Jump to content

Creating a completely offline wallet

hcivortepanna
 Share

Recommended Posts

hcivortepanna

hcivortepanna

Posted
Posted

Since I plan to just accumulate XRP for the future (10 y) I want to be sure they will remain intact.

I have created a hot-wallet using OneKey. A forum member has pointed out that, despite it is open source, it cannot be trusted, only if I myself could inspect the code. So, there is possibility that millions of pre-generated keys are embedded into the wallet, so once in the future it could be exploited, ...and it is so for all wallets.

So my question is:

is it possible and is it safe to create an address using random mnemonic generator and address generator using these sites:

The instruction how to create seed is found here: https://seedpicker.net/guide/GUIDE.html . All sites I would use offline on a new machine (preferably live-Linux).

What I want to achieve is to never use the wallet, just to accumulate over time and to send to the predefined address.

I would use create a random seed of 23 words, calculate the 24 word (https://seedpicker.net/calculator/last-word.html). After that I would use Mnemonic Code Converter to create my address. The address should be "Ripple" with derivation path: m/44'/144'/0'/0 and I would use the first generated address.

Is this scheme above correct?

(I am somehow scared I wouldn't be able to restore the wallet in the future).

Link to comment
Share on other sites
  • Replies 5
  • Created
  • Last Reply

Top Posters In This Topic

Popular Days

Top Posters In This Topic

Popular Days

Popular Posts

JASCoder
JASCoder

The XRPL hero Wietse wrote the code for generating a "vanity wallet" (aka XRPL account with specified starting letters) and published the source in Github. Also provided instructions on its use.

PunishmentOfLuxury
PunishmentOfLuxury

Many years ago, maybe 2015, @Kakoyla and I documented here how to create a Linux-based cold XRP wallet. The seed generation was offline via a method recommended by David Schwarz. With a bit of digging

JASCoder
JASCoder

Mine too - and for that concern is two primary vulnerabilities to resolve: 1. Losing your secret key - NEVER have a single point of failure (or loss, in this edge case)... Secure your SK in sev

PunishmentOfLuxury

PunishmentOfLuxury

Posted
Posted (edited)

Many years ago, maybe 2015, @Kakoyla and I documented here how to create a Linux-based cold XRP wallet. The seed generation was offline via a method recommended by David Schwarz. With a bit of digging you may be able to locate those posts.

Bithomp Tools can be used completely offline to create a transaction blob which can then be transferred to XUMM via QR code.

This way, it is possible to use as a cold wallet a computer that has never gone, and will never go, online .

EDIT: This thread may be useful, depending on how deep you want to go

 

Edited by PunishmentOfLuxury
Link to comment
Share on other sites
JASCoder

JASCoder

Posted
Posted

The XRPL hero Wietse wrote the code for generating a "vanity wallet" (aka XRPL account with specified starting letters) and published the source in Github. Also provided instructions on its use.

I have used it to generate my own custom account addresses...

Link: https://www.xrpchat.com/topic/18329-offline-secure-vanity-wallet-address-generator/

Link to comment
Share on other sites
f1f47a23

f1f47a23

Posted
Posted (edited)
6 hours ago, hcivortepanna said:

 

a)

So, there is possibility that millions of pre-generated keys are embedded into the wallet, so once in the future it could be exploited, ...and it is so for all wallets.

 

..... ✂️ ....

 

b)

(I am somehow scared I wouldn't be able to restore the wallet in the future).

 

 

a)

Also..

We all here have learned that if T seed generator is not fully  RANDOM , T result would be a narrow space of possible keys. So an address-explorator could have an easy job finding some activated wallet address among a very limited set.  That's why I often C around    random generators   collecting T movement of T mouse 2 give as input 2 T crypto algorithm

 

 

b)

I couldn't sleep @ night

 

 

Edited by f1f47a23
Link to comment
Share on other sites
JASCoder

JASCoder

Posted
Posted
2 hours ago, hcivortepanna said:

My biggest fear is that I would be unable to access the wallet in 10 years. I think I have to test creating several dummy wallets, open as hotwallets in order to be sure it would work.

Mine too - and for that concern is two primary vulnerabilities to resolve:

1. Losing your secret key - NEVER have a single point of failure (or loss, in this edge case)...
Secure your SK in several ways, both in digital form, and printed form (the string and QR code).
Review the worse case disaster - like your house burns down and all you got are the clothes on your back - what are your recovery steps ?

2. You bork up your account's settings. There are a few stories of people executing a transaction with their account which renders the Master Key invalid. Know wtf you are doing when you interact with your account on the XRPL.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...