Wallet Seed Security

Discussion in 'Security' started by Agilist, Feb 18, 2016.

  1. 2017/12/15 - Decred v1.1.2 released! → Release Notes  → Downloads
  1. Agilist

    Agilist New Member

    Jan 16, 2016
    Having seed data is enough to get access to coins.
    Seed data includes 33 words.
    These words are simple, no salt among them.
    Using any dictionary allows somebody to bruteforce seed data to random wallet.
    Are there any mechanisms to regenerate my seed data or edit it?
  2. jrick

    jrick Member

    Jan 4, 2016
    No, there is not, since (unlike your claim) it is infeasible to brute force the seed. A seed is 32 bytes of random data. That means there a total of 256^32 or 2^256 different possible values. To put that in scientific notation, that is more than 1.15*10^77 possibilities.

    Salts are used to prevent rainbow table attacks on passphrases, not prevent brute forcing cryptographic keys.
  3. davecgh

    davecgh Hero Member
    Developer Organizer

    Dec 31, 2015
    United States
    All the seed words are is a direct mapping of English words to hex digits. The seed is nothing more than a 256-bit (32-byte) cryptographically random number. Salt does not apply here at all. It has nothing to do with brute forcing random cryptographic numbers.

    In other words, since each word can be 256 possibilities and there are 32 words, that yields 256^32 (or 2^256 depending on how you want to look at it, but it's the same number) possibilities. That number is larger than the entire number of hydrogen atoms in the known universe. In fact, it's almost more than the number or atoms total in known universe.

    To put this in perspective, assuming there are 7 billion people on the planet and each person owned 10 computers and each one of those computers could test a billion possibilities a second and that you could find the solution on average after testing only 50% of the total possibilities, it would still take 26x10^48 (that's 26 trillion trillion trillion trillion) years to brute force a single seed.
  4. Agilist

    Agilist New Member

    Jan 16, 2016
    Thanks for reply)
    After reading an article about brute forcing bitcoin wallet I began thinking about security of deсred and so on...
  5. Neurosploit

    Neurosploit New Member

    Jan 19, 2016
    .NET Software Engineer
    #5 Neurosploit, Feb 18, 2016
    Last edited: Feb 18, 2016
    If it's about the article about brainwallets from this week you don't have anything to worry about for decred. The video is available online here if you're interested, although it contains a lot of techinal jargon. The presenter actually suggests users to use a solution like the one the decred team is using in their wallet generation to combat things like 'brainwallets' around 25:00.

Share This Page