Pages:
Author

Topic: Thinking of separating my holdings into two physical locations. - page 6. (Read 1079 times)

hero member
Activity: 2954
Merit: 672
Message @Hhampuz if you are looking for a CM!
That's a good idea, actually, it's the practice in the banks where I work before that the backups are stored in different locations, that is to ensure that in terms of business disruption like flood and fire in one area, we can still get the other back up and would help the business to operate.

If we apply it in crypto, we know that data in a hard wallet is important to access our holdings, so if the hard wallet is destroyed due to fire or food, that means we also lose our funds.

So it's a great idea mate, I'm happy that you are thinking of a way to secure your holdings.
legendary
Activity: 2898
Merit: 1823
For safety from $5.00 wrench attacks, or any kind of robbery that involves violence, what's everyone's opinion in keeping away from purchasing, and owning any hardware devices that are directly associated with Bitcoin and other cryptocurrencies? I believe that it's going to be a problem when some people see you own a hardware wallet, the presumption would be = you own "a lot of Bitcoin".
sr. member
Activity: 1498
Merit: 271
DGbet.fun - Crypto Sportsbook
I wasn't quite sure how to summarize it in the title just as I'm not quite sure if this is the exact place where the thread should go. Let me explain and you tell me.

So far I have been managing my Bitcoin holdings using a HW in a location and in the same location I have had the seeds well hidden and written down on a piece of paper.

As I accumulate, I have been thinking of buying another HW and storing it in a vacation home, just like the seeds, in the same way, written down and hidden. It would be about handling half of my holdings at each site.

What do you think? I don't think it would make sense, for example to have copies of the seeds of both HW's at both sites because in a $5 wrench attack I could lose everything.

One drawback I see is that if the house burns down I would lose everything I manage with one HW, but well, that risk I also had now, having 100% of the management of my holdings in one site.



 Do you mean that what is the Seed phrase that you use in your HW is the same one you will use in the new HW that you will buy? That's why I asked this because if they use the same seed it seems that the only thing that will happen is 2 in 1. This is if my understanding is correct.

    But I know that you have often read that most people say that you should not put all the eggs you have in one basket, maybe it is better to divide them to be safer.
legendary
Activity: 1372
Merit: 2017
In the comments I see good ideas to consider for the future. Now I am starting to have an amount that makes me consider splitting my holdings in two, so far not even that. In the future I could consider additional measures such as encrypting, hiding the holdings in different layers with passphrases, buying a CryptoSteel capsule, etc.

The point is to be proactive in case improbable events occur, but I consider the possibility of a $5 wrench attack near to 0 at this point.

What I see as logical is to increase security measures as you get more Bitcoin.
legendary
Activity: 3472
Merit: 10611
Are you encrypting a seed phrase with this algorithm and not just single private keys? Why not just follow it pedantically instead of modifying some parts like encoding?
Yes, I encrypt the seed because I need a deterministic wallet not a single key.
I also used the BIP39-type encoding because it returns words and I can write them down with pen and paper otherwise I'd need a printer since writing down a base58 string (what BIP38 does) is hard and making mistakes is easy.

Quote
What if, several years from now, you forget what encoding you used when constructing your encrypted words? Maybe I am wrong, let alone I am not a security or cryptography expert, but I see many shortcomings in this approach.
Although the details I changed are minimal but that's a valid concern and maybe I should try publishing the algorithm someday and have others comment on it or just have it on public domain.
legendary
Activity: 3668
Merit: 6382
Looking for campaign manager? Contact icopress!
One drawback I see is that if the house burns down I would lose everything I manage with one HW, but well, that risk I also had now, having 100% of the management of my holdings in one site.

That can be addressed too. Instead of saving your backup seed(s) only onto paper, if the amount of funds worth it you can also save onto steel - from CryptoSteel Capsule to Willi's steel plate or, if you want it cheaper or in a way that doesn't draw attention, then onto washers.
copper member
Activity: 2940
Merit: 1280
https://linktr.ee/crwthopia
You are more of taking care of the security of your holdings, not just securing your assets but the total holdings value, because you are going to take half of your risk and have additional protection on top of it. It's like diversification mixed with security with an added bonus, easier track recording if you take care of tax for financial planning, etc.

This would be harder for someone that you would pass it on to.
legendary
Activity: 1792
Merit: 1296
Crypto Casino and Sportsbook
What if you do like this:
- keep 1st device with a small amount sufficient for your current tasks and which you are ready to lose.
- if a situation arises with $5 wrench attack , then you will give this 1st wallet without regret and get off with minimal losses.
- although I don't like the idea of keeping HW and the seed-phrase in the same location, but the seed-phrase from 1st device can be kept side by side. All the same, this will have to be given away during the $5 wrench attack.
- Move the seed-phrase from the 2nd device to a vacation house or to another place and also carefully hide it.
- I would prefer to keep the 2nd device reset to factory settings and store it in the 1st location as a spare. If necessary, you can always restore from the seed-phrase.

- If the $5 wrench attack method is applied to you, then by giving 1st device, you will have time to restore access to the 2nd device from the 1st seed-phrase and quickly move it to another wallet. And then - run away until the attackers come back to you again. Cheesy

In general, having 2 devices is a good idea and preferably from different manufacturers.
legendary
Activity: 2898
Merit: 1823

What do you think? I don't think it would make sense, for example to have copies of the seeds of both HW's at both sites because in a $5 wrench attack I could lose everything.

One drawback I see is that if the house burns down I would lose everything I manage with one HW, but well, that risk I also had now, having 100% of the management of my holdings in one site.


It depends on you. I personally have my main cold-storage seeds in encrypted USBs, hidden in different secret locations. One secret location is in my house, another one in my car, another at work, and the last one in my old room in my parents' house. They all look cheap, ordinary USBs, with directories named "My Files" with old useless/random files from work scattered with the encrypted folder nested in another folder with more random files that contains the seeds. The USBs can only be opened in Linux
legendary
Activity: 2268
Merit: 18711
In an attack you just give up the seed phrase which they see the funds in and steal like $10 without knowing there is an extension that holds the rest without having any way of extracting it either.
Additional passphrases are always a good idea, but I would make a different suggestion here. There is no point owning a hardware wallet to protect $10 worth of bitcoin. An attacker knows this. If you reveal a seed phrase under duress which contains only $10 worth of bitcoin, they are going to keep hitting you until you reveal more. The amount you give away has to be large enough to plausibly be your holdings, and certainly be large enough to be worth buying a hardware wallet for.

Even better if you can use multiple different passphrases. 0.1 BTC on the seed phrase which you can give up under duress. If they keep hitting you, 0.5 BTC under an additional passphrase which you can give up as well. Meanwhile 5 BTC under a much stronger different passphrase which you keep hidden.

And obviously you need to use mixing or coinjoins to break the blockchain links between all these wallets. If you give up your seed phrase and attacker sees a transaction moving 5 BTC somewhere else, they are going to keep hitting you.
legendary
Activity: 2450
Merit: 4415
🔐BitcoinMessage.Tools🔑
That's true.
Here is an idea: how about using the BIP39 extra word? That way you can create two wallets from the same seed phrase. The one without the extra word could contain a tiny amount and the one with the extra word could contain the rest.
In an attack you just give up the seed phrase which they see the funds in and steal like $10 without knowing there is an extension that holds the rest without having any way of extracting it either.
Nowadays attackers are already aware of such tricks that involve hiding your real funds behind additional passphrases, which means if they find something that looks like mnemonic words and check it with their software, they may still suspect you're playing with them and may somehow coerce you to reveal your actual secret. In other words, if your acting skills aren't good enough to pretend you are a stupid and poor person, don't even try to employ the strategy of plausible deniability.

Quote
The hardship is about getting it right since there is no standard for it and generally speaking inventing your own cryptography algorithm is not a good idea. I basically got the inspiration from BIP38[1] but instead of encoding the result using base58 I encode it like BIP39 to get words. The salt would add an extra word (128-bit entropy and a 32-bit salt to get 15 words) which could be increased in size to get 24.

[1] https://github.com/bitcoin/bips/blob/master/bip-0038.mediawiki
Are you encrypting a seed phrase with this algorithm and not just single private keys? Why not just follow it pedantically instead of modifying some parts like encoding? What if, several years from now, you forget what encoding you used when constructing your encrypted words? Maybe I am wrong, let alone I am not a security or cryptography expert, but I see many shortcomings in this approach.
legendary
Activity: 1666
Merit: 1037
I wasn't quite sure how to summarize it in the title just as I'm not quite sure if this is the exact place where the thread should go. Let me explain and you tell me.

So far I have been managing my Bitcoin holdings using a HW in a location and in the same location I have had the seeds well hidden and written down on a piece of paper.

As I accumulate, I have been thinking of buying another HW and storing it in a vacation home, just like the seeds, in the same way, written down and hidden. It would be about handling half of my holdings at each site.

What do you think? I don't think it would make sense, for example to have copies of the seeds of both HW's at both sites because in a $5 wrench attack I could lose everything.

One drawback I see is that if the house burns down I would lose everything I manage with one HW, but well, that risk I also had now, having 100% of the management of my holdings in one site.



I would suggest a small, key/combination locked case to store your HW device/paper wallet to conceal the fact that you are even storing a wallet. This way it's not showing you have cryptocurrency in plain sight/if it is found from its hiding place. Of course it still shows something valuable is being hidden but at least it isn't instantly known to be your wallet.

I don't have a better suggestion for storage though I am sure there is a way with lower risk/more efficient way than keeping 50% in another location as current...though if you stick to this, then I think more thought into a viable emergency backup is necessary in the event that something as unlikely as a fire does actually happen. If you don't have to be exposed to potentially losing 50% of your holdings by having an emergency plan in place, then have an emergency plan in place. Even if it means encrypting portable storage with the entire seed phrase (or with a few words missing that you are sure not to forget) and putting it in a safety deposit box or storing/hiding it with a trusted family member. That way if something occurs, you can race there to recover what you otherwise would have lost. If it's encrypted well it would be unlikely that it would be a point of failure having this in place too.
legendary
Activity: 3472
Merit: 10611
The bad thing about this is that it doesn't save you from a $5 wrench attack. You have to have a lot of willpower if they are hitting you in the head with the wrench to not give them the seeds and decrypt them right there.

Separating into two sides, you would lose 50% only. Although in this case the best thing to do is to be cautious, nobody knows that you have Bitcoin, but you can never be sure.
That's true.
Here is an idea: how about using the BIP39 extra word? That way you can create two wallets from the same seed phrase. The one without the extra word could contain a tiny amount and the one with the extra word could contain the rest.
In an attack you just give up the seed phrase which they see the funds in and steal like $10 without knowing there is an extension that holds the rest without having any way of extracting it either.

Quote
I have no idea about encryption. Is it difficult?
The hardship is about getting it right since there is no standard for it and generally speaking inventing your own cryptography algorithm is not a good idea. I basically got the inspiration from BIP38[1] but instead of encoding the result using base58 I encode it like BIP39 to get words. The salt would add an extra word (128-bit entropy and a 32-bit salt to get 15 words) which could be increased in size to get 24.

[1] https://github.com/bitcoin/bips/blob/master/bip-0038.mediawiki
legendary
Activity: 1372
Merit: 2017
I personally don't like splitting the coins in the storage among more than one storage, instead I spread the backup into multiple locations. Obviously it can not be a simple seed phrase anybody can read and possibly steal if they get their hands on it, so I simply wrote a small script that would encrypt the seed phrase then convert it back to a mnemonic which I then write on the paper which can be safely stored anywhere.

The bad thing about this is that it doesn't save you from a $5 wrench attack. You have to have a lot of willpower if they are hitting you in the head with the wrench to not give them the seeds and decrypt them right there.

Separating into two sides, you would lose 50% only. Although in this case the best thing to do is to be cautious, nobody knows that you have Bitcoin, but you can never be sure.

I have no idea about encryption. Is it difficult?


There are other alternatives too. You could store both phrases in the same place and extend them with words you can remember (such as 4 words you keep encrypted) keeping an eighth of each of the money on the "normal" nmemonics in a way they could be attacked but you might want to do something special with the larger amounts of funds (such as mixing them or delaying a withdrawal after you've bought) to try to hide the link between them still if one can be made. You could store the extended seed words in self storage, a vault or with a relative of you have one you can trust well.

I will keep this in mind for the future. As your Bitcoin savings grow it's nice to consider other possibilities. Plus I think it's a good idea to have something at hand for potential robbers. Usually if they get something they are more likely to leave.
legendary
Activity: 3472
Merit: 10611
I personally don't like splitting the coins in the storage among more than one storage, instead I spread the backup into multiple locations. Obviously it can not be a simple seed phrase anybody can read and possibly steal if they get their hands on it, so I simply wrote a small script that would encrypt the seed phrase then convert it back to a mnemonic which I then write on the paper which can be safely stored anywhere.
hero member
Activity: 868
Merit: 737
As I accumulate, I have been thinking of buying another HW and storing it in a vacation home, just like the seeds, in the same way, written down and hidden. It would be about handling half of my holdings at each site.

What do you think? I don't think it would make sense, for example to have copies of the seeds of both HW's at both sites because in a $5 wrench attack I could lose everything.
If I were you I don't want to buy many HW for just to keep my holding. So, if you have a safe place and safety to write down the seed then you just have to think how to keep the seed safe to restore it to HW if you need it. HW is just media or agent, you can easy to swept and reset it into the new or old seed in every time.

You can create a new seed on the old HW, generate an address and send the fund then reset it. You can repeat it many times as how many you can split the holding.
copper member
Activity: 2856
Merit: 3071
https://bit.ly/387FXHi lightning theory
The safest thing to do is probably to split the funds between two hardware wallets and store one at your regular house and one at your vacation home (each with their respective seeds).

There are other alternatives too. You could store both phrases in the same place and extend them with words you can remember (such as 4 words you keep encrypted) keeping an eighth of each of the money on the "normal" nmemonics in a way they could be attacked but you might want to do something special with the larger amounts of funds (such as mixing them or delaying a withdrawal after you've bought) to try to hide the link between them still if one can be made. You could store the extended seed words in self storage, a vault or with a relative of you have one you can trust well.
legendary
Activity: 1372
Merit: 2017
I wasn't quite sure how to summarize it in the title just as I'm not quite sure if this is the exact place where the thread should go. Let me explain and you tell me.

So far I have been managing my Bitcoin holdings using a HW in a location and in the same location I have had the seeds well hidden and written down on a piece of paper.

As I accumulate, I have been thinking of buying another HW and storing it in a vacation home, just like the seeds, in the same way, written down and hidden. It would be about handling half of my holdings at each site.

What do you think? I don't think it would make sense, for example to have copies of the seeds of both HW's at both sites because in a $5 wrench attack I could lose everything.

One drawback I see is that if the house burns down I would lose everything I manage with one HW, but well, that risk I also had now, having 100% of the management of my holdings in one site.

Pages:
Jump to: