http://en.zaoniao.it/index.php?action=history&feed=atom&title=Two-factor_paper_walletTwo-factor paper wallet - Revision history2026-05-15T11:52:40ZRevision history for this page on the wikiMediaWiki 1.32.0http://en.zaoniao.it/index.php?title=Two-factor_paper_wallet&diff=7320&oldid=prevAdmin: Created page with "'''This is an old idea which is much better implemented by Two-factor mnemonic phrases''' I believe it was Casascius that [htt..."2019-07-31T12:00:17Z<p>Created page with "'''This is an old idea which is much better implemented by <a href="/Mnemonic_phrase#Two-Factor_Mnemonic_Phrases" title="Mnemonic phrase">Two-factor mnemonic phrases</a>''' I believe it was Casascius that [htt..."</p>
<p><b>New page</b></p><div>'''This is an old idea which is much better implemented by [[Mnemonic_phrase#Two-Factor_Mnemonic_Phrases|Two-factor mnemonic phrases]]'''<br />
<br />
I believe it was Casascius that [https://bitcointalk.org/index.php?topic=56414.0 first talked about the idea] of a "2 factor paper wallet". TL;DR - it's a system to securely generate BTC addresses given the risk of any particular machine being injected with trojans. <br />
<br />
(If you can find the original discussion, that would be great)<br />
<br />
See also [[User:Casascius/Base58Check-encoded_objects_proposal#Proposed_specification_for_a_multi-part_key_using_EC_multiplication|this BIP]].<br />
<br />
== How it works ==<br />
<br />
# Trusted 3rd party generates a key pair (''Private_1'', ''Public_1''), and sends them to you in the form of laminated paper. ''Public_1'' is derivable from ''Private_1''. The keys are deleted after sending.<br />
# You generate an addition key pair (''Private_2'', ''Public_2'') on your own machine.<br />
# You cryptographically combine ''Public_1'' and ''Public_2'' and get ''Public_final'' - a Bitcoin address.<br />
# You transfer BTC into ''Public_final''<br />
# At a later time, when you want to withdraw funds from it, you combine ''Private_1'' and ''Private_2'' to get ''Private_final'', and withdraw.<br />
<br />
The point of the system is that an attacker would have to break into both your systems in order to withdraw funds. It is a way to securely store Bitcoins even if your system potentially contains trojans, without trusting a 3rd party. This scheme can in fact be done with N parties, with each additional part just adding security to the system (suspect Party1 is a CIA snitch? That's ok, because all it takes for this to be secure is one secure party).<br />
<br />
==Source==<br />
<br />
[http://bitcoin.it/ http://bitcoin.it/]<br />
[[Category:Paper wallets]]<br />
==See Also on BitcoinWiki==<br />
* [[MAKE]]<br />
* [[Zeepin]]<br />
* [[Meters]]<br />
* [[Consentium]]<br />
* [[Extolabs]]</div>Admin