Awesome video! I'm a huge Krux fan. I might pick up one of these OneKey Key Tags. 4:34 - The great thing about seed phrases is the checksum. If you'd messed anything up while doing the dots, the seed wouldn't have loaded at all, because a wrong dot would have either caused a misspelled word or a different word. Either way, an error. The checksum feature of BIP39 seed phrases is so great, and Krux makes using seed phrases so easy. Thanks for introducing me to that project. I love it.
Yea, though the key thing to remember is that the checksum isn't foolproof and there is a 1/16 chance that a bad read would still have a valid checksum. (Though if you kept a record of the fingerprint then you can easily identify when something has gone wrong like this) Defiantly a big fan of Krux though, really makes these TinySeed style plates much more useful :)
Hi, I would like to hear your thoughts about AirGap wallet. The idea is to turn an old cell phone into an AirGap vault that is completely offline, that would store private keys and sign transactions through QR codes. Sounds like a free cold wallet for anyone who already has an old smartphone lying around. If the phone's storage is encrypted, I think that this may be a fairly secure budget hardware wallet.
It's certainly better than a hot wallet, but not as good as a proper hardware wallet in some ways. A very good solution to test things out on an old phone.
The issues are basically that your old phone won't be receiving security updates, could easily have the wifi turned back on and that apps that are downloaded via an app store can't be verified.
A few folk have asked for it. It certainly looks like a solid option, particularly given that it is a stamped option which still uses the normal BIP39 words (As opposed to numbers) That said, $100 USD for something that is limited to a single 12 word seed is a bit steep.
@CrytoGuide, thank you for your very informative videos, been learning a lot. May I clarify about DApp permissions on our wallets? I understand that there are a ton of malicious DApps out there but I want try as much DApps aggressively and cautiously. When we give permissions (perform some approved transactions) to a DApp, does that app gain access to a.) a single account within a wallet(seed phrase 1)? b.) or the whole wallet (all accounts), but NOT all wallets(seed phrases 2, 3, and so on) on the same wallet app? c.) or ALL wallets? I want to understand so that I can proprerly plan, like getting a separate phone(wallet app) if all wallets(all seed phrases) will be affected by a single transaction on a wallet app.
I wonder how exactly people's wallets are drained. Let's say an NFT was sent to your wallet, you click on a link and then some button. Does that mean that, that DApp first identify an account with the most significant equivalent in fiat and ignore the others. Then drain that one account only?
Hi Steve, thanks for the video, very informative. Do you have any experience with automatic laser engraving machines? Ran across Seed Hammer and wanted to get your thoughts on them, or if there is another product you’d recommend. Thank you.
I have never concerned myself with such things as they seem counter-productive, as they introduce a bunch of unnecessary complexity and additional trust in what should be a fairly simple process.
One more question: do you have experience with any online vault services that will securely store your seed phrase like vault12? I like their product offering, with inheritance / beneficiary abilities and encryption and was wondering if you've used them / heard of them or can recommend any others, or if you see any holes in their approach. Thank you
I haven't seriously looked at these kinds of services, but it's really not that different to using a safe deposit box for a seed. (While still storing a passphrase elsewhere)
i'm am new to this: there is no encryption of the seeds, right? when it gets stolen you got a problem, right? it solely protects against physical damage?
They say it's for a passphrase but this doesn't make much sense, as you could only encode a single word. (Even off from some other word list) To me that row only really makes sense as possibly an index number of some kind for easy identification.
@@CryptoGuideYeah doenst make much sense like that. thanks for the reply! Will buy one nonetheless as this is great for an additional backup! Will use your affiliate link to get one!
Numbering should be done from 0 to 2047, not from 1 to 2048. There is 11bits per words, not 12. That might block recovery using standard bip39 if words are drifted 1 position...
Yea it's certainly a point that has come up a number of time in related contexts. If you are talking about addressing an array in a programming context, that makes sense, but if you are referring to something like line numbers in a list (like here: github.com/bitcoin/bips/blob/master/bip-0039/english.txt ) then starting at 1 makes sense and avoids needing a potentially ambiguous blank row for for index zero. (And is the approach that TinySeed went with, which KeyTag just shamelessly copied)
On the flip side this means that you do get a nice large indendation when punching it, while the KeyTag itself is plenty thick enough to have the needed strength. (You should see how they held up to a vertical crush test in Lopp's test of it)
Trust this man is the clever and trust person in the world. Thank you steve
Thanks :)
Awesome video! I'm a huge Krux fan. I might pick up one of these OneKey Key Tags.
4:34 - The great thing about seed phrases is the checksum. If you'd messed anything up while doing the dots, the seed wouldn't have loaded at all, because a wrong dot would have either caused a misspelled word or a different word. Either way, an error. The checksum feature of BIP39 seed phrases is so great, and Krux makes using seed phrases so easy. Thanks for introducing me to that project. I love it.
Yea, though the key thing to remember is that the checksum isn't foolproof and there is a 1/16 chance that a bad read would still have a valid checksum. (Though if you kept a record of the fingerprint then you can easily identify when something has gone wrong like this)
Defiantly a big fan of Krux though, really makes these TinySeed style plates much more useful :)
Hi, I would like to hear your thoughts about AirGap wallet. The idea is to turn an old cell phone into an AirGap vault that is completely offline, that would store private keys and sign transactions through QR codes. Sounds like a free cold wallet for anyone who already has an old smartphone lying around. If the phone's storage is encrypted, I think that this may be a fairly secure budget hardware wallet.
It's certainly better than a hot wallet, but not as good as a proper hardware wallet in some ways.
A very good solution to test things out on an old phone.
Thanks. May be a useful video discussing the issues.
The issues are basically that your old phone won't be receiving security updates, could easily have the wifi turned back on and that apps that are downloaded via an app store can't be verified.
U should review the trezor keep metal!
A few folk have asked for it. It certainly looks like a solid option, particularly given that it is a stamped option which still uses the normal BIP39 words (As opposed to numbers)
That said, $100 USD for something that is limited to a single 12 word seed is a bit steep.
@CrytoGuide, thank you for your very informative videos, been learning a lot.
May I clarify about DApp permissions on our wallets?
I understand that there are a ton of malicious DApps out there but I want try as much DApps aggressively and cautiously.
When we give permissions (perform some approved transactions) to a DApp, does that app gain access to
a.) a single account within a wallet(seed phrase 1)?
b.) or the whole wallet (all accounts), but NOT all wallets(seed phrases 2, 3, and so on) on the same wallet app?
c.) or ALL wallets?
I want to understand so that I can proprerly plan, like getting a separate phone(wallet app) if all wallets(all seed phrases) will be affected by a single transaction on a wallet app.
Smart contracts can only be granted permission for a single account associated with a single seed.
I wonder how exactly people's wallets are drained.
Let's say an NFT was sent to your wallet, you click on a link and then some button. Does that mean that, that DApp first identify an account with the most significant equivalent in fiat and ignore the others. Then drain that one account only?
They just spam everyone and let users approve it for whatever account they happen to have active in metamask at that time.
Hi Steve, thanks for the video, very informative. Do you have any experience with automatic laser engraving machines? Ran across Seed Hammer and wanted to get your thoughts on them, or if there is another product you’d recommend. Thank you.
I have never concerned myself with such things as they seem counter-productive, as they introduce a bunch of unnecessary complexity and additional trust in what should be a fairly simple process.
One more question: do you have experience with any online vault services that will securely store your seed phrase like vault12? I like their product offering, with inheritance / beneficiary abilities and encryption and was wondering if you've used them / heard of them or can recommend any others, or if you see any holes in their approach. Thank you
I haven't seriously looked at these kinds of services, but it's really not that different to using a safe deposit box for a seed. (While still storing a passphrase elsewhere)
i'm am new to this: there is no encryption of the seeds, right? when it gets stolen you got a problem, right? it solely protects against physical damage?
This device protects against physical damage. If you want to add protection to the backups themselves, you can do this by adding a BIP39 passphrase.
Great video!
how would you use the * line? I guess that's for a passphrase, but how can you turn in into a binary code?
They say it's for a passphrase but this doesn't make much sense, as you could only encode a single word. (Even off from some other word list)
To me that row only really makes sense as possibly an index number of some kind for easy identification.
@@CryptoGuideYeah doenst make much sense like that. thanks for the reply! Will buy one nonetheless as this is great for an additional backup! Will use your affiliate link to get one!
Great, thanks
First!
First indeed :)
Numbering should be done from 0 to 2047, not from 1 to 2048. There is 11bits per words, not 12. That might block recovery using standard bip39 if words are drifted 1 position...
Yea it's certainly a point that has come up a number of time in related contexts. If you are talking about addressing an array in a programming context, that makes sense, but if you are referring to something like line numbers in a list (like here: github.com/bitcoin/bips/blob/master/bip-0039/english.txt ) then starting at 1 makes sense and avoids needing a potentially ambiguous blank row for for index zero. (And is the approach that TinySeed went with, which KeyTag just shamelessly copied)
The problem with metal storage punches like this is that they are easily read by X-ray
They really aren't something to travel with
titanium is pretty soft metal
On the flip side this means that you do get a nice large indendation when punching it, while the KeyTag itself is plenty thick enough to have the needed strength. (You should see how they held up to a vertical crush test in Lopp's test of it)
krux, odudex bests
Odudex is a champ and his beta builds are really nice too :)