Topic: Writing down seed phrase: printer ink or pen ink ? - page 3. (Read 1190 times)

From my understanding, this is a 3 out of 3 setup.  I see this as yet another problem.  If the connection between THREE persons is necessary in order to find the full combination, have you considered other possible issues they could encounter in the event of you losing your life?  It is not very rare that after the loss of a loved one relatives start arguing about what the deceased has left behind for the living ones.  Some are more greedy than others.  The trust you have in your relatives may not be equal to the trust these relatives have for each other.  What if you die together with one of these three persons that are NEEDED for the recovery of the seed?  What if the third person will request a premium for sharing their key part of the puzzle?  You have ensured the recovery if an accident happens to YOU, but you have not taken into account the possibility of an accident also happening to one or more of them.

As others have pointed out, I would keep the seed phrase backup as simple yet safe as possible without reinventing the wheel.  I would definitely not rely on humans for the recovery.  There is maybe more vulnerability to three humans having to connect for the combination than there is for an improperly stored paper wallet.  It is enough for one of the three to say 'no' and now everything goes wrong.

I remember Trezor offered a backup method that requires 'x out of y' backup sheets with a variable x or y based on your needs.  I can not remember the name of this method however, although I do think the name was something similar to 'Schnorr'.  Maybe someone with more knowledge can help me with the confirmation that this method is safer and less vulnerable than a 3 out of 3 sheets setup?

-
Regards,
PrivacyG

The people I am surrounded with are not much bitcoin savvy not even tech savvy. I am not sure if I am underestimating them but it seems whatever you do, is not enough always. This additional layer is interesting. At this moment I have 3 people who needs to be contact each others to find the full combination. Among three, two are common relative who are very trustworthy to me. The third one will be able to connect with one of the relative to send the message only in case any accident happens to me.

It sounds like he lasered the metal plates. I hope he has his own equipment for doing that and didn't hand his seed phrase over to some third party vendors to laser it for him.

I would suggest that if an attacker has been able to either find out enough to figure out the location of two separate back ups, or coerce you to revealing the location of these two back ups, then one or two changed words will not pose much of an issue for them, and they can either work out, brute force, or coerce the correct seed phrase. A far better option would be to use one or more additional passphrases (although again, make sure someone else knows what these are or how to recover them), which provides greater security as well as plausible deniability.

Fuck you man! You are scaring me to death.

This did not came to my mind. Good point. The family only knows the two separate set that needs to bring together but they do not know about those tweaks on few words. I may need to plan to let someone know about it.

Take the F word easy man. No homo 😘

famous last words of someone that is trying to be "clever". it will bite them in the rear end more often than not 

Check out the bolded parts. Words that YOU can remember and words that YOU know. With time, your memory can start playing tricks with you. Those who suffer from Alzheimer's can't recognize their children or remember where the bathroom is in their home, let alone remember what antonyms or synonyms they used and where. It might seem like a good idea now, but who knows that the future holds.

Does your family know the words YOU remembered and the antonyms/synonyms YOU used? What if you die or suffer a serious head injury? What if war comes to your doorstep overnight as it did to Ukraine?

Laser printing isnt fireproof. So i'm not sure what you mean.

The problem here is that you want to make your seed phrase resistant to loss, but also resistant to theft.

So this set up with multiple back ups in different medium is very resistant to loss, but not very resistant to theft. Storing your seed phrase online is usually a terrible idea and huge security risk. We have seen seed phrases been stolen from email accounts, cloud storage, websites, file servers, you name it. If it is online, it is at risk. I hope that you have strongly encrypted whatever you are storing online, but it would be far better to not do this at all.

And this suffers from the opposite problem. From what you've written, it sounds like you have two metal plates but with half the seed phrase on each. There is no redundancy in this set up. You have two back ups, and you need them both to recover your coins. The loss of a single one of your back ups results in loss of your coins. Forgetting what words you have changed could result in loss of your coins. It is resistant to theft, but it is not very resistant to loss.

Or do some DIY.
I bought a metal plate. Changed some words the way I can remember them. They are some synonym or antonym which I know. Did not make it complicated obviously. Then I lesser printed it and it's fire proof. There are two copies and only these two copies combined will get the full seed.

I feel fairly safe LOL

I store mostly my seed in a safe place because I wrote it down on a piece of paper, printed in a bond paper, and make an online copy to make sure I have different copies in case I miss out or forgot my seed of course no one memorizes their seed also it's ideal if you bought a hardware wallet to you have another layer of security that each transaction must need to require with the HW verification.

The only time you need no additional equipment to create an encrypted USB is if you are using a software wallet on a computer, and even then there is additional risk in taking a seed phrase out of a password protected wallet file and saving it in plain text in a text file. These risks are mitigated if you are using a properly and permanently airgapped system, but we both know that very few people do that and do it properly. If you are using a mobile wallet or a hardware wallet, then inputting your seed to a computer to create an encrypted USB back up is significantly riskier than writing down your seed phrase on paper.

I am comparing a properly created paper wallet (airgapped device, dumb printer, etc.) and a hot software wallet. Properly used then the paper wallet is exponentially more secure, but we both know that many people do not use them properly.

I think it is disingenuous to say "Well, if you do it properly then printing your seed phrase is fine", when we know that the vast majority of people will not or can not "do it properly". Far harder to make a critical error when writing down your seed phrase than when printing it out.

My point exactly. The important point of your 3-2-1 rule is at least 1 back up stored off-site (although I would argue for more than this if you can safely do so).

Writing down a seed still requires some kind of computer-like device to generate the seed. If the seed was generated on a HW wallet, then perhaps storing a seed on a USB drive would require an additional computer. However, if you remove that assumption, using a USB drive requires no additional security measures above using a paper backup.

This is not true. I am assuming you are referring to a wallet that is not a hardware wallet.

If you compare the potential security risks associated with creating (and using) a paper wallet, and a wallet stored on an encrypted hard drive or USB drive, using a paper wallet would have all the security vulnerabilities associated with a seed stored on an encrypted hard drive or USB drive, and would also have additional security vulnerabilities.
I will advise people to follow the 3-2-1 rule:
3 backups using
2 mediums of storage, with at least
1 backup stored off-site

When comparing your two choices, you are changing two variables, the number of mediums of storage and the distance each backup is located from the other. The variable that increases the benefit in your comparison is the distance between backups, not using a single medium of storage.

I can only imagine this being a concern if you are planning to bury your seed phrase outside somewhere. If you store it inside your house or other building, inside a safe, in a safe deposit box, etc., then metal detectors become useless due to the presence of copious amounts of metal in the close vicinity. Stainless steel also happens to be one of the hardest metals to accurately detect using a metal detector since it displays very low levels of magnetic permeability.

Regarding of what's better: Ink can take several decades to start fading. Pencilled material can last over a century. Even if you didn't know this, just stick with both; write your seed phrase twice, backwards and forwards. The quality of the paper should be your main concern.

As for this:
I think we've over-analyzed it. It's easier and safer to avoid using a printer as it introduces additional risk for no reason.

Not only unnecessary; I personally find it worse. Metal detectors can detect those.

If you are comparing which storage medium is more secure once they have been created, then sure, you assume they are both created securely. But in reality, that is not the case. Almost anyone can write down a seed phrase securely - just make sure you do it with nobody else around and no cameras or webcams pointed at what you are doing. Very few people on the other hand can properly create an encrypted USB drive back up from a properly airgapped computer, leaving no traces of what they have done and leaking no information in the process. This is an important point to consider.

Just as if we compare a properly created paper wallet to a properly created software wallet, then the paper wallet is exponentially more secure. However, we know from experience that many people who create paper wallets or import them later do insecurely because they far harder to create and use than a simple software wallet.

This is also mitigated by using multiple storage locations, not just mediums. If the circumstance is, for example, all my paper wallets are vulnerable to fire or water damage (which is no different to a USB drive), then I am far safer storing two paper copies in two physical locations in different states than I am storing a paper and a USB copy a few blocks from each other.

You make good points, but I think your points are outside of the scope of the OP's question/problem. If you are comparing storing a backup using medium A and medium B, in order to compare the two mediums, you need to assume the same security measures are taken, unless doing so would not be possible.

You do not necessarily need to use a USB stick for one of your backups, but the medium of storage for at least one of your backups should be different than your other backups. Every medium of storage has the potential for data loss under certain circumstances, and the only way to mitigate this risk is to use multiple storage mediums.

I would also point out that not all seeds are associated with cold storage. It is generally a good practice to use a seed for your hot wallet, and your hot wallet should also be backed up, including using multiple storage mediums.

---

Yes, there is x problem with y medium of storage. That is why you use multiple mediums of storage so you can reduce the overall risk of losing your seed.

apparently pencil lasts longer than ink on paper. but nobody uses it.

I don't really propose using it for anything more than maybe sending some temporary love messages, and it was more of a joke for governments using invisible yellow dots for tracking printers.

They probably exist but I never saw one of this devices in my life and I never used it.
Most USB stick drives on the market don't have such option.

I'm not sure what you are proposing using this invisible ink for, but it tends to fade far more quickly than regular ink so would be a poor choice for backing up your seed phrase.

You do get USB drives with a physical write protection hardware switch. There are also WORM (write-once read-many) SD cards, which do exactly what they sound like.

You can try to memorize it if you want, but only if you also have robust hand written back ups to fall back on. If you only try to memorize your seed phrase, you will almost certainly forget it at some point and lose access to your coins.

hi, you may try to memorise it and write it on a paper(offline). Never make it online!