Merit: 250
Things are called shit for a reason, dear.
Re: How secure is password generation in MultiBit HD?
April 23, 2016, 07:58:59 AM
#1
I just downloaded MultiBit HD. By now, I have used Multibit Classic. I am wondering how secure the 12 words passphrase of MultiBit HD is?
Acutally, the group of words are all known. Is it not possible to try all combination of the words in order to get the right pass? Something like a bruteforce attack.
Bitcoin Forum>Other>Archival>MultiBit
Jump to: