I strongly prefer multisig to single seed + passphrase
Especially when air gapped and multi vendor
Peace of mind increased quite a bit for me π«
Discussion
Logically I know I should, but the thought of having double or triple the seed phrases to securely backup and keep track of spread geographically βin the realβ fills me with dread.
Even if someone found 2 of your seeds, they wouldn't know which wallet it opens, so you can afford to be a little more relaxed with how you store them
This is true, though Iβve even lost track of split single-sig in the past! Honestly, you have to regularly revisit these things (yearly, at least) to keep the neural pathways fresh.
Toying with single phrase backup with a simple translation or one-step change stored only in our brains. That way you could just hang the thing openly on the wall in complete security. Thereβs risk however you cut it really, mitigations down to personal preference and capability.
What is it about your threat model that you feel multi-sig protects you against better than single-seed+passphrase?
I think single seed + pass is a single point of failure. Whereas multisig is probably more open to loosing one key
What is the single point of failure? You can have multiple copies of each, all in geographically dispersed locations. You can lose any number of them and still recover just fine.
eh π€·
Do you prefer single seed over single seed + passphrase?
Also, what are you le thoughts on single seed + BIP85?
I disagree. Give me single seed + passphrase with sufficient entropy.
But that's the great thing. Everyone gets to use what works for their particular situation.
is this addressing anything other than potentially weak randomness, on the part of a single vendor?
if not, why not save cost, use open-source, and verify entropy/randomness? ... failing that, roll dice... ?