"Безопасные Биткоин-транзакции без специального оборудования", Алексей Каракулов

Secure Bitcoin transactions
without special hardware
OLEKSII KARAKULOV
Software Engineer @ MarketPsych

Bitcoin hotline:
1-800-BITCOIN

Спасибо за внимание!

Bitcoin transactions are irreversible

Bitcoin wallet has keys, not coins

Bitcoin wallet
021cef0b71c4c80d524a33e
d50b5804258416980e19d1
13ef99eafba496b934c6e
L3owoDWufSxp3SWoc63msrZ4JoU
69LSeNFwuHQsTM11SWfAnUstX
1MDQRCDmtgFPGehA
N8SFUp3VKV8uZfARky

Your keys? Your bitcoin.
Not your keys? Not your bitcoin.

Keep your private keys offline!
Create
Store
Sign transactions

Hierarchical deterministic (HD) wallet
Seed phrase
jar eternal
broccoli zoo
Master private key
xprv987ABC
Master public key
xpub123XYZ
+N+2+1
+N
+2
+1
Private key 1
Lxxx1
Private key 2
Lxxx2
Private key N
LxxxN
Address 1
1xxx1
Address 2
1xxx2
Address N
1xxxN

Offline signing: hardware wallet

Offline signing: hardware wallet
Prepare unsigned
transaction
Sign with private key
Broadcast transaction

Offline signing: laptop
Prepare unsigned
transaction

Offline signing: mobile
Prepare unsigned
transaction

Offline signing: Qubes OS
Offline VM Online VM
Prepare unsigned
transaction
DiskXen hypervisor

Private key entropy sources
- Cryptographically secure pseudorandom
- Hardware RNG
- Dice, cards etc.
- Human brain

Storing private keys
In memory:
- Brainwallet, WarpWallet
- Mnemonic peg for seed phrase
On paper or metal:
- Plain text for WIF (base58) or seed phrase
- QR code (encrypted or plain)
On electronic device:
- Data storage (USB flash, SD card, floppy etc.)
- Cold storage (offline computer)
- Hardware wallet

Signing transactions offline
Semi-offline device:
- hardware wallet
Offline device:
- desktop/laptop
- smartphone/tablet
Everyday computer:
- offline VM in Qubes OS
- amnestic live system (Tails) in offline mode

Further reading
Mastering Bitcoin:
http://chimera.labs.oreilly.com/books/1234000001802/
Bitkey live OS (“If I tell you I'll have to kill you”): https://bitkey.io/
Electrum docs: https://electrum.readthedocs.io/en/latest/
Bitcoin wiki: https://en.bitcoin.it/wiki/Main_Page
Brainwallet HD (use only for fun!): https://w3rs.github.io
Qubes OS: https://www.qubes-os.org/
Tails: https://tails.boum.org/

Алексей Каракулов
ankarakulov@gmail.com
https://github.com/w3rs
https://keybase.io/oleksii
PGP

$ echo L3owoDWufSxp3SWoc63msrZ4JoU69LSeNFwuHQsTM11SWfAnUstX | bx base58check-decode
wrapper
{
checksum 1556380902
payload c4a2d18db39d59a7a735b8469c128309692510a758ed486dc98d053c77ec80ab01
version 128
}
$ echo L3owoDWufSxp3SWoc63msrZ4JoU69LSeNFwuHQsTM11SWfAnUstX
| bx wif-to-public
021cef0b71c4c80d524a33ed50b5804258416980e19d113ef99eafba496b934c6e
$ echo 021cef0b71c4c80d524a33ed50b5804258416980e19d113ef99eafba496b934c6e
| bx bitcoin160 | bx base58check-encode
1MDQRCDmtgFPGehAN8SFUp3VKV8uZfARky
Get public key & address (CLI)

Brainwallet (CLI)
$ echo -n "I'm giving a talk at HackIT in Kharkiv!"
| bx base16-encode | bx sha256
804f8335259e8339736ef4c7d44d38f6c8d4d14834a797e6fe5ab7997e71acf9
$ echo 804f8335259e8339736ef4c7d44d38f6c8d4d14834a797e6fe5ab7997e71acf901
| bx base58check-encode -v128
L1X8VHB2fBZi1daQJ9YEoCDz3fpx4AfKfq3VfFP7Db327nuMUvRY
$ echo 804f8335259e8339736ef4c7d44d38f6c8d4d14834a797e6fe5ab7997e71acf9
| bx ec-to-public | bx ec-to-address
12qoS5ApeqcACvVx5yEnAsYiMQdMhBULH2

Brainwallet
https://www.bitaddress.org

"Безопасные Биткоин-транзакции без специального оборудования", Алексей Каракулов

"Безопасные Биткоин-транзакции без специального оборудования", Алексей Каракулов

Recommended

Recommended

More Related Content

What's hot

What's hot (6)

Similar to "Безопасные Биткоин-транзакции без специального оборудования", Алексей Каракулов

Similar to "Безопасные Биткоин-транзакции без специального оборудования", Алексей Каракулов (20)

More from HackIT Ukraine

More from HackIT Ukraine (20)

Recently uploaded

Recently uploaded (20)

"Безопасные Биткоин-транзакции без специального оборудования", Алексей Каракулов