π
Original date posted:2019-01-02
π Original message:On Wed, Jan 2, 2019 at 3:40 AM Alan Evans via bitcoin-dev <
bitcoin-dev at lists.linuxfoundation.org> wrote:
>
> I think any method that doesn't use real entropy, but some fake source of
> randomness, such as a book is asking to be hacked and so is not a
> reasonable idea.
>
> If an algorithm for book text to BIP39 sentence ever became well used,
> common books will be systematically searched for accounts. People will also
> choose their favourite passages, so I would expect to see collisions.
>
>
I tend to have this conversation a lot ;) I'm not sure what Aymeric has in
mind, but my suggestions are for use by the small few who properly
understand how these things work. I am not suggesting blockchain.info
require every user to choose a book passage to use as their backup phrase!
There are so many small things that could be done to make a text input
unique. Choose the X number of words from the start of the Nth sentence.
Replace all punctuation with exclamation points. Combine two sentences from
different pages. It would be nigh impossible to brute force any of these,
and would require hints/instructions from the owner to recover.
But I admit if this is not intended for standardization, discussing it on
this mailing list is probably unwarranted.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20190102/c926eff7/attachment.html>;
James MacWhyte [ARCHIVE] /
npub12tβ¦pye9h
2023-06-07 18:15:56
in reply to nevent1qβ¦ndek
Author Public Key
npub12tjaqer27049ejmvf0f3yd7kq6p93gg6ecavgrczge4rlzf59y5q2pye9hPublished at
2023-06-07 18:15:56Event JSON
{
"id": "121e13bc247acf30201e05feea434255aae0ae1c2d68e06500198aa7210b4937",
"pubkey": "52e5d0646af3ea5ccb6c4bd31237d6068258a11ace3ac40f02466a3f89342928",
"created_at": 1686161756,
"kind": 1,
"tags": [
[
"e",
"cf8ae660d1b743cc3d5b59f5c34583608f011b2f985363f3f043fe9fed16af04",
"",
"root"
],
[
"e",
"f64617d4b6bed9b2106eb94611e93e631e837913cf127b0ea8c68957979de41c",
"",
"reply"
],
[
"p",
"a2711d6616d348a3542bb2a791a9e51fcbc7b7d1d20652e5abe16d3e179321df"
]
],
"content": "π
Original date posted:2019-01-02\nπ Original message:On Wed, Jan 2, 2019 at 3:40 AM Alan Evans via bitcoin-dev \u003c\nbitcoin-dev at lists.linuxfoundation.org\u003e wrote:\n\n\u003e\n\u003e I think any method that doesn't use real entropy, but some fake source of\n\u003e randomness, such as a book is asking to be hacked and so is not a\n\u003e reasonable idea.\n\u003e\n\u003e If an algorithm for book text to BIP39 sentence ever became well used,\n\u003e common books will be systematically searched for accounts. People will also\n\u003e choose their favourite passages, so I would expect to see collisions.\n\u003e\n\u003e\nI tend to have this conversation a lot ;) I'm not sure what Aymeric has in\nmind, but my suggestions are for use by the small few who properly\nunderstand how these things work. I am not suggesting blockchain.info\nrequire every user to choose a book passage to use as their backup phrase!\n\nThere are so many small things that could be done to make a text input\nunique. Choose the X number of words from the start of the Nth sentence.\nReplace all punctuation with exclamation points. Combine two sentences from\ndifferent pages. It would be nigh impossible to brute force any of these,\nand would require hints/instructions from the owner to recover.\n\nBut I admit if this is not intended for standardization, discussing it on\nthis mailing list is probably unwarranted.\n-------------- next part --------------\nAn HTML attachment was scrubbed...\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20190102/c926eff7/attachment.html\u003e",
"sig": "6a6deae4a5ec594e35f0d00a760445bd725faf70cda32c985c9fe52bdeaebd1f2ed083043bf619a15a27f8be5e79ecd206fedfe710f98afd9dd575e23c62aca5"
}