Home Foren Trezor Wallet Gibt es irgendetwas, das man beachten sollte (oder irgendwelche Nachteile), wenn man ein Shamir (SLIP39) Backup MIT Passphrase (extra Wort) einrichtet?

  • Dieses Thema hat 2 Antworten und 1 Teilnehmer, und wurde zuletzt aktualisiert vor 2 Wochen, 2 Tage von Crypto-Guide.
Ansicht von 2 Antwort-Themen
  • Autor
    Beiträge
    • #780254
      root_s2yse8vt
      Verwalter
      Up
      0
      Down
      ::

      Wie der Titel schon sagt.

      Ich stelle mir vor, dass es Vor- und Nachteile für viele verschiedene Setups gibt, aber ich erwäge, ein Shamir-Backup zu verwenden, um den Schlüssel zu teilen.

      Ich denke, die Aufteilung des Schlüssels ist der beste Schutz gegen Diebstahl, unerwünschten Zugriff von außen usw., aber mit einer Passphrase (zusätzliches Wort) wird auch die Möglichkeit ausgeschlossen, dass Schlüsselinhaber kompromittiert werden, oder?

      Ich denke, das Problem dabei ist, dass man sich die Passphrase (das zusätzliche Wort) merken muss und dann stirbt. Die Schlüssel sind in jedem Fall so gut wie nutzlos.

      Gibt es auch potenzielle Kompatibilitätsprobleme? Trezor scheint die einzige Firma zu sein, die sowohl SLIP39 mit Passphrase afaik ermöglicht. Könnte ein Problem 50, 100, 150 Jahre in die Zukunft stellen?

      Ich denke hier nur laut nach.

    • #780255
      bartoque
      Gast
      Up
      0
      Down
      ::

      Blue wallet supports it as well. But indeed not too many at the moment.

      Trying to safeguard into the future 50-100 years from now is pointless however, as who knows how things might progress from here, maybe even invalidating anything that we have currently? If that blockchain is even there then still? So the current to mid term (just a few years from now) is already challenging enough…

      Still you can use shamir also even if the wallet doesn’t support it natively by having the distributed paper versions fot example to re-assemble the seed.

      https://slip39.com/ provides a way using python being able to split it into various groups of varying levels of how many shards are needed. Gonna look into that myself, just for kicks as I assume for many – just like me – the accumalated current funds is actually too little to make a dent.

      https://slip39.com/posts/ethereum-slip39-account-generation/
      “The account owner might store their First and Second group data in their home and office safes. These are 1/1 groups (1 required, and only 1 member, so each of these are3 1-card groups.)

      If the account needs to be recovered, collecting the First and Second cards from the home and office safe is sufficient to recover the seed, and re-generate the HD Wallet accounts.

      Only 2 Fam member’s cards must be collected to recover the Fam group’s data. So, if the HD Wallet owner loses their home and First group card in a fire, they could get the Second group card from the office safe, and 2 cards from Fam group members, and recover the wallet.

      If catastrophe strikes and the owner dies, and the heirs don’t have access to either the First (at home) or Second (at the office), they can collect 2 Fam cards and 3 Frens cards (at the funeral, for example), completing the Fam and Frens groups’ data, and recover the seed, and all derived HD Wallet accounts.

      Since Frens are less likely to persist long term, we’ll produce more (6) of these cards. Depending on how trustworthy the group is, adjust the Fren group’s Required number higher (less trustworthy, more likely to know each-other, need to collect more to recover the group), or lower (more trustworthy, less likely to collude, need less to recover).”

    • #780256
      Crypto-Guide
      Gast
      Up
      0
      Down
      ::

      The biggest advantage of slip39 over passphrase is that it’s harder to screw up. You need to enter your passphrase every time you use it and the is no checksum or error detection for that. Depending on which wallet software you are using, it can be easy to make a typo entering you passphrase and lose access to the wallet. (And need to use something like BTCRecover to recover it)

      If you use passphrase, don’t rely on your memory only…

      It’s all open source so compatibility isn’t really a huge issue and you could make some copies of all the required source.

      I demo restoring without a Trezor here https://youtu.be/aBy3EUqQLrg

Ansicht von 2 Antwort-Themen
  • Du musst angemeldet sein, um auf dieses Thema antworten zu können.