in Bitcoin

development – Manual work as source of entropy

1.8k Views

Have I understood the concept of address, account and wallet correctly and how the wallet balance is calculated?

[ad_1]

Working on an opensource air-gapped crypto vault, in which I have the regular method of relying on OS to provide cryptographically secure random source and use that to generate the mnemonic phrase.

Also wish to provide a manual option of using dice rolls or coin flips to provide your own entropy and not needing to trust the software to do it for you. Exploring how trustless it can be.

As, I understand there are some bias associated with coins & dices as well. They may tend to favor one or some outcomes more than other. I have read a lot about providing your own entropy source and how that will usually be insecure if you accidentally introduce some bias. But considering, I am willing to go as far as flipping/rolling 256 times to generate a 256 bit binary number, does that eliminate the bias?

If yes, then is it possible to utilize less number of flips/rolls to generate less entropy which is well verified to be secure enough for the purpose of mnemonic generation? Wish to explore this option as its simply a lot of monotonous manual work for the extremely cautious user & if its possible to reduce the burden without sacrificing security.

Again, I have read many statements by fellow people on internet but I have no means to verify anybody’s claim hence reverting to this community to chime in.

Some of the methods I read about:

  1. Using multiple dices to effectively roll x dices in every attempt and do it faster. Not sure how the order of reading dices matter here. Saw someone mentioning they should be read in the exact same order.

  2. Approach of mixing coin flip along with four dices to use the provided mapping to derive the words. I don’t want to trust this. I would very much like to arrive at a random index for each word and then read the value at that index from the wordlist.

  3. Using Ionman’s BIP39 tool, how it shows the provided entropy to be enough, it indeed required putting in 256 inputs (0/1) random values in there before the security validation message (mnemonic looks more secure than it really is) goes away. So as per that tool, anything less than 256 flips/rolls isn’t secure enough. True?

  4. How to interpret dice rolls: Then there is also the question of interpreting the dice rolls. Do I use odd even numbers as 0 & 1 respectively or should I use half the range of possible outcomes (1-3) as 0 or 1 and the other half range as the other binary bit?

[ad_2]

Source link

Written by BTC Artist

Leave a Reply

Your email address will not be published. Required fields are marked *

Have I understood the concept of address, account and wallet correctly and how the wallet balance is calculated?

wallet – Generating bitoin private key and public key(like paper walle) without trusting third party
Have I understood the concept of address, account and wallet correctly and how the wallet balance is calculated?

address – I forgot the index of my BIP32 key