Lost Half of Private Key - Are Bitcoins Safe? - page 2.

ShakyhandsBTCer

sr. member

Activity: 448

Merit: 250

It's Money 2.0| It’s gold for nerds | It's Bitcoin

Quote from: Bitcoin++ on June 17, 2014, 05:30:18 PM

Say that someone knows half a private key and the corresponding public address.
Can he find out the other half of the private key somehow?

... apart from brute forcing for a billion years

You would likely be safe.

There are certain sophisticated attacks that could be done to further narrow down the possibility of what the possibility the rest of your private key is.

To keep it simple, you will likely not have your coins stolen within seconds of someone finding your private key, but it would be advisable to cease using the subject BTC address right away and to move your coins at your earliest connivence.

Note: the corresponding public address does not matter, the attacker knowing this does not make a difference (besides the fact that an attacker may know that the address they are trying to "hack" contains x amount of bitcoin

cp1

hero member

Activity: 616

Merit: 500

Stop using branwallets

Quote from: S4VV4S on June 17, 2014, 05:55:49 PM

Yes, you could give it to them Grin

Yeah, it's far more likely they will find out the second half by the same method they found out the first half.
Also there's some possibility that there's some EC vulnerability if you know half of a key, but that's beyond my knowledge.

DeathAndTaxes

donator

Activity: 1218

Merit: 1079

Gerald Davis

Quote from: cp1 on June 17, 2014, 05:36:47 PM

It makes it 340282366920938463463374607431768211456 times easier to brute force.

So if you could guess 10^9 per second it'd only take you 10^24 years instead of 10^63 years.

256 bit ECDSA keys only have 128 bit security. Half of an ECDSA key would be 64 bit security. While a naive attack would be to increment all possible private keys there are more sophisticated attacks ( https://en.wikipedia.org/wiki/Pollard%27s_rho_algorithm_for_logarithms ) which are of complexity O( n^(1/2) ) steps where n is the key length.

64 bit security would be breakable but it is very likely the cost to break they key would be greater than the reward. Although if this isn't a hypothetical I would recommend transferring the coins now.

S4VV4S

hero member

Activity: 1582

Merit: 502

Quote from: Bitcoin++ on June 17, 2014, 05:30:18 PM

Say that someone knows half a private key and the corresponding public address.
Can he find out the other half of the private key somehow?

... apart from brute forcing for a billion years

Yes, you could give it to them Grin

Baitty

hero member

Activity: 532

Merit: 500

Currently held as collateral by monbux

Quote from: cp1 on June 17, 2014, 05:36:47 PM

It makes it 340282366920938463463374607431768211456 times easier to brute force.

So if you could guess 10^9 per second it'd only take you 10^24 years instead of 10^63 years.

Nice math! But OP short answer. YES they are safe.

cp1

hero member

Activity: 616

Merit: 500

Stop using branwallets

It makes it 340282366920938463463374607431768211456 times easier to brute force.

So if you could guess 10^9 per second it'd only take you 10^24 years instead of 10^63 years.

Bitcoin++

full member

Activity: 180

Merit: 100

Say that someone knows half a private key and the corresponding public address.
Can he find out the other half of the private key somehow?

... apart from brute forcing for a billion years

Topic: Lost Half of Private Key - Are Bitcoins Safe? - page 2. (Read 2091 times)