Categories
- 17.3K All Categories
- 9.5K Mining
- 574 Pool Discussion
- 378 Promotional
- 1.4K General Project Discussion (non-technical)
- 485 Education
- 811 Protocol and Client discussion
- 170 web3-js
- 29 Whisper
- 16 Swarm
- 3 RLP
- 303 IoT & Hardware
- 1.2K Smart Contracts and Dapps
- 28 Serpent
- 359 Solidity
- 664 Projects
- 1.2K Reference clients code and builds
- 249 Eth & AlethZero- Cpp Implementation
- 471 Geth - Go Implementation
- 242 Mist
- 15 Node.js Implementation
- 36 Python Implementation
- 49 Mix
- 36 Other Implementations
- 170 Meetups
- 40 Other Events
- 226 Jobs & Skills
- 281 Press and Articles
- 75 Audio/Video
- 296 Ether Sale
- 1.2K Other Languages
- 96 Chinese
- 255 German
- 33 Italian
- 111 French
- 3 Hebrew
- 42 Japanese
- 75 Portugese
- 46 Romanian
- 185 Russian
- 231 Spanish
- 47 Turkish
- 125 Watercooler
Safe to derive wallet address and private key from password using keythereum?
codewithcheese
Member Posts: 3 ✭
Hi
I am intertested in deriving my wallet address and private key from values I can remember, that way I do not need to be copying key files to different devices. Can someone please comment of on the security of my approach?
I am intertested in deriving my wallet address and private key from values I can remember, that way I do not need to be copying key files to different devices. Can someone please comment of on the security of my approach?
var keythereum = require("keythereum");Thanks for any and all criticism and commentary!
var password = 'this is a long password that should be memorable'; // what should be the minimum length if only alpha numeric?
var salt = '[email protected]';
var iv = ???; // can the iv be a constant? will the private key be reproducible if it dynamic? what format should it be?
var options = {
kdf: "pbkdf2",
cipher: "aes-128-ctr",
kdfparams: {
c: 262144,
dklen: 32,
prf: "hmac-sha256"
}
};
var privateKey = keythereum.deriveKey(password, salt, options);
var keyObject = keythereum.dump(password, privateKey, salt, iv, options);
keythereum.exportToFile(keyObject, '/home/username/.ethereum/keystore/');
Comments
If this is similar to a Bitcoin "brain wallet" it's a horrible idea.
Google "bitcoin brain wallet" to see why, it's pretty well documented.
I think this idea of wallet that you can recover from memorable information is not horrible only if the implementation is secure, it seems bitcoins brain wallet was indeed very insecure.
This post describes some of the approaches and challenges around deriving keys from memorable information. It seems like if you use a salt and a configurably slow key derivation function you can expect some level of security. crypto.stackexchange.com/a/1665