Securely Backup your seed and passphrase ColdTI: www.amazon.com/TopHat-Technologies-ColdTi-Cryptocurrency-Storage/dp/B077CYKHZ6/ref=as_li_ss_tl?keywords=crypto+passphrase&qid=1563684774&s=gateway&sr=8-1&th=1&linkCode=sl1&tag=iteration0e-20&linkId=fcf228eb1739e561d19305e4825bb47c Keep all your crypto safe & upgrade to a Ledger Nano X Hardware Wallet shop.ledger.com/pages/ledger-nano-x?r=5243ecbb8427 Alternatively, if you prefer a 100% Open Source wallet, a Trezor One is also a great value wallet shop.trezor.io/product/trezor-one-white?offer_id=14&aff_id=2922&source=UA-cam
The root key can be used to get all the private keys for a particular coin whereas the extended private key is for a particular account for a particular coin. (You can have multiple accounts per coin) I expand on it a bit here ua-cam.com/video/oZpWdvutxN8/v-deo.html
If I hand selected 24/25 bip-39 words in a very unique way, but in a story format that I find memorable, wouldn’t that be secure enough for no one to guess / crack? My question is: is there any actual meaningful risk in hand selecting your seed?
good info on this topic. I've followed your other video on setting up Tails on USB (did mine on Mac). Can this be use like other cold storage crypto wallet like ledger...etc.?
Yea it can. The biggest advantage of using a BIP39 seed as opposed to an old-school paper wallet (single private key) is that when it comes time to spend, you can just buy a hardware wallet and import the seed directly in to there. You can also use the copy of Electrum that comes bundled with Tails to import the seed and do offline-signing if you are only worried about Bitcoin. By offline signing stuff, you are essentially achieving the same thing as a hardware wallet, just doing it all manually.
@@CryptoGuide will you do video on how to setup and accept Bitcoins at brick/motar like restaurant in the future? what is avantage and disavantage of setting up to accepting crypto currency for business?
Another great video. Thanks. Seems like a great way to create a seed offline for a hardware wallet. What are your thoughts on using cards rather than dice? Does this improve the entropy?
Shuffled cards don't really have a knowable level of entropy unlike dice, so it's hard to say. You also need to make sure that if you do use cards, that you don't just store them in the order used.
@@CryptoGuide Thanks. That’s interesting. I assumed it would add more randomness as there are more input options. Either way, seems better than using the seed that comes on the hardware wallet.
If I understood well, we can use this method to generate our own seed to iniztialize a Ledger Nano (thus avoiding using the seed generated automatically at first usage)...correct?
amazing tutorial. Subscribed. Does this method help bypass the recent issue with Ledger being able to extract the private key? Meaning does it make any difference if the seedphrase is generated by this tool rather than from ledger device itself? Thank you
@@CryptoGuide Well, they specifically stated that there's always been the possibility for them to extract the seed. I don't think the company will go rogue, however the ability for the wallet to export your private key (encrypted or not) was not something that was supposed to be possible and if this information was available from the get-go, many people would not have bought their Ledger devices.
Well yea that shouldn't be news to anyone and is the case for every hardware wallet in the market and also the reason why you don't want to just load any old firmware into your device. (You have been able to DIY Ledger coin apps for years) Unfortunately folk seem to have misunderstood this.
Great video's. One thing I don't get. 2:25: you got 259 bits with 100 dice rolls. The same tool shows 161 bits for me with 100 dice rolls and it only shows "raw entropy words" as 15. How is that possible? I've done everything the exact same way.
Yea basically the author tweaked that calculated after the video was made to adjust for a bias that exists when using base6. (It''s mostly academic if you are doing 100 rolls for a 24 word seed)
I'm testing iancoleman in 2023 and 100 dice is only getting 162 bits with base 6 dice selected. Even tested your entropy, got your same 24 words, and it says 162 bits
Hi! At minute 4:42 more or less, I can see two different fields, both with "xpub" codes in them, can I ask you what is the difference between the two? Thanks
Oh, by the way, what do you think of this dice table offered here: github.com/taelfrinn/Bip39-diceware In just 12 rolls I'll have a seed, or is there some serious flaw that you can see?
Nothing wrong with using that, but it's four rolls per word. It also doesn't work out the checksum word for you, so you will have to either go with a 12 word seed and just keep trying until you have something that checksums. (So about 16 tries, or 256 if you go with a 24 word seed)
i have my phrases from ledger but its saying its invalid, i dont think i have written them wrong all i can think of its perhaps in the wrong order can this be used to get it in the right order.. sorry if it dont make sense. thank you
It's probably a simple typo in which case recovery is straightforward. Alternatively, if you have scrambled a 24 word seed and lost the order, then this is unrecoverable.
Don't you have too many dice rolls (259 bits)? Would that be a problem? How is the 24th word created (what makes the final 11 bits)? I see the word indices change when you choose 24 instead of 'Use Raw Entropy (3 words per 32 bits)'; how does 32 bit fit neatly in 259 ( in case of the latter)?
@@CryptoGuide i previously asled about '3 words per 32 bits' combobox item, if it also counts for 24 words combobox item. but never mind, i will not ask any questions anymore and look for another source for the theory.
Amazing video! Thanks for the knowledge! I only have 6 dices, so I made 17 rolls instead of 10.. is that correct? Another point: for 24 words entropy can be over 256, like 270-300? More bits means safer? SUBSCRIBED :)
@@CryptoGuide Oh thx for the feedback :) I did again total of 100 rolls using 5 dices (20x5 rolls) but I got more than 256 bits.. I got 264. Is that perfectly fine?
A 24 word seed represents 256 bits of entropy. More is isn't bad but also isn't adding any extra security if you already have a good source of entropy.
You want to boot into Tails if you are actually planning to create a seed to store funds... Just turning off your wifi and Bluetooth on your normal desktop operating system isn't enough...
Because a watch only wallet can't send funds. A hardware wallet keeps your private keys secure and offline away from malware, allows you to verify what your wallet is doing at run-time and also gives you some best practice baked in in terms of seed backup, wallet software, etc.
Is there any problem doing this over Windows desktop but NOT with your actual seedphrase. Then discarding this seedphrase and create a new one knowing the dice roll math is genuine
If you want to validate it against another tool then it doesn't matter which OS you are doing the validation on. You just want to be extra careful when generating a seed that you will actually use, so ideally do that in something like Tails.
How do you configure Tor to open the Bip39 script? In my Tails it can't open due permissions, and unsecure browser can't run until he connects to network, fortunately I can open with Help program and ran Okay 🤓
The nits calculator on the site now considers the potential dice bias in the calculation, so only assumes ~1.6 bits of entropy per roll rather than ~2.54
Cannot I just use Ian Coleman offline and let it generate different seed until I like the one that can be easy to memorise rather than using the Dice, and then import it to Ledger or Trezor and then create passphrase later?
I trust physical coin more rather than dice, because some dice have unfair shape compared than coin. Also some dice side "6" have more holes than "1", giving some numbers shown more often than the others.
@@CryptoGuide That's only if you really practice coin flipping to show a certain side. However throwing 100 coins from the top of your house/apartment will make it very unpredictable compared to throwing dices with unfair shape from the top of your house/apartment.
1 bit of entropy per event (max) per flip for coin vs ~2.6 bits (max) per dice roll. The cumulative bias in the coin will add up faster and have a greater impact if you assume that neither is perfect. There have been a number of threads of Bitcointalk about this offer the years.
You can do more if you like, basically there is a bit of an academic debate around how many bits each dicerolls produces after you completely account for the small bias using base6 (so I dice) introduces. You can read about it on the GitHub repo for Ian Coleman's tool
I generated my own entropy and exported my ETH addresses. Using very tiny amounts, I was able to receive crypto on the default (the first) address but the crypto sent to the other addresses is not reflecting on my account. Kindly advice me on how to get all the crypto from the different addresses accessed from one place. Please note: I don't have hardware wallet, so I can only use mobile or desktop wallets
i have a question that is probably silly. how is this more secure than a rng generated seed phrase? cant someone get the exact same dice numbers in the exact same order as me by accident? Or what if i accidentally get someone elses? XD as silly as my worry is, im just being way too paranoid XD
Basically removes any trust that you are placing in the random number generator in your wallet. (Whether it is imperfect due to malice or accident doesn't matter in the end) There are 2024^24 possible seeds, so the possibility of you getting the same one as someone else is so remote that it isn't worth considering. (I look at this in my video on why receive addresses change all the time with Bitcoin wallets)
@@CryptoGuide Thanks for your response. I ordered a keystone wallet a week ago, i think i'll go with this route. I will also set it up in a way that I'll never have to use their app in any way. Also just now saw your videos on the keystone, you do some really good content! thank you!
It's open source and easy to review the source myself... I wouldn't trust any program or script, especially if it was a binary file that you just download and run... (As your concern is a very good one and exactly why open source software matters)
It's JavaScript and the code is very basic, you could learn what you need to know to audit it within a few hours... (Zero trust doesn't mean zero effort)
Securely Backup your seed and passphrase
ColdTI: www.amazon.com/TopHat-Technologies-ColdTi-Cryptocurrency-Storage/dp/B077CYKHZ6/ref=as_li_ss_tl?keywords=crypto+passphrase&qid=1563684774&s=gateway&sr=8-1&th=1&linkCode=sl1&tag=iteration0e-20&linkId=fcf228eb1739e561d19305e4825bb47c
Keep all your crypto safe & upgrade to a Ledger Nano X Hardware Wallet shop.ledger.com/pages/ledger-nano-x?r=5243ecbb8427
Alternatively, if you prefer a 100% Open Source wallet, a Trezor One is also a great value wallet shop.trezor.io/product/trezor-one-white?offer_id=14&aff_id=2922&source=UA-cam
Great tutorial!! Keep up the good work man!!
Thanks :)
what is the different about "bip32 root key" "account extended private key" "bip32 extended private key" all start with xprv....
The root key can be used to get all the private keys for a particular coin whereas the extended private key is for a particular account for a particular coin. (You can have multiple accounts per coin) I expand on it a bit here ua-cam.com/video/oZpWdvutxN8/v-deo.html
If I hand selected 24/25 bip-39 words in a very unique way, but in a story format that I find memorable, wouldn’t that be secure enough for no one to guess / crack? My question is: is there any actual meaningful risk in hand selecting your seed?
No, humans are terrible at randomness. Use dice, selecting by hand is extremely risky... (Even if you think you are being random or unique)
good info on this topic. I've followed your other video on setting up Tails on USB (did mine on Mac). Can this be use like other cold storage crypto wallet like ledger...etc.?
Yea it can. The biggest advantage of using a BIP39 seed as opposed to an old-school paper wallet (single private key) is that when it comes time to spend, you can just buy a hardware wallet and import the seed directly in to there.
You can also use the copy of Electrum that comes bundled with Tails to import the seed and do offline-signing if you are only worried about Bitcoin. By offline signing stuff, you are essentially achieving the same thing as a hardware wallet, just doing it all manually.
@@CryptoGuide will you do video on how to setup and accept Bitcoins at brick/motar like restaurant in the future? what is avantage and disavantage of setting up to accepting crypto currency for business?
.
Another great video. Thanks. Seems like a great way to create a seed offline for a hardware wallet. What are your thoughts on using cards rather than dice? Does this improve the entropy?
Shuffled cards don't really have a knowable level of entropy unlike dice, so it's hard to say. You also need to make sure that if you do use cards, that you don't just store them in the order used.
@@CryptoGuide Thanks. That’s interesting. I assumed it would add more randomness as there are more input options.
Either way, seems better than using the seed that comes on the hardware wallet.
It could be better, or much worse, it just comes down to how you shuffled it.
If I understood well, we can use this method to generate our own seed to iniztialize a Ledger Nano (thus avoiding using the seed generated automatically at first usage)...correct?
That's right
@@CryptoGuide Also a Trezor? ThankYou!
.
amazing tutorial. Subscribed.
Does this method help bypass the recent issue with Ledger being able to extract the private key?
Meaning does it make any difference if the seedphrase is generated by this tool rather than from ledger device itself?
Thank you
or should I just destroy my ledger and never look back
No, but this method protects you from any flawed/malicious seed generation. (Though so does a BIP39 passphrase)
In terms of the Ledger, if you don't apply the newest firmware update for the Nano X, nothing has changed.
@@CryptoGuide Well, they specifically stated that there's always been the possibility for them to extract the seed. I don't think the company will go rogue, however the ability for the wallet to export your private key (encrypted or not) was not something that was supposed to be possible and if this information was available from the get-go, many people would not have bought their Ledger devices.
Well yea that shouldn't be news to anyone and is the case for every hardware wallet in the market and also the reason why you don't want to just load any old firmware into your device. (You have been able to DIY Ledger coin apps for years)
Unfortunately folk seem to have misunderstood this.
Great video's. One thing I don't get. 2:25: you got 259 bits with 100 dice rolls. The same tool shows 161 bits for me with 100 dice rolls and it only shows "raw entropy words" as 15. How is that possible? I've done everything the exact same way.
Yea basically the author tweaked that calculated after the video was made to adjust for a bias that exists when using base6. (It''s mostly academic if you are doing 100 rolls for a 24 word seed)
I'm testing iancoleman in 2023 and 100 dice is only getting 162 bits with base 6 dice selected.
Even tested your entropy, got your same 24 words, and it says 162 bits
Yea the author changed they way that they are representing the bits per dice roll. (You still get 2.54 bits per roll though)
Do you give away entropy if the set of dice you used is known and obtainable?
Theoretically a small amount, but it won't be meaningful if you do 100 rolls (enough for a 24 word seed)
Hi! At minute 4:42 more or less, I can see two different fields, both with "xpub" codes in them, can I ask you what is the difference between the two? Thanks
Oh, by the way, what do you think of this dice table offered here: github.com/taelfrinn/Bip39-diceware In just 12 rolls I'll have a seed, or is there some serious flaw that you can see?
You want the account extended public key, the BIP32 extended public key use used for other stuff internal to your wallet.
Nothing wrong with using that, but it's four rolls per word. It also doesn't work out the checksum word for you, so you will have to either go with a 12 word seed and just keep trying until you have something that checksums. (So about 16 tries, or 256 if you go with a 24 word seed)
i have my phrases from ledger but its saying its invalid, i dont think i have written them wrong all i can think of its perhaps in the wrong order can this be used to get it in the right order.. sorry if it dont make sense. thank you
It's probably a simple typo in which case recovery is straightforward. Alternatively, if you have scrambled a 24 word seed and lost the order, then this is unrecoverable.
Don't you have too many dice rolls (259 bits)? Would that be a problem? How is the 24th word created (what makes the final 11 bits)?
I see the word indices change when you choose 24 instead of 'Use Raw Entropy (3 words per 32 bits)'; how does 32 bit fit neatly in 259 ( in case of the latter)?
If you are just using raw entropy it will just discard a few bits.
@@CryptoGuide Is that also true for the 24 words? Because 100 rolls gives 259 bits - which are more than 256?
How is this any different from what you already asked and I already answered?
@@CryptoGuide i previously asled about '3 words per 32 bits' combobox item, if it also counts for 24 words combobox item. but never mind, i will not ask any questions anymore and look for another source for the theory.
So what's stopping you from just trying it? It shows you all the entropy it's using.
how do you feel about the entropy on Ellipal Joy?
I have a whole video on it. (So happy after I flashed the firmware myself)
Amazing video! Thanks for the knowledge! I only have 6 dices, so I made 17 rolls instead of 10.. is that correct?
Another point: for 24 words entropy can be over 256, like 270-300? More bits means safer? SUBSCRIBED :)
You will need 100 rolls total, so that sounds about right. 256 bits of entropy is already lots, so you don't need to add more.
@@CryptoGuide Oh thx for the feedback :) I did again total of 100 rolls using 5 dices (20x5 rolls) but I got more than 256 bits.. I got 264. Is that perfectly fine?
@@CryptoGuide If I make more than 256 bits is it safer? something changes? like 200 rolls (approximately 512 bits) ... ? Thanks bro!!
A 24 word seed represents 256 bits of entropy. More is isn't bad but also isn't adding any extra security if you already have a good source of entropy.
@@CryptoGuide Oh great!! So 256 bits is the correct number... 100 rolls and let's go :))
I have a Mac and use Mac OS. To set up an air gapped environment on my OS do I just turn off Bluetooth and wifi?
You want to boot into Tails if you are actually planning to create a seed to store funds... Just turning off your wifi and Bluetooth on your normal desktop operating system isn't enough...
so whats the point in own a hardwallet if we can do this and use an app to watch-only my balance?
Because a watch only wallet can't send funds. A hardware wallet keeps your private keys secure and offline away from malware, allows you to verify what your wallet is doing at run-time and also gives you some best practice baked in in terms of seed backup, wallet software, etc.
Is there any problem doing this over Windows desktop but NOT with your actual seedphrase. Then discarding this seedphrase and create a new one knowing the dice roll math is genuine
If you want to validate it against another tool then it doesn't matter which OS you are doing the validation on.
You just want to be extra careful when generating a seed that you will actually use, so ideally do that in something like Tails.
@@CryptoGuide Thanks so much for responding. Wasn't expecting that :)
.
How do you configure Tor to open the Bip39 script? In my Tails it can't open due permissions, and unsecure browser can't run until he connects to network, fortunately I can open with Help program and ran Okay 🤓
It should "just work", if in doubt follow my videos on using Tails.
im doing this right now but my total bits only got 160...can you tell me why???
The nits calculator on the site now considers the potential dice bias in the calculation, so only assumes ~1.6 bits of entropy per roll rather than ~2.54
Excellent thank you.
Glad it helped
Cannot I just use Ian Coleman offline and let it generate different seed until I like the one that can be easy to memorise rather than using the Dice, and then import it to Ledger or Trezor and then create passphrase later?
You can do this, though sticking to pure random will be higher entropy. (Though for a full length 24 word seed, it probably doesn't matter)
I trust physical coin more rather than dice, because some dice have unfair shape compared than coin. Also some dice side "6" have more holes than "1", giving some numbers shown more often than the others.
Just add some extra rolls if worried, as far as entropy goes even terrible dice are better than flipping a coin.
@@CryptoGuide That's only if you really practice coin flipping to show a certain side. However throwing 100 coins from the top of your house/apartment will make it very unpredictable compared to throwing dices with unfair shape from the top of your house/apartment.
Nope... Dice will always be better, especially if you use multiple dice in the way I demo. it's simple math...
@@CryptoGuide Tell me the math that can explain dices will be better (more random) than coins?
1 bit of entropy per event (max) per flip for coin vs ~2.6 bits (max) per dice roll. The cumulative bias in the coin will add up faster and have a greater impact if you assume that neither is perfect. There have been a number of threads of Bitcointalk about this offer the years.
On a minute 5:59, you say public addresses. Did you mean private? You had deleted the public portion of it.
No, at that point we are exploring the actual Bitcoin addresses, which are public, the part that you need to make sure is hidden is the private keys :
No, the addresses in the text document are public, it is the private portion that has been hidden and shouldn't be exported :
You would have to be out of your mind to use a public website to generate your seed words!
You obviously don't run the tool live from the website. It's all open source JavaScript that runs locally, so also easy to verify.
I had to do 150 dice rolls to get 250 bits of entropy. So i did one more and got 267.
I guess 256 is enough but more isn’t gonna hurt anyone
You can do more if you like, basically there is a bit of an academic debate around how many bits each dicerolls produces after you completely account for the small bias using base6 (so I dice) introduces.
You can read about it on the GitHub repo for Ian Coleman's tool
Could i also use a d9? Then the Numbers Go from 1-9
The tool accepts base10 numbers, so that basically the same. (Just with slightly less entropy per roll as your dice can't roll a zero)
How is this trustless if the 24 words are generated from a website connected to the internet?
It isn't done online, the tool runs totally offline, air-gapped... The tool that does the conversion of seed to addresses is also open source...
I generated my own entropy and exported my ETH addresses. Using very tiny amounts, I was able to receive crypto on the default (the first) address but the crypto sent to the other addresses is not reflecting on my account. Kindly advice me on how to get all the crypto from the different addresses accessed from one place.
Please note: I don't have hardware wallet, so I can only use mobile or desktop wallets
Every address is a separate account in the context of Ethereum. What are you using to view the account balance?
Trust wallet
Basically you will need to manually import the individual eth addresses as separate wallets.
@@CryptoGuide noted. Thanks a lot for your help. I really appreciate it
No worries, glad it helped
i have a question that is probably silly.
how is this more secure than a rng generated seed phrase?
cant someone get the exact same dice numbers in the exact same order as me by accident? Or what if i accidentally get someone elses? XD
as silly as my worry is, im just being way too paranoid XD
Basically removes any trust that you are placing in the random number generator in your wallet. (Whether it is imperfect due to malice or accident doesn't matter in the end)
There are 2024^24 possible seeds, so the possibility of you getting the same one as someone else is so remote that it isn't worth considering. (I look at this in my video on why receive addresses change all the time with Bitcoin wallets)
@@CryptoGuide Thanks for your response. I ordered a keystone wallet a week ago, i think i'll go with this route. I will also set it up in a way that I'll never have to use their app in any way.
Also just now saw your videos on the keystone, you do some really good content! thank you!
Great, glad it helped :)
@@CryptoGuide Thanks for all the replies too. Is the seedphrase generated by keystone itself unsafe to use? Or is it fine to use it?
I don't think there is anything wrong with it, but some folk like to be extra sure and remove any trust in that aspect of the device operation.
what are the odds that i generated an already used private key?
Basically about 1 in 2^256... You are more likely win the lottery 3-4 days in a row
how do you trust someone github page?
maybe he put pre generated keys in the script that allows the author of the script to steal the fund put on the private keys
It's open source and easy to review the source myself... I wouldn't trust any program or script, especially if it was a binary file that you just download and run... (As your concern is a very good one and exactly why open source software matters)
can't you just chose 24 random words from the BIP39 list ?
The seed phrase has a checksum in the last word, though some wallets now let you enter the words and then present you a list of valid last words.
@@CryptoGuide nice thanks ...someone should make a check sum app
There are already many, including some hardware wallets that includes this.
it's not zero trust, those who can't read code have to trust ian coleman's tool
It's JavaScript and the code is very basic, you could learn what you need to know to audit it within a few hours... (Zero trust doesn't mean zero effort)