Topic: Publicly released some of the magic potion that goes into physical bitcoins! - page 2. (Read 9235 times)

Mike, you're awesome.  I've already used the two factor in your newest utility to do an escrow transaction with somebody.  This is awesome.

Not being much of a programmer, could someone explain it to me (like I'm 10 years old) the randomness of the algorithm?

How likely is it that someone can analyze the code and predict what keys will be generated?

I mean, are we looking at this:



(lifted from here http://xkcd.com/221/)

Very cool, thanks man.

I will be using this to give away as gifts to people for the holidays.

True, as long as Casascius has used a reasonable source for randomness then using the Bitcoin Address Utility should have a ~0% chance of an address collision.

Well this program does the private key generation for you doesn't it?

This assumes that all users are using a method that generates adequately random keys.  If they use some deterministic method and use the same starting point for their determination, then they will have a 100% change of producing duplicates. As an example, if I use

echo "Danny" |shasum -a 256

on my Mac to produce my private key, and someone else named Danny comes up with the same idea, we will both have access to the same bitcoins.

Sharing is caring. Though I'll go ahead and order 50 from you for friends and family for buy random material things day.

Same thing which prevents 2 random bitcoin users on the planet from making the same address.

The simple version is 2^256 is much much much larger than you think.   A billion users, each generating a billion keys a year for a billion years has a ~0% chance of producing a duplicate.

Thanks, I will give it a go.
I do have a question, it is not probably new, to Bitcoin, if 1000 people are generating addresses at the same time what stops the your system from making 2 identical addresses on alternate systems?

Now it seems to work fine. I look forward to test the new features
Do i need the source.zip or may i delete it?

Would it be possible to get a small user guide (howto), in particular for the 2-factor features?

In a nutshell:  Alice and Bob.  Alice wants a 2-factor physical bitcoin, and Bob is going to make it for her.  Alice doesn't want there to be a way for Bob to steal her money.

Alice picks a passphrase.  She uses the "Intermediate Code Generator", enters the passphrase, and generates an intermediate code.  An example of an intermediate code is: passphraseoRryVSRbiHXimnSbXSgh7fsq3u3tx1vgZPs9myhhuVUDftcLBVSGxGZY99JwbW (passphrase for this example was ''Fizzie Gullbits'')

She gives this to Bob.

Bob goes to the Generate Addresses screen, and generates some addresses using the intermediate code as the passphrase.  The utility automatically acknowledges this is an intermediate code (important!).  It generates some addresses and encrypted private keys.  Bob can see the Bitcoin address, but importantly, can't get the private keys or spend the funds without Alice's passphrase.

Bob prints key circles and confirmation codes (they come out on the same page).  Bob cuts out the key circles and inserts them into the physical bitcoin product.  He sends the product and the confirmation code to Alice.

Alice has the option of entering the confirmation code into the Confirmation Code Validator.  She doesn't have to, but if she does, she can confirm that the bitcoin address Bob gave her is really encumbered by her password.  (This prevents Bob from giving her his own bitcoin address and running with the money).  She has to trust that Bob really put the right private key inside the physical bitcoin product and didn't commit a "fail" in doing so, but at least she can be assured that there is no way Bob can take the money she sends to the physical bitcoin's address.

A confirmation code example is cfrm38V5qFs3BhUVjxeGnxwV3LH63oyaqRwm8Q9P8CsFchFKDaknBGyUMExvhNm4FCL9XJC8bsN - when verified with the password "Fizzie Gullbits", Alice can see a bitcoin address and know that, for all practical purposes, this bitcoin address could not have been generated without this passphrase.

In this example the combined bitcoin address was 1NKABYfNEDc7xXLYKyyWNYyYvdHuxKWEcd.  Alice and Bob can both independently verify it.

OK - I figured it out - largely with this helpful reply.  I had put "source.zip" at the download link instead of "btcaddress.zip"

"source.zip" is the inner zip file that contains the source code, but also apparently contains an older version of the binary and none of the dependencies.  It made it into the source directory as I was a while ago experimenting with compiling from the command line using the stripped down compiler that comes with the runtime, instead of the whole toolchain.  "btcaddress.zip" contains the binary, dependencies, and source.zip within it.

Try again.

Cheers casascius, you the man

The same for me - Win Vista
The file to download seems to be the "old" address generator. Could it just be a mistake?

Edit: A small user guide (howto) for the new features (in part. the two-factor procedure) would be expedient.

Its working fine for me. Windows 7 64-bit.

What's the error you get?  Does it say?

Also what version of Windows, and what country and language edition (if not English)?  I have seen instances where the Microsoft crypto routines refuse to run because they don't like what country you're in or what edition of Windows you're running.  I have removed many references from Microsoft crypto in favor of Bouncy Castle to prevent this nanny sitting, but there are plenty of spots that still refer to the MS crypto.

Also, where is "Wallet Generator"? this is something I had on a much earlier version of this utility, but currently I don't believe I expose access to the screen named that, since I made a better one.  What do you see when it runs?  One big white empty box, or a bunch of little text boxes and arrow buttons?

Downloaded, Unzipped, Clicked "wallet generator" and it crashed...

Just pushed a couple quick bug fixes, including fixing an inability to print more than 1 page worth of keys at a time

Important thing I should add: for cutting out circles you really want is a hole punch meant for train tickets that punches the right diameter of holes (about 10mm)

I searched high and low in the US and a company called M C Mieth Manufacturing had one.  That was long ago before I gained access to a laser machine that I now use to just bulk cut keys by the thousands.  If you are just doing a few for fun, then scissors will work fine.

EDIT: here is a link: http://ticketpunch.net/index.php/vmchk/Large-Die-Punch/Large-Round-Holes-up-to-1/2.html - I bought the 3/8" version and it fits all of my coins and bars.  You do NOT want the reservoir option - it will get in the way of aiming the tool at the text on the key.




No problem!  The key circle you print yourself is inherently a better one anyway.

Now I will have to make a report that prints more than 8 of them to a page, but that'll come later, it's my bed time.

I will probably up my minimum order quantity of the roll-your-owns and decrease the price...

Mike, this is perfect. I'm speechless about the impact you have had on bitcoin. So many more people are learning about bitcoin from the coins I have been buying from you. The light just turns on for them when I whip one of them out!

Thank you for releasing this, now I feel silly for asking for more of the private key circles.