this is from a piece i sent out to my subscribers about a month ago so i don't think any of them will mind me sharing this:
Why I've Chosen Armory
1. Truly secure Cold Storage (offline wallets).
2. One-time-only Paper backups
3. Watching wallets
4. Multiple Wallet Interface.
5. Type 2 deterministic wallets.
All of these web based server wallets can be hacked and just b/c the encryption occurs on the client side means something but not everything. piuk himself from blockchain.info has said that when you decrypt your keys locally they can still be maliciously stolen by a web server owner if they wanted.
I consider myself fortunate to be helping Etotheipi with user testing of Armory. I have no financial interest other than the fact that I donated $500 to his project b/c I'm hoping to see this product succeed. Even though I'm not a coder I'm super paranoid about security of my Bitcoin. I've tested several of his versions and provided user feedback on bugs and issues from an average users standpoint. As I've said before, he is incredibly responsive and wants to make Armory the defacto wallet for the future. He has the coding, mathematical, and cryptographic background to make it possible. As you may already know, he is a physicist and is employed at a physics lab in Maryland but has taken a keen interest in Bitcoin as the rest of us.
Already the latest versions are functioning at an incredibly high level with features only found in Armory such as the importing of individual keys, whole wallet imports, one-time-only paper backups, handling of multiple wallets, watching only wallets, and most importantly to me, offline tx signing.
The standard Satoshi wallet has made some significant advances in features over the last year, the most important one being encryption. Encrypted backups run a close second although prior to this, I just did a simple copy and paste to multiple USB keys. The thing that always bothered me though was that since these are digital devices and there could be a failure preventing me from accessing the keys. And I had only one type of backup medium. Yes, they'd all have to go bad but it is possible.
So, Armory solves this by allowing me to do a paper backup which is an alternative backup medium; not necessarily a better medium, but one that can't suffer an electrical failure. It imports any Satoshi wallet below 0.6 without problem and can hold multiple wallets including the deterministic native wallets it generates. The reason it can't do 0.6 is b/c the keys in this version are for the first time compressed but Eto will solve this problem soon. The other nice thing about a paper backup of a deterministic wallet is that the printout is only one page long and contains a chain code, a root key, and a QR code representation of the same. This is all you need to generate all the addresses you will ever need going forward. The other cool thing is the Watching Only wallet that you generate from the offline wallet can be put online and they both will generate the exact same keys since they both contain the same chain code thus enabling you to continually receive payments to newly generated addresses on the Watching Only wallet w/o ever having to create a new backup nor accessing your offline wallet. Only one backup ever required forever. Be aware though that if you import keys or entire wallets, these will have to be separately backed up since their origin was not from a deterministic chain code or root key. They were randomly generated.
What has happened recently that stimulated me to write this article is that Eto finally got easy point and click installers and uninstallers for both the online and offline wallets. I think my ignorance with command lines convinced him that ease of installation is paramount and step one to getting people to use his program. Prior to this, if one wanted to use Ubuntu on the offline computer like I do, one had to install all these Python dependencies using command line bullshit that I have no knowledge or patience with. In my case, I use a small used laptop for my dedicated offline computer which holds my private keys. First I downloaded the Ubuntu installers into a Pendrive USB stick. I then wiped the entire hard drive with the 4 pass shredding program in Ubuntu from the USB key and then installed Ubuntu 10.04 onto the hard drive. I've found 11.10 Unity to be buggy, at least with the small laptop I'm using. I then installed Armory 0.75 Linux and the python dependencies from another USB key which is just point and click once opened in Ubuntu. It acts just like any other program you might install on windows and it allowed me to drag a little quick start icon to the top panel of 10.04. I then generated a Primary Deterministic wallet in Armory which I encrypted of course. I then made a Watching Only Wallet from it, loaded it onto a USB key, and then imported it into Armory 0.75 alpha on my online laptop, a MacBook Pro within Windows 7 64-bit in a VM. The wallets are cross compatible across different OS platforms. Installing this version was easy also as it loads with just point and click and gives you a cool little Armory system tray icon, a desktop icon, and its own little Armory Bitcoin Client folder in Programs. Currently, when using Armory it requires that you have a Satoshi wallet open and accessible for Armory to scan its blockchain. This is not a problem and only requires that you have around 512 K RAM for Ubuntu and 1.5 GB RAM for Windows 64 bit. Eto is planning on making it network independent in the near future so you won't need the Satoshi open.
This system would be an ideal solution for a brick and mortar merchant. The cash registers would have Watching Only wallets installed which can generate unique addresses for each customer. The cashiers would not be able to spend or steal the coins b/c they don't have the private keys nor access to the offline computer with the private keys in possession of the owner of the business. When the owner wants to access coins he uses the Watching Only wallets to create an unsigned tx which he puts on a USB key and then plugs into the offline computer for signing in private. He then takes those signed tx's back to the cashier's Watching Only wallets to broadcast out to the network for verification. Very simple and elegant.
I manage 3 separate wallets in Armory on my online computer in Win 7. Two are watching only wallets; one is for my savings wallet that I usually never touch just to make sure my coins don't disappear without me knowing, the other from the original Primary Deterministic Wallet created when I first installed Armory into Ubuntu on my offline laptop. The third wallet is one that I imported from Satoshi 0.5.3 which contain my subscribers addresses and acts like my business account.
There are several other utilities that I don't use in Armory like the Elliptic Curve Calculator which is beyond me. Also you can sign messages with your keys somehow.
Also there is something called URL links which allow you to shop more conveniently. Eto gave me the example of CoinDL for downloading music:
(1) Click on a song you want.
(2) It pops up with a "waiting for payment..." box, that shows address and amount, but also a clickable URL.
(3) User clicks on the URL and Armory immediately opens with Address and amount filled in already, and the "Comment" set to "Alco Album X: Song Y".
(4) You confirm the transaction and type in your passphrase (if necessary) to complete the transaction.
The nice thing about this is that it automatically fills in the details (convenient), and Armory will also then show the purchases in your Tx Ledger. The main window will then contain a list of everything you bought and how much you paid. And you never had to type anything other than your passphrase.
As for security, the only way to hack into your offline wallet would be to execute a very time specific targeted attack at your USB key which is extremely difficult if not impossible. I've discussed this with Eto and I just can't see how it can be done. And for those of you not satisfied with that explanation, he's also working on a serial-port interface to replace the USB keys that should be a perfect-security solution.
Anyways, I hope you found this helpful and if you want to try it out here is the link for the downloads:
http://bitcoinarmory.com/index.php/get-armoryAlso, the offline tutorial:
http://bitcoinarmory.com/index.php/using-offline-wallets-in-armoryAll the best,
cypher
