Author

Topic: Mnemonic seed? (Read 470 times)

member
Activity: 180
Merit: 38
September 24, 2020, 04:25:23 AM
#22
astronomically

Well that is the general assumption, or consensus.
 
You also have to realize that no system is guaranteed to be fail safe.
legendary
Activity: 2268
Merit: 18771
September 24, 2020, 04:01:40 AM
#21
-snip-
I mean, sure, a passphrase makes no difference if an attacker is just blindly brute forcing seed phrases or private keys. However, the change of someone having their coins stolen from an attacker brute forcing a 2256 space is astronomically smaller from the chance of someone having their coins stolen from someone finding their seed phrase back up, or coercing them in to revealing it, or them accidentally exposing it online, and so on, in which case a strong passphrase can mean the difference between losing everything and losing nothing.
member
Activity: 180
Merit: 38
September 24, 2020, 03:46:29 AM
#20
I agree on the passphrase protected hardware wallets, but it's generally a bad idea to put them in places where many people have access to, i mean if they steal your hardware wallet, good luck with your passphrase...

Other then that and about the mnemonics themselves a lot can be said.
It's all just stacked layers of convenience and security but it's only so for the end user.
It makes it harder for you, to get to your funds.
But it doesn't add any extra security to the system.
A systems security is as strong as it's weakest link.

People tend to believe that something is more safe in this or that way, but this is merely a feeling or a emotional state, But it does not mean that it really became any safer by adding a new method.

Don't forget that, for your mnemonic + passphrase there will also exist a different mnemonic that does not have any passphrase set which will lead to the same address.
You have to realize that it's all just numbers at the core.

These 2048 added hash rounds are rounds you need to run through before you can get to your funds.
This makes it harder for you to get to your public point, but that does not mean it get's harder for everyone or for an attacker.
For an attacker any point will do, he is not looking for your point specifically he will be looking to check as many points as possible in the given amount of time, so you can bet that he will be using a different and faster method.

Simply said, your mnemonic is not the only way to get to your funds and you should be aware of that.
Your funds are not protected by your mnemonic, or rounds of hash, your mnemonic is just a convenient way to store access to your funds, for mostly yourself.
In reality your funds are behind just one number, and no matter how many rounds, words or passphrases or layers of security you stack on top of each other to get to your number yourself, if an attacker uses a different method without all these bells and whistles, then all these layers of security will only count for one person and that person is you.

In fact many times these systems get stacked and then one element fails like a user losing his passphrase and now he has lost access to his own funds he has become a victim of his own security we have seen this numerous times as it happens on a regular basis.
It's a pity when you realize that the passphrase he lost didn't actually add any extra security at all, except for himself and he is now well protected against gaining access to his own funds.
legendary
Activity: 2268
Merit: 18771
September 24, 2020, 02:54:53 AM
#19
Some see it as an extra safety measure, but I'm not convinced it's so much useful.
I use multiple different passphrases for multiple different wallets and I think it is a great feature. People should use it more.

In some cases, it can be a huge safety improvement. Trezor devices, for example, can have the seed phrase extracted from them by someone with physical access to the device. If you aren't using a strong passphrase, then your funds are gone. Ledger devices had a now patched bug which allowed an altcoin transaction to also sign a bitcoin transaction from the corresponding wallet. If your altcoin and bitcoin wallets were behind different passphrases, then this would have been entirely mitigated.

It can also be a privacy improvement. Using entirely different wallets for different things will help prevent you from accidentally linking inputs together that you wanted to keep separate (although granted this can also be achieved using different accounts in the derivation path).

If someone finds one of my seed phrase back ups (unlikely, but not impossible), then only the minority of my coins stored at that "top level" are at immediate risk, and the majority stored under various passphrases will be secured against a brute force attack for long enough for me to move them to new wallets. Not to mention that passphrases are the only real protection we have against $5 wrench attacks.
legendary
Activity: 3472
Merit: 10611
September 23, 2020, 10:25:27 PM
#18
There are words that are not in BIP39's word list: "overweight" for example, so I guess that's why it can't be added.

I'm not sure what you want to achieve with non-BIP39 words, but at least in Electrum you can extend the seed with custom words.
Some see it as an extra safety measure, but I'm not convinced it's so much useful.

Electrum has an option that lets you supply your own custom wordlist that can also contain any number of words (not just the standard 2048) and then derive the mnemonic using that list instead. it helps with the scalability of the code and gives the option to use different things for advanced purposes.

as for the extension, it is the same with all wallets that have BIP-39 or BIP-39-like mnemonic derivation. since they use a KDF in the end right before the mnemonic is converted to a BIP-32 seed and a KDF takes both a salt and a passphrase they let the user set that passphrase if they wanted to derive an entirely different seed.
and it is not exactly for "safety". it is designed for "plausible deniability". PBKDF2 specially with such low iteration is too weak to add any security.
legendary
Activity: 3668
Merit: 6382
Looking for campaign manager? Contact icopress!
September 23, 2020, 01:47:30 AM
#17
There are words that are not in BIP39's word list: "overweight" for example, so I guess that's why it can't be added.

I'm not sure what you want to achieve with non-BIP39 words, but at least in Electrum you can extend the seed with custom words.
Some see it as an extra safety measure, but I'm not convinced it's so much useful.
HCP
legendary
Activity: 2086
Merit: 4363
September 23, 2020, 01:40:59 AM
#16
I have no idea, I still read but bitcoin is a whole universe, it takes a long time to understand and realize many things.
There are words that are not in BIP39's word list: "overweight" for example, so I guess that's why it can't be added.
Not aware of any wordlists using the word "overweight", it's not even a valid word for the old legacy blockchain.info password recovery... unless your relative was trying to be clever and obfuscate their seed by using "overweight" instead of "fat"? Huh

Is the seed mnemonic 12 or 24 words long? and how many "non-BIP39" words are there exactly? Huh
legendary
Activity: 3472
Merit: 10611
September 22, 2020, 11:16:05 PM
#15
Electrum used new wordlist
the word list itself is the same as what others use. the difference is in the algorithm used to derive a mnemonic from the entropy, mainly in the way checksum is defined. Electrum's is versioned.

Quote
Why not back up the private key instead because you can import the private key to many different wallets compared to Mnemonic seed backup and honestly it's not safe to use if you are going to import it to many wallets(It's too risky).
the whole point of using a mnemonic is that you don't backup individual private keys. you backup one thing safely and it can recover ALL your keys currently in use or the  ones you may use in the future. it is not easily possible to backup say 100 keys.
legendary
Activity: 2366
Merit: 2054
September 22, 2020, 07:03:52 PM
#14
Then, how can we determine which seed belongs to which wallet?
My relative died recently, and his parents found a piece of paper labeled "bitcoin" containing mnemonic seed.
I tried to import it into Electrum, but does not accept it. How do I know what wallet it is for?
GUI Electrum created only 12 seed, if you have 24 seed it's not for electrum. (exception if you expert, you created on console tab>> make_seed(256))

My relative died recently, and his parents found a piece of paper labeled "bitcoin" containing mnemonic seed.
I tried to import it into Electrum, but does not accept it. How do I know what wallet it is for?
1. How much wordlist?, 12 or 24?
2. If can't import it electrum, I suggest to read #7 or Use https://iancoleman.io/bip39/
3. if 20 wordlist, maybe split seed (shamir secret sharing) where trezor T wallet have this feature https://wiki.trezor.io/User_manual:Creating_a_wallet_with_Shamir_Backup

What types of mnemonic seeds are used in Bitcoin?

that are not in BIP39's word list: "overweight" for example,
Where you fund it?, new or old electrum?,
jr. member
Activity: 46
Merit: 66
#WeAreAllHodlonaut
September 22, 2020, 06:57:40 PM
#13
I have no idea, I still read but bitcoin is a whole universe, it takes a long time to understand and realize many things.
There are words that are not in BIP39's word list: "overweight" for example, so I guess that's why it can't be added.
legendary
Activity: 2296
Merit: 2892
#SWGT CERTIK Audited
September 22, 2020, 06:43:33 PM
#12
Then, how can we determine which seed belongs to which wallet?
My relative died recently, and his parents found a piece of paper labeled "bitcoin" containing mnemonic seed.
I tried to import it into Electrum, but does not accept it. How do I know what wallet it is for?
Have you tried ticking the BIP39 seed option when importing seeds in Electrum? If there are custom words, also tick the "Extend this seed with custom words."



legendary
Activity: 2380
Merit: 5213
September 22, 2020, 04:34:34 PM
#11
I tried to import it into Electrum, but does not accept it. How do I know what wallet it is for?
Did you check BIP39 when importing the seed phrase into Electrum?
Most of wallets support BIP39 seeds. So, there's a high probability, that seed phrase is a BIP39 seed.
You should also try it with different script types.
jr. member
Activity: 46
Merit: 66
#WeAreAllHodlonaut
September 22, 2020, 03:43:24 PM
#10
Then, how can we determine which seed belongs to which wallet?
My relative died recently, and his parents found a piece of paper labeled "bitcoin" containing mnemonic seed.
I tried to import it into Electrum, but does not accept it. How do I know what wallet it is for?
legendary
Activity: 2268
Merit: 18771
September 22, 2020, 01:47:32 PM
#9
I later know all the wallets mentioned above support BIP44 but electrum wallet did not support BIP44
I think you mean BIP39, not BIP44.

BIP39 describes a method for generating and using mnemonic phrases to create wallets known as "hierarchical deterministic wallets".
BIP44 describes the standard derivation path used in such wallets for legacy addresses, which is m/44'/0'/0'/0/0 for the first non-change address of the first account.

Despite Electrum not conforming to the BIP39 standard, it does conform to the BIP44 standard, and uses these standard derivation paths with its own seed phrases.
legendary
Activity: 2380
Merit: 5213
September 22, 2020, 01:20:21 PM
#8
Electrum used new wordlist and I don't know if standard seed from Electrum can be import to the different wallet
You can import a seed phrase generated from Electrum wordlist into Bluewallet.

Note: You cannot import Electrum seed into bluewallet if the wallet is empty. [Ref.]
legendary
Activity: 2366
Merit: 1272
Heisenberg
September 22, 2020, 10:58:41 AM
#7
Also, I do the same for electrum by importing seed phrase from coinomi into an electrum wallet, not also successful as it did not bring out the  next button.
If you want the next btton to work, you have to click on the Options button and check BPIP 39 seed right before or after you enter the Mnemonic/seed phrase


Once you press the next button, you should choose the right script type and the derivation path used by Coinomi of the addresses you would like to restore.

legendary
Activity: 1512
Merit: 4795
Leading Crypto Sports Betting & Casino Platform
September 22, 2020, 10:25:36 AM
#6
Electrum is an outlier which uses its own seed phrase algorithms. You can import BIP39 seed phrases from elsewhere to Electrum, but you can't import Electrum seed phrases in to most other wallets.
I have just downloaded a coinomi wallet on another device, I imported the seed phrase from my electrum wallet into the coinomi but it did not work. You are very right. Later, I read seed phrase generated on mycelium, copay, bitpay, jaxx, ledger nano, keepkey, trezor, blockchain, exodus and trust wallets can be easily imported on coinomi. Also, I do the same for electrum by importing seed phrase from coinomi into an electrum wallet, not also successful as it did not bring out the  next button. I used electrum seed on the new electrum wallet and it brought out the next button.

I later know all the wallets mentioned above support BIP44 but electrum wallet did not support BIP44, which is the reason the seed phrase generated on electrum wallet will not support most other wallets.

The wallets above are not all recommendable, only for informational purpose. Like me, I prefer hardware wallets, mycelium and trust wallets. Including the electrum wallet in question.
legendary
Activity: 2268
Merit: 18771
September 22, 2020, 07:45:35 AM
#5
The vast majority of software and hardware wallets will support seed phrases.

Of these, the vast majority will use the BIP39 standard. You can therefore use the same BIP39 seed phrase in all BIP39 supporting wallets.

Electrum is an outlier which uses its own seed phrase algorithms. You can import BIP39 seed phrases from elsewhere to Electrum, but you can't import Electrum seed phrases in to most other wallets.
legendary
Activity: 2366
Merit: 2054
September 22, 2020, 07:44:23 AM
#4
Which wallets support mnemonic seed except Electrum
Most of the hardware wallet is support, here the list

are there any differences in the wordlists? I see Electrum has "old" and "new" wordlists.
"New" electrum use BIP39 wordlist.
you should know other special seed for LN called aezeed

Can I use the same seed on a different wallets?
yes, wallet compatible with BIP39 seed
legendary
Activity: 3472
Merit: 3217
Playbet.io - Crypto Casino and Sportsbook
September 22, 2020, 07:37:20 AM
#3
Electrum used new wordlist and I don't know if standard seed from Electrum can be import to the different wallet but you can use the BIP39 wallet and there might be some supported wallet like mycelium?
But I heard that you can only import the seed if it was created from Mycelium and you can able to import it to Electrum.

Bitcoin wallets have many different algo/path so I think Electrum mnemonic seeds are not compatible on other wallets.

Why not back up the private key instead because you can import the private key to many different wallets compared to Mnemonic seed backup and honestly it's not safe to use if you are going to import it to many wallets(It's too risky).
legendary
Activity: 2310
Merit: 4085
Farewell o_e_l_e_o
September 22, 2020, 07:08:39 AM
#2
Seeds are depend on which BIP one wallets use.

For Electrum wallet, you can check details at their documentation page

Electrum Seed Version System
Quote
This document describes the Seed Version System used in Electrum (version 2.0 and higher).

Early versions of Electrum (before 2.0) used a bidirectional encoding between seed phrase and entropy. This type of encoding requires a fixed wordlist. This means that future versions of Electrum must ship with the exact same wordlist, in order to be able to read old seed phrases.

BIP39 was introduced two years after Electrum. BIP39 seeds include a checksum, in order to help users figure out typing errors. However, BIP39 suffers the same shortcomings as early Electrum seed phrases:

A fixed wordlist is still required. Following our recommendation, BIP39 authors decided to derive keys and addresses in a way that does not depend on the wordlist. However, BIP39 still requires the wordlist in order to compute its checksum, which is plainly inconsistent, and defeats the purpose of our recommendation. This problem is exacerbated by the fact that BIP39 proposes to create one wordlist per language. This threatens the portability of BIP39 seed phrases.
BIP39 seed phrases do not include a version number. This means that software should always know how to generate keys and addresses. BIP43 suggests that wallet software will try various existing derivation schemes within the BIP32 framework. This is extremely inefficient and rests on the assumption that future wallets will support all previously accepted derivation methods. If, in the future, a wallet developer decides not to implement a particular derivation method because it is deprecated, then the software will not be able to detect that the corresponding seed phrases are not supported, and it will return an empty wallet instead. This threatens users funds.
For these reasons, Electrum does not generate BIP39 seeds.


On Electrum wallet, you can import seeds from other wallets.
File > New/ Restore > Wallet name > Create new wallet > I already have a seed > Options (you will see an option for BIP39 seed)

If you notice, there is an option for extend this seed with custom words. If you extend it, you will have a different seed!

[General] Bitcoin Wallets - Which, what, why?
[overview] Recover Bitcoin from any old storage format
Mnemonic Code Converter (It is a very helpful tool).
jr. member
Activity: 46
Merit: 66
#WeAreAllHodlonaut
September 22, 2020, 06:57:04 AM
#1
I just learned that Bitcoin Core does not support mnemonic seed.
Which wallets support mnemonic seed except Electrum and are there any differences in the wordlists? I see Electrum has "old" and "new" wordlists.
Can I use the same seed on a different wallets?
Jump to: