Hard question that haunts me for a while. Maybe for someone as smart as nostr:npub1lz8xv2dnyryrk4vswkcgf52vqqzruqwuyp53s7pvusx4fef9fh2s7hh86s
12 word seed is protected by 2^132 while 24 word seed is 2^256.
Why the heck did we allow that compromise? That is like 38 levels of magnitude worse defense against possible brute force hack. Am I right or wrong?
#bitcoin #grownostr #asknostr
a) It's not 2^132 but 2^128 because of checksum
b) It's not a compromise, or better, every N words is a compromise compared to N+1. Where would you like to stop? For me, billion years of brute forcing is enough. https://nostrcheck.me/media/public/nostrcheck.me_9264794442599559671704806069.webp
By the way, the reason why Trezor One has 24word seed by default is that when you type it on PC, it can hypothetically have a keylogger so the word ordering itself must be enough to secure your funds. With Model T's touchscreen 12 words are perfectly safe.
Ok… you managed to ease my mind.
