Bitcoin Forum>Bitcoin>Bitcoin Discussion
Pages:
Author

Topic: Multiple BTC wallets for security? - page 3. (Read 3324 times)

bitcoinrocks
legendary
Activity: 1372
Merit: 1000
Re: Multiple BTC wallets for security?
May 19, 2014, 05:31:34 PM
#62
Quote from: byt411 on May 19, 2014, 04:17:07 PM
Quote from: bitcoinrocks on May 19, 2014, 04:16:20 PM
Quote from: byt411 on May 19, 2014, 04:13:21 PM
Quote from: bitcoinrocks on May 19, 2014, 04:10:09 PM
Quote from: alexrossi on May 19, 2014, 08:04:34 AM
Quote from: Meuh6879 on May 19, 2014, 08:01:19 AM
in clear, buy a PC for Bitcoin.
not a big deal (with low price netbook).
you can use a android phone, too ... just for Bitcoin (only this installed, wifi ... no SIM card).

compromise PC is always because of multiple usage and multiples users ...

A PC is definetly a better choice for managing a cold storage. With an android phone, afaik, you can't sign offline transaction, so now there isn't a very secure and reliable way to administrate an offline wallet.


What's wrong with booting a USB stick?  Is it just the possibility of a hardware keylogger?

Your USB stick could be infected with malware and keyloggers, and the computer you plug it in too, so there's no difference.


If you build the USB stick the same way you would build a computer, why would the USB stick be more dangerous?

Because it can pass malware onto any computer it gets plugged in to.


In order to install Linux on a separate offline computer, I would need to set up the install on a USB stick anyway.  Doesn't anyone run cold storage on a bootable USB stick?
Meuh6879
legendary
Activity: 1512
Merit: 1012
Re: Multiple BTC wallets for security?
May 19, 2014, 05:18:19 PM
#61
Quote from: byt411 on May 19, 2014, 04:17:07 PM
Because it can pass malware onto any computer it gets plugged in to.

yes ... and skynet exist.  Roll Eyes
after a moment, stop to spread some legend about multiple infection.

if you pass he USB key on main computer that it have (real) antivirus (and correctly configure) ... it scan the USB stick always and clean all files.

malware and spyware only transist with inject java corrupted code on this plant in 2014.

but, other solution is to desactivate the "auto-lauch" ... in every windows to remove an automated script on the key (good luck, only apparear 1 time in 7 years on pictures and word documents massivly infected).
byt411
hero member
Activity: 798
Merit: 1000
Re: Multiple BTC wallets for security?
May 19, 2014, 05:14:00 PM
#60
Quote from: Kashim on May 19, 2014, 04:53:57 PM
multiple wallets will be an issue

It won't. Please stop making statements without backing them up with an explanation, you are misleading people.
Kashim
sr. member
Activity: 300
Merit: 250
Re: Multiple BTC wallets for security?
May 19, 2014, 04:53:57 PM
#59
multiple wallets will be an issue
byt411
hero member
Activity: 798
Merit: 1000
Re: Multiple BTC wallets for security?
May 19, 2014, 04:17:07 PM
#58
Quote from: bitcoinrocks on May 19, 2014, 04:16:20 PM
Quote from: byt411 on May 19, 2014, 04:13:21 PM
Quote from: bitcoinrocks on May 19, 2014, 04:10:09 PM
Quote from: alexrossi on May 19, 2014, 08:04:34 AM
Quote from: Meuh6879 on May 19, 2014, 08:01:19 AM
in clear, buy a PC for Bitcoin.
not a big deal (with low price netbook).
you can use a android phone, too ... just for Bitcoin (only this installed, wifi ... no SIM card).

compromise PC is always because of multiple usage and multiples users ...

A PC is definetly a better choice for managing a cold storage. With an android phone, afaik, you can't sign offline transaction, so now there isn't a very secure and reliable way to administrate an offline wallet.


What's wrong with booting a USB stick?  Is it just the possibility of a hardware keylogger?

Your USB stick could be infected with malware and keyloggers, and the computer you plug it in too, so there's no difference.


If you build the USB stick the same way you would build a computer, why would the USB stick be more dangerous?

Because it can pass malware onto any computer it gets plugged in to.
bitcoinrocks
legendary
Activity: 1372
Merit: 1000
Re: Multiple BTC wallets for security?
May 19, 2014, 04:16:20 PM
#57
Quote from: byt411 on May 19, 2014, 04:13:21 PM
Quote from: bitcoinrocks on May 19, 2014, 04:10:09 PM
Quote from: alexrossi on May 19, 2014, 08:04:34 AM
Quote from: Meuh6879 on May 19, 2014, 08:01:19 AM
in clear, buy a PC for Bitcoin.
not a big deal (with low price netbook).
you can use a android phone, too ... just for Bitcoin (only this installed, wifi ... no SIM card).

compromise PC is always because of multiple usage and multiples users ...

A PC is definetly a better choice for managing a cold storage. With an android phone, afaik, you can't sign offline transaction, so now there isn't a very secure and reliable way to administrate an offline wallet.


What's wrong with booting a USB stick?  Is it just the possibility of a hardware keylogger?

Your USB stick could be infected with malware and keyloggers, and the computer you plug it in too, so there's no difference.


If you build the USB stick the same way you would build a computer, why would the USB stick be more dangerous?
byt411
hero member
Activity: 798
Merit: 1000
Re: Multiple BTC wallets for security?
May 19, 2014, 04:13:21 PM
#56
Quote from: bitcoinrocks on May 19, 2014, 04:10:09 PM
Quote from: alexrossi on May 19, 2014, 08:04:34 AM
Quote from: Meuh6879 on May 19, 2014, 08:01:19 AM
in clear, buy a PC for Bitcoin.
not a big deal (with low price netbook).
you can use a android phone, too ... just for Bitcoin (only this installed, wifi ... no SIM card).

compromise PC is always because of multiple usage and multiples users ...

A PC is definetly a better choice for managing a cold storage. With an android phone, afaik, you can't sign offline transaction, so now there isn't a very secure and reliable way to administrate an offline wallet.


What's wrong with booting a USB stick?  Is it just the possibility of a hardware keylogger?

Your USB stick could be infected with malware and keyloggers, and the computer you plug it in too, so there's no difference.
bitcoinrocks
legendary
Activity: 1372
Merit: 1000
Re: Multiple BTC wallets for security?
May 19, 2014, 04:10:09 PM
#55
Quote from: alexrossi on May 19, 2014, 08:04:34 AM
Quote from: Meuh6879 on May 19, 2014, 08:01:19 AM
in clear, buy a PC for Bitcoin.
not a big deal (with low price netbook).
you can use a android phone, too ... just for Bitcoin (only this installed, wifi ... no SIM card).

compromise PC is always because of multiple usage and multiples users ...

A PC is definetly a better choice for managing a cold storage. With an android phone, afaik, you can't sign offline transaction, so now there isn't a very secure and reliable way to administrate an offline wallet.


What's wrong with booting a USB stick?  Is it just the possibility of a hardware keylogger?
PolarPoint
hero member
Activity: 672
Merit: 500
Re: Multiple BTC wallets for security?
May 19, 2014, 03:52:00 PM
#54
I think a separate PC with Electrum as bitcoin cold wallet and no alts is adequate security for most people. Just keep small amounts on online wallet and exchange.
DeathAndTaxes
donator
Activity: 1218
Merit: 1079
Gerald Davis
Re: Multiple BTC wallets for security?
May 19, 2014, 01:57:56 PM
#53
Quote from: bitcoinrocks on May 19, 2014, 07:56:07 AM
From a practical perspective, I don't see how a paper wallet provides any more security than a wallet on your computer.  In order to move the coins from your paper wallet, you have to import the private key to your online computer and if your computer is compromised, you lose control of the coins just like the wallet was on your computer all along.

Paper wallet is a means of storage it isn't incompatible with using an offline client for signing.  Someone however could buy $1,000 worth of BTC and in a fairly easy, fast. and straightfoward manner secure them offline via a paper wallet.  If they are a buy and hold kind of investor that may be all they need for ... now.   If Bitcoin goes nowhere well it didn't take much to get started but say Bitcoin over 5 years does explode and there $1,000 in now worth a couple hundred thousand.  Pretty easy to buy a netbook or some other device to act as an offline signing device and import the private key directly on to that device.
alexrossi
legendary
Activity: 3766
Merit: 1742
Join the world-leading crypto sportsbook NOW!
Re: Multiple BTC wallets for security?
May 19, 2014, 01:43:27 PM
#52
Quote from: byt411 on May 19, 2014, 01:22:33 PM
Quote from: keithers on May 19, 2014, 12:02:36 PM
Quote from: Meuh6879 on May 19, 2014, 08:01:19 AM
in clear, buy a PC for Bitcoin.
not a big deal (with low price netbook).
you can use a android phone, too ... just for Bitcoin (only this installed, wifi ... no SIM card).

compromise PC is always because of multiple usage and multiples users ...

I agree with the above, and this is actually what I do as well.   I keep a separate PC, that I do not browse the internet with, and definitely don't download anything on it.

Still isn't enough, it needs to be 100% offline. It could still be hacked and have keyloggers implanted in its registry.

I agree, for a true security an offline PC is the best thing that you can do.
byt411
hero member
Activity: 798
Merit: 1000
Re: Multiple BTC wallets for security?
May 19, 2014, 01:22:33 PM
#51
Quote from: keithers on May 19, 2014, 12:02:36 PM
Quote from: Meuh6879 on May 19, 2014, 08:01:19 AM
in clear, buy a PC for Bitcoin.
not a big deal (with low price netbook).
you can use a android phone, too ... just for Bitcoin (only this installed, wifi ... no SIM card).

compromise PC is always because of multiple usage and multiples users ...

I agree with the above, and this is actually what I do as well.   I keep a separate PC, that I do not browse the internet with, and definitely don't download anything on it.

Still isn't enough, it needs to be 100% offline. It could still be hacked and have keyloggers implanted in its registry.
keithers
legendary
Activity: 1456
Merit: 1001
This is the land of wolves now & you're not a wolf
Re: Multiple BTC wallets for security?
May 19, 2014, 12:02:36 PM
#50
Quote from: Meuh6879 on May 19, 2014, 08:01:19 AM
in clear, buy a PC for Bitcoin.
not a big deal (with low price netbook).
you can use a android phone, too ... just for Bitcoin (only this installed, wifi ... no SIM card).

compromise PC is always because of multiple usage and multiples users ...

I agree with the above, and this is actually what I do as well.   I keep a separate PC, that I do not browse the internet with, and definitely don't download anything on it.
alexrossi
legendary
Activity: 3766
Merit: 1742
Join the world-leading crypto sportsbook NOW!
Re: Multiple BTC wallets for security?
May 19, 2014, 08:04:34 AM
#49
Quote from: Meuh6879 on May 19, 2014, 08:01:19 AM
in clear, buy a PC for Bitcoin.
not a big deal (with low price netbook).
you can use a android phone, too ... just for Bitcoin (only this installed, wifi ... no SIM card).

compromise PC is always because of multiple usage and multiples users ...

A PC is definetly a better choice for managing a cold storage. With an android phone, afaik, you can't sign offline transaction, so now there isn't a very secure and reliable way to administrate an offline wallet.
Meuh6879
legendary
Activity: 1512
Merit: 1012
Re: Multiple BTC wallets for security?
May 19, 2014, 08:01:19 AM
#48
in clear, buy a PC for Bitcoin.
not a big deal (with low price netbook).
you can use a android phone, too ... just for Bitcoin (only this installed, wifi ... no SIM card).

compromise PC is always because of multiple usage and multiples users ...
alexrossi
legendary
Activity: 3766
Merit: 1742
Join the world-leading crypto sportsbook NOW!
Re: Multiple BTC wallets for security?
May 19, 2014, 08:00:18 AM
#47
Quote from: bitcoinrocks on May 19, 2014, 07:56:07 AM
Can't I encrypt or add a password to the Electrum wallet to prevent that?

Of course! My advice is to use only encrypted backups, w/o a "raw" seed backup.
bitcoinrocks
legendary
Activity: 1372
Merit: 1000
Re: Multiple BTC wallets for security?
May 19, 2014, 07:56:07 AM
#46
Quote from: byt411 on May 18, 2014, 12:44:12 PM
Quote from: bitcoinrocks on May 18, 2014, 12:28:25 PM
If the offline computer were physically stolen, would the thief be able to spend the coins?
Well of course. All they need is to connect the computer to the internet.

Can't I encrypt or add a password to the Electrum wallet to prevent that?


Quote from: byt411 on May 18, 2014, 12:44:12 PM
Quote from: bitcoinrocks on May 18, 2014, 12:28:25 PM
How about installing Linux on a USB stick and booting to that with networking disabled instead of using a separate offline computer?
Mhmm... Maybe. As far as I know, some keyloggers can log everything, no matter what VM/USB OS you put on it.

A physically-installed hardware keylogger would function on a USB boot but a software keylogger wouldn't work.  Does anyone run a cold wallet this way?


Quote from: byt411 on May 18, 2014, 12:44:12 PM
But seriously, a paper wallet is more than enough. You are a bit too paranoid.

From a practical perspective, I don't see how a paper wallet provides any more security than a wallet on your computer.  In order to move the coins from your paper wallet, you have to import the private key to your online computer and if your computer is compromised, you lose control of the coins just like the wallet was on your computer all along.
wakasaki808
sr. member
Activity: 476
Merit: 500
Re: Multiple BTC wallets for security?
May 18, 2014, 12:54:57 PM
#45
I use 3 wallet
The first with something like 200$ on blockchain wallet
The second on Elecrum with 30 % of my bitcoins
Then I have a paper wallet with other bitcoins
byt411
hero member
Activity: 798
Merit: 1000
Re: Multiple BTC wallets for security?
May 18, 2014, 12:44:12 PM
#44
Quote from: bitcoinrocks on May 18, 2014, 12:28:25 PM
This sounds like the only really secure option.

Would I only need to backup the seed?  If someone were able to read that seed backup, would they be able to spend the coins?
Yes, only the seed. And yes, if someone gets the seed, they can spend your coins.
Quote from: bitcoinrocks on May 18, 2014, 12:28:25 PM
If the offline computer were physically stolen, would the thief be able to spend the coins?
Well of course. All they need is to connect the computer to the internet.
Quote from: bitcoinrocks on May 18, 2014, 12:28:25 PM
How about installing Linux on a USB stick and booting to that with networking disabled instead of using a separate offline computer?
Mhmm... Maybe. As far as I know, some keyloggers can log everything, no matter what VM/USB OS you put on it.

But seriously, a paper wallet is more than enough. You are a bit too paranoid.
bitcoinrocks
legendary
Activity: 1372
Merit: 1000
Re: Multiple BTC wallets for security?
May 18, 2014, 12:28:25 PM
#43
Quote from: Light on May 17, 2014, 08:55:10 PM
Quote from: bitcoinrocks on May 17, 2014, 06:14:39 PM
What is the best way to go about storing the bulk of my BTC offline?  Paper wallets seem to be popular.  How do you transfer BTC from a paper wallet to an online wallet for spending?

I personally find that paper wallets are a mediocre solution. They look nice and are sort of functional (except you have to import the whole balance and then broadcast from a comp connected to the net which poses a security risk) and can be encrypted (with BIP38) if done correctly. You would be far better off looking at cold storage - have Armory/Electrum on an offline air gapped computer and use it to sign txs that you make on your online computer. That way you never have your private keys exposed on an online computer. I would prefer Electrum as you can backup your seed physically and thanks to its deterministic nature you'll have all your private keys even if your hardware fails.


This sounds like the only really secure option.

Would I only need to backup the seed?  If someone were able to read that seed backup, would they be able to spend the coins?

If the offline computer were physically stolen, would the thief be able to spend the coins?

How about installing Linux on a USB stick and booting to that with networking disabled instead of using a separate offline computer?

I suppose this sort of thing is only available for BTC so altcoins have to remain vulnerable.
Pages:
Bitcoin Forum>Bitcoin>Bitcoin Discussion
Jump to: