12 words or 24 words?
#bitcoin #asknostr
Discussion
Brain+Steel vs Steel
12 THEN?
DEPENDS ON YOUR NEEDS.
I'm a 24 words type of guy.
Yeah, I saw a video of someone explaining that 12 words is just as secure as 24 but I serious doubt that. It just doesn't math.
The idea is that computer programs that could crack your seed are not strong enough to break 128bits of encryption, so why go to 256.
But I'm the guy who has a backup to the backup 🤷♂️.
A second strategy which is more advanced & I don't recommend unless you're committed to practice often,
24 word seed, you memorize all of them, now you have three wallets.
First 12 words,
Last 12 words,
24 words.
12 for cold wallets, 24 for hot wallets.
Unfortunately the roles are reversed right now. 🙃
Actually, 15 or 18 would be a nice solution for both, and it is valid.
12/24 for cold, hot is kinda irrelevant because the encryption is standardized ontop of the seed.
Its not about cold/hot, its about the method of generating.. I should have been clearer.
Your private key has 128bits of security even though it is 256bits long. That's the bar. Go any higher and it is just easier to guess your private keys than it is to guess your mnemonic.
Great.
If you used bias dice or coins, and create 12 words, you will be under 128bits, but mathematicians have already discovered that the effect of the bias is greatly reduced over many rolls/flips.
Same would apply to a computer, but even if you had vetted, open source software, there are so many layers that could be inserting bias, including hardware, and yes they often use many sources to offset the risk, but you don't know what you don't know. So I make no assumption other than that a computer generated set of words is always biased but _probably_ not enough to score lower than 128bits of entropy with 24 words.
I suggested 15 because if we assume SOME bias but just nothing malicious, then we get over 128bits of security.
But I'm a stickler for the details... in reality, 12 words is probably always good enough... that and DON'T MAKE YOURSELF A TARGET.