Author

Topic: Multiple vs. Single Armory Wallets--Security Questions (Read 2766 times)

full member
Activity: 227
Merit: 100
Thanks for your reply. That is helpful.
sr. member
Activity: 302
Merit: 250
As I see it there are two options to consider here.

Firstly, if multiple users should have access to the funds (e.g. a company) then you should be using lockboxes, which will require multiple instances of Armory installed on independent devices, where all (or some) of the devices are each required to sign each transaction to make it valid. Each instance of Armory will have its own (single) paper backup, which should not of course be kept together with the other backups (e.g. don't keep all in a single company safe). This method gets its security from having the keys required to sign the transaction in separate physical locations, with the corresponding backups also physically separated.

Next you have the "basic" 'single user' setup. A single Armory wallet is setup on a secure computer. Here, (provided the computer is secure) the backup style should provide some security for the single user: a 'm-of-n' backup should be used. Here you can choose for example 3-of-5 which will let you store 5 paper backup sheets in separate (secure!) physical locations, even letting you store them with friends or family without running the risk of them re-generating your keys unless they collude against you. Even collusion can be mitigated by choosing friends or locations which are not aware of each other. Perhaps in this setup it would be prudent to store a 'single' paper backup which you can access in an extremely secure location in case of emergencies with separated friends (strongly encrypted digital backup on dropbox or similar might suffice here).

"Advanced" 'single user' setup. Here is basically the same as above, however the Armory wallet is generated on a fresh install of Linux running on an 'offline' machine which will never again connect to a network (network cards removed, disable in BIOS or similar). Wallet backups should be distributed as above in the "basic" setup. An online machine will have Armory installed and a watching-only version of the offline wallet imported. To send transactions they can be generated on the online machine and transferred to the offline machine for signing via USB (or similar, even including hand typing for the super paranoid), being returned to the online machine for verification and transmission to the network.


Having re-read your question after typing all this I hope you don't simply mean keeping your coins in multiple wallets in a single instance of Armory rather than a single wallet, as this will provide no additional security to you (unless the backups are separate and somebody finds one).
sr. member
Activity: 250
Merit: 253
If you have multiple wallets and then keep all of the keys for them secured in the same place (whether that's a safe deposit box or the cloud), it's pointless: you should use one wallet.
Having multiple wallets allows you to do things like have an offline computer be your cold storage, as well as having a hot wallet, and have paper wallets in separate safe locations (e.g. keep 10 BTC in a safe deposit box and another 10 BTC stored as an n-of-m backup with family/friends).
full member
Activity: 227
Merit: 100
I'm revisiting some security practices and would like to know what others are doing...

What are the pros and cons of keeping coins in one vs. multiple Armory wallets?
My understanding is that it is a tradeoff between convenience of having all of one's coins in one wallet vs. having the added safety of having coins dispersed among multiple wallets. The problem with multiple wallets is that you then have additional management complexity.
Are multiple wallets really needed if I print out a paper wallet and keep it in a safety deposit box or store encrypted copies of my wallet in the cloud?

What are your thoughts?
 
Jump to: