From e559175f0970f0399b89e6bb9d4bb34e31a2e4f8 Mon Sep 17 00:00:00 2001 From: Sasha Klein Date: Tue, 14 Dec 2021 11:08:39 -0800 Subject: [PATCH 1/6] Clarify paper wallet use case --- _pages/setup-wallets/paper.md | 48 ++++++++++++++++++++++------------- 1 file changed, 31 insertions(+), 17 deletions(-) diff --git a/_pages/setup-wallets/paper.md b/_pages/setup-wallets/paper.md index 4b5a736..d1b8719 100644 --- a/_pages/setup-wallets/paper.md +++ b/_pages/setup-wallets/paper.md @@ -6,10 +6,13 @@ For a video demo, check out [this example on Bitcoin Magazine](https://www.pscp. By using a paper wallet generated in software, we eliminate the need to buy a third hardware wallet (you may later have to buy a hardware wallet if you need to use this key for emergency recovery). +This paper wallet is _watch only_ by default. In the following-instructions, you will generate a full 24-word seed phrase, but only share the extended public key ("xpub") with Specter, reserving the seed phrase alone on paper. This means that in order to sign a transaction in your 2-of-3 quorum, you will need to use the two other devices. It also means that if one of those wallets becomes lost or damaged, you can use your "paper wallet" to set up a hardware wallet that can be used to sign transactions in its stead. + **Warning: this is the highest risk step in our multisig setup**. **Follow the instructions closely, and seriously consider hardening your security** by using techniques described in [the advanced section](paper-advanced). ## Generate Seed + In order to eliminate the risk of a compromised random-number generator, _you_ will be the random-number generator! You will draw the first 23 words out of a "hat" to create your seed phrase ("hat", or any other container, like a ziploc bag, which is a good choice because it enables you to shake/shuffle the words easily without playing "2048-Card Pickup"!). @@ -24,60 +27,71 @@ There is no private information in this PDF, having it only reveals that you're You don't need your own printer; you could safely ask a friend to print it out for you, print it out at work, go to a Kinko's location, etc. #### Cut Out Seed Words + Cut the paper up into 2048 evenly-sized pieces (each with 1 word on it) and put them in a "hat". This step will likely take a few hours with scissors (a good paper cutter may reduce the time), so it might be a good opportunity to catch up on the [Stephan Livera Podcast](https://stephanlivera.com/) while you cut. #### Have a Monkey Draw 23 Words Out of the Hat + If you don't have a monkey, you can do it yourself. As you pull each word out, write it down on a piece of paper. In the end you will have 23 words that look like this (**do NOT use this seed phrase**): + ``` define rifle cliff summer priority ability chimney cotton tennis crash husband try trophy ring cook portion drift stool thank ceiling notice lesson foam ``` ## Calculate the 24th Word and Other Seed Data using SeedPicker + The 24th word cannot be calculated on paper or in your head, so you will need a secure computer -for this step. This guide recommends the open source tool `SeedPicker`, which was designed for this purpose. +for this step. This guide recommends the open source tool `SeedPicker`, which was designed for this purpose. #### Practice First with a Dry Run + Let's start with a dry run. As this is just for testing, you don't have to worry about security at all. -Use the following *insecure* seed phrase (the word `zoo` repeated 23 times): +Use the following _insecure_ seed phrase (the word `zoo` repeated 23 times): + ``` -zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo +zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo ``` + (an unbiased monkey would not pull the same word out of a hat 23 times in a row) #### Calculate the 24th Word + 1. Visit [seedpicker.net](https://seedpicker.net) 1. Enter the practice phrase (`zoo zoo zoo...`) and hit `Calculate!` -1. You will see that the 24th word calculation result is `buddy`: -![](/assets/img/setup-paper-seedpicker-example-output.png){:width="70%" class="border_image"} +1. You will see that the 24th word calculation result is `buddy`: + ![](/assets/img/setup-paper-seedpicker-example-output.png){:width="70%" class="border_image"} #### Save the Output -1. Write down the whole 24 word phrase (`zoo` repeated 23 times + `buddy` as the 24th word) *offline* on paper only. -**Do not save this to any computer.** -1. Scroll down to `Export Public Key Info To Specter Desktop` and click on the `Download` button. -This will download a `json` file to your computer, containing the extended public key info. -Save the file to a DVD-R or USB drive to later share with Specter-Desktop. -![](/assets/img/setup-paper-seedpicker-save-json.png){:width="70%" class="border_image"} +1. Write down the whole 24 word phrase (`zoo` repeated 23 times + `buddy` as the 24th word) _offline_ on paper only. + **Do not save this to any computer.** +1. Scroll down to `Export Public Key Info To Specter Desktop` and click on the `Download` button. + This will download a `json` file to your computer, containing the extended public key info. + Save the file to a DVD-R or USB drive to later share with Specter-Desktop. + ![](/assets/img/setup-paper-seedpicker-save-json.png){:width="70%" class="border_image"} + +> Note: You do not need to record the xpub, root key fingerprint, or derivation path on your paper wallet. #### Do it Live + **Quit all applications, remove any removable media, and turn off your internet access before continuing.** **Do not save the seed phrase to your hard drive (write it down on paper only), and restart your computer before restoring internet access.** -It is *highly recommended* that you wipe your hard drive before restoring internet access. +It is _highly recommended_ that you wipe your hard drive before restoring internet access. See [advanced section](paper-advanced) for more info. - ## Export Public Key Info to Specter-Desktop + In the previous step, you saved your extended public key information (`seedpickerxp-foo.json`) to a DVD-R or USB drive. 1. On Specter-Desktop: Click `+ Add new device`, enter a `Name` (like `Paper Wallet`), click `Choose files` and select your file (`seedpickerxp-foo.json`), and hit `continue`. -Your file will be automatically parsed into something like this: -![](/assets/img/setup-paper-specter-input.png){:class="border_image"} -1. Your public key is now added to Specter-Desktop: -![](/assets/img/setup-paper-display-pubkey.png){:width="70%" class="border_image"} + Your file will be automatically parsed into something like this: + ![](/assets/img/setup-paper-specter-input.png){:class="border_image"} +1. Your public key is now added to Specter-Desktop: + ![](/assets/img/setup-paper-display-pubkey.png){:width="70%" class="border_image"} {% include next_steps.md next_url="keystone" next_name="Setup Keystone" %} From fe77992e192c601466c4fe75a903cc9c85595b26 Mon Sep 17 00:00:00 2001 From: Sasha Klein Date: Tue, 14 Dec 2021 11:47:44 -0800 Subject: [PATCH 2/6] Added a high-level how-it-works page. --- _pages/how-it-works.md | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 _pages/how-it-works.md diff --git a/_pages/how-it-works.md b/_pages/how-it-works.md new file mode 100644 index 0000000..5ff40e2 --- /dev/null +++ b/_pages/how-it-works.md @@ -0,0 +1,20 @@ +--- +title: How it Works +--- + +This guide walks you through the creation of a multisig "wallet" with a recommended 2-of-3 quorum. The below outline pertains to this recommended 2-of-3 setup. One of the wallets is a "paper wallet," and only used as a "watch only" wallet and for emergency backup. + +Functionally, once your multisig is set up, you will need access to 2 of the 3 wallets (the two hardware wallets) in order to spend funds through the software (here we recommend Specter Desktop) that orchestrates the multisig setup. You will not need any of the hardware wallets to _receive_ funds, as Specter keeps the extended public keys (xpubs) associated with each wallet, allowing it to generate unique receive addresses without the ability to send funds unilaterally. + +The receive flow does not require the presence of any hardware device apart from the computer running Specter Desktop. + +The spending flow works as follows. You will: + +1. Use Specter to generate an unsigned send transaction (including amount, fees, and potential change address) +1. Partially sign the transaction with one of your hardware devices, exporting the partially-signed transaction using a QR code or microSD card. +1. Finish signing with the other hardware wallet. +1. Broadcast ("send") the now fully signed transaction using Specter Desktop. + +Once you have generated your three "devices" (including the paper wallet), be sure to store them in separate secure locations. Because one device/seed phrase is insufficient to spend the funds, you might give a copy of the backup keys (eg the "paper wallet") to a friend or family member for safekeeping. If you don't intend to spend money from your cold storage regularly, you could also store one of the hardware devices in a safe deposit box at a local financial institution. + +{% include next_steps.md next_url="/quorum" next_name="Pick Quorum" %} From 100a4187f766f7a2ad9ccb49f0e9d675265878b4 Mon Sep 17 00:00:00 2001 From: Sasha Klein Date: Tue, 14 Dec 2021 11:58:54 -0800 Subject: [PATCH 3/6] Fixed typo, linking, and advanced bar --- .wordlist.txt | 1 + _pages/how-it-works.md | 5 +++-- _pages/why-multisig.md | 33 +++++++++++++++------------------ index.html | 2 ++ 4 files changed, 21 insertions(+), 20 deletions(-) diff --git a/.wordlist.txt b/.wordlist.txt index d538b29..ff7f550 100644 --- a/.wordlist.txt +++ b/.wordlist.txt @@ -273,6 +273,7 @@ wordlist wsh www xpub +xpubs yml youtube ziploc diff --git a/_pages/how-it-works.md b/_pages/how-it-works.md index 5ff40e2..cc2e21d 100644 --- a/_pages/how-it-works.md +++ b/_pages/how-it-works.md @@ -1,5 +1,6 @@ --- title: How it Works +no_advanced_link: true --- This guide walks you through the creation of a multisig "wallet" with a recommended 2-of-3 quorum. The below outline pertains to this recommended 2-of-3 setup. One of the wallets is a "paper wallet," and only used as a "watch only" wallet and for emergency backup. @@ -10,11 +11,11 @@ The receive flow does not require the presence of any hardware device apart from The spending flow works as follows. You will: -1. Use Specter to generate an unsigned send transaction (including amount, fees, and potential change address) +1. Use Specter to generate an unsigned send transaction (including amount, fees, and potential change address). 1. Partially sign the transaction with one of your hardware devices, exporting the partially-signed transaction using a QR code or microSD card. 1. Finish signing with the other hardware wallet. 1. Broadcast ("send") the now fully signed transaction using Specter Desktop. -Once you have generated your three "devices" (including the paper wallet), be sure to store them in separate secure locations. Because one device/seed phrase is insufficient to spend the funds, you might give a copy of the backup keys (eg the "paper wallet") to a friend or family member for safekeeping. If you don't intend to spend money from your cold storage regularly, you could also store one of the hardware devices in a safe deposit box at a local financial institution. +Once you have generated your three "devices" (including the paper wallet), be sure to store them in separate secure locations. Because one device/seed phrase is insufficient to spend the funds, you might give a copy of the backup keys (for example, the "paper wallet") to a friend or family member for safekeeping. If you don't intend to spend money from your cold storage regularly, you could also store one of the hardware devices in a safe deposit box at a local financial institution. {% include next_steps.md next_url="/quorum" next_name="Pick Quorum" %} diff --git a/_pages/why-multisig.md b/_pages/why-multisig.md index 23666db..1c03963 100644 --- a/_pages/why-multisig.md +++ b/_pages/why-multisig.md @@ -2,16 +2,14 @@ title: Why Multisig? --- - > "Your keys, your bitcoin. Not your keys, not your bitcoin." --- [Andreas Antonopolous](https://www.youtube.com/watch?v=vt-zXEsJ61U) - +> -- [Andreas Antonopolous](https://www.youtube.com/watch?v=vt-zXEsJ61U) This is true, but managing your own keys is **really** hard. The math behind the bitcoin protocol is bulletproof, but being your own bank requires you to be near perfect in your execution. When it comes to cryptography, you are only as strong as your weakest link. For traditional single-key signature schemes, the only thing between your bitcoin and an attacker is a single mistake! -Learn more about some of these risks by listening to [SLP Episode 97 with Michael Flaxman](https://stephanlivera.com/episode/97/). +Learn more about some of these risks by listening to [SLP Episode 97 with Michael Flaxman](https://stephanlivera.com/episode/97/). The central goal of this guide is to help you implement a security scheme with no single points of failure. To accomplish this, you will setup your own multisig wallet using multiple hardware wallets from multiple different vendors. @@ -23,18 +21,18 @@ Therefore, your level of caution/paranoia/effort (vs a traditional single-key sc **If you follow these instructions, you can suffer at least one catastrophic failure and not lose any bitcoin.** This could include things like: -* An exploitable software/firmware bug on your hardware wallet -* A pwned (or fake) hardware wallet -* An unscrupulous trusted third party (lawyer/accountant/custodian/etc.) with access to a key for recovery -* A lost/stolen hardware wallet / seed -* An upstream supply-channel attack -* A forgotten PIN / passphrase -* A lost seed -* A compromised random-number generator -* An [evil-maid attack](https://en.wikipedia.org/wiki/Evil_maid_attack) -* Malware on your computer -* A rogue bank employee snooping in your safe deposit box -* An eager heir +- An exploitable software/firmware bug on your hardware wallet +- A pwned (or fake) hardware wallet +- An unscrupulous trusted third party (lawyer/accountant/custodian/etc.) with access to a key for recovery +- A lost/stolen hardware wallet / seed +- An upstream supply-channel attack +- A forgotten PIN / passphrase +- A lost seed +- A compromised random-number generator +- An [evil-maid attack](https://en.wikipedia.org/wiki/Evil_maid_attack) +- Malware on your computer +- A rogue bank employee snooping in your safe deposit box +- An eager heir **While this setup is far more secure than a traditional single-key signature scheme (which has little/no fault tolerance), be mindful that the wrong combination of 2+ major mistakes could be enough to lose all of your bitcoin!** @@ -50,5 +48,4 @@ This guide is free, and there are no refunds. We **highly** recommend you practice all of this first. See disclaimer [here](/disclaimer). - -{% include next_steps.md next_url="/quorum" next_name="Pick Quorum" %} +{% include next_steps.md next_url="/how-it-works" next_name="How it Works" %} diff --git a/index.html b/index.html index e4f8be4..93c56fd 100644 --- a/index.html +++ b/index.html @@ -37,6 +37,8 @@

Guide

  1. Introduction: Why Multisig?
    2. +
  2. How it Works
    3. +
  3. Pick Your Quorum (e.g. 2-of-3)
  4. Equipment List
    5. From 06764c725d19c8a0981df2123f6c69749fadc8a5 Mon Sep 17 00:00:00 2001 From: Sasha Klein Date: Tue, 14 Dec 2021 12:04:55 -0800 Subject: [PATCH 4/6] Eliminated auto-formatting changes --- _pages/setup-wallets/paper.md | 37 ++++++++++++----------------------- _pages/why-multisig.md | 29 +++++++++++++++------------ 2 files changed, 29 insertions(+), 37 deletions(-) diff --git a/_pages/setup-wallets/paper.md b/_pages/setup-wallets/paper.md index d1b8719..339bb08 100644 --- a/_pages/setup-wallets/paper.md +++ b/_pages/setup-wallets/paper.md @@ -12,7 +12,6 @@ This paper wallet is _watch only_ by default. In the following-instructions, you **Follow the instructions closely, and seriously consider hardening your security** by using techniques described in [the advanced section](paper-advanced). ## Generate Seed - In order to eliminate the risk of a compromised random-number generator, _you_ will be the random-number generator! You will draw the first 23 words out of a "hat" to create your seed phrase ("hat", or any other container, like a ziploc bag, which is a good choice because it enables you to shake/shuffle the words easily without playing "2048-Card Pickup"!). @@ -27,71 +26,61 @@ There is no private information in this PDF, having it only reveals that you're You don't need your own printer; you could safely ask a friend to print it out for you, print it out at work, go to a Kinko's location, etc. #### Cut Out Seed Words - Cut the paper up into 2048 evenly-sized pieces (each with 1 word on it) and put them in a "hat". This step will likely take a few hours with scissors (a good paper cutter may reduce the time), so it might be a good opportunity to catch up on the [Stephan Livera Podcast](https://stephanlivera.com/) while you cut. #### Have a Monkey Draw 23 Words Out of the Hat - If you don't have a monkey, you can do it yourself. As you pull each word out, write it down on a piece of paper. In the end you will have 23 words that look like this (**do NOT use this seed phrase**): - ``` define rifle cliff summer priority ability chimney cotton tennis crash husband try trophy ring cook portion drift stool thank ceiling notice lesson foam ``` ## Calculate the 24th Word and Other Seed Data using SeedPicker - The 24th word cannot be calculated on paper or in your head, so you will need a secure computer for this step. This guide recommends the open source tool `SeedPicker`, which was designed for this purpose. #### Practice First with a Dry Run - Let's start with a dry run. As this is just for testing, you don't have to worry about security at all. -Use the following _insecure_ seed phrase (the word `zoo` repeated 23 times): - +Use the following *insecure* seed phrase (the word `zoo` repeated 23 times): ``` zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo ``` - (an unbiased monkey would not pull the same word out of a hat 23 times in a row) #### Calculate the 24th Word - 1. Visit [seedpicker.net](https://seedpicker.net) 1. Enter the practice phrase (`zoo zoo zoo...`) and hit `Calculate!` 1. You will see that the 24th word calculation result is `buddy`: - ![](/assets/img/setup-paper-seedpicker-example-output.png){:width="70%" class="border_image"} +![](/assets/img/setup-paper-seedpicker-example-output.png){:width="70%" class="border_image"} #### Save the Output - -1. Write down the whole 24 word phrase (`zoo` repeated 23 times + `buddy` as the 24th word) _offline_ on paper only. - **Do not save this to any computer.** +1. Write down the whole 24 word phrase (`zoo` repeated 23 times + `buddy` as the 24th word) *offline* on paper only. +**Do not save this to any computer.** 1. Scroll down to `Export Public Key Info To Specter Desktop` and click on the `Download` button. - This will download a `json` file to your computer, containing the extended public key info. - Save the file to a DVD-R or USB drive to later share with Specter-Desktop. - ![](/assets/img/setup-paper-seedpicker-save-json.png){:width="70%" class="border_image"} +This will download a `json` file to your computer, containing the extended public key info. +Save the file to a DVD-R or USB drive to later share with Specter-Desktop. +![](/assets/img/setup-paper-seedpicker-save-json.png){:width="70%" class="border_image"} > Note: You do not need to record the xpub, root key fingerprint, or derivation path on your paper wallet. #### Do it Live - **Quit all applications, remove any removable media, and turn off your internet access before continuing.** **Do not save the seed phrase to your hard drive (write it down on paper only), and restart your computer before restoring internet access.** -It is _highly recommended_ that you wipe your hard drive before restoring internet access. +It is *highly recommended* that you wipe your hard drive before restoring internet access. See [advanced section](paper-advanced) for more info. -## Export Public Key Info to Specter-Desktop +## Export Public Key Info to Specter-Desktop In the previous step, you saved your extended public key information (`seedpickerxp-foo.json`) to a DVD-R or USB drive. 1. On Specter-Desktop: Click `+ Add new device`, enter a `Name` (like `Paper Wallet`), click `Choose files` and select your file (`seedpickerxp-foo.json`), and hit `continue`. - Your file will be automatically parsed into something like this: - ![](/assets/img/setup-paper-specter-input.png){:class="border_image"} +Your file will be automatically parsed into something like this: +![](/assets/img/setup-paper-specter-input.png){:class="border_image"} 1. Your public key is now added to Specter-Desktop: - ![](/assets/img/setup-paper-display-pubkey.png){:width="70%" class="border_image"} +![](/assets/img/setup-paper-display-pubkey.png){:width="70%" class="border_image"} -{% include next_steps.md next_url="keystone" next_name="Setup Keystone" %} +{% include next_steps.md next_url="keystone" next_name="Setup Keystone" %} \ No newline at end of file diff --git a/_pages/why-multisig.md b/_pages/why-multisig.md index 1c03963..bd31b93 100644 --- a/_pages/why-multisig.md +++ b/_pages/why-multisig.md @@ -2,8 +2,10 @@ title: Why Multisig? --- + > "Your keys, your bitcoin. Not your keys, not your bitcoin." -> -- [Andreas Antonopolous](https://www.youtube.com/watch?v=vt-zXEsJ61U) +-- [Andreas Antonopolous](https://www.youtube.com/watch?v=vt-zXEsJ61U) + This is true, but managing your own keys is **really** hard. The math behind the bitcoin protocol is bulletproof, but being your own bank requires you to be near perfect in your execution. @@ -21,18 +23,18 @@ Therefore, your level of caution/paranoia/effort (vs a traditional single-key sc **If you follow these instructions, you can suffer at least one catastrophic failure and not lose any bitcoin.** This could include things like: -- An exploitable software/firmware bug on your hardware wallet -- A pwned (or fake) hardware wallet -- An unscrupulous trusted third party (lawyer/accountant/custodian/etc.) with access to a key for recovery -- A lost/stolen hardware wallet / seed -- An upstream supply-channel attack -- A forgotten PIN / passphrase -- A lost seed -- A compromised random-number generator -- An [evil-maid attack](https://en.wikipedia.org/wiki/Evil_maid_attack) -- Malware on your computer -- A rogue bank employee snooping in your safe deposit box -- An eager heir +* An exploitable software/firmware bug on your hardware wallet +* A pwned (or fake) hardware wallet +* An unscrupulous trusted third party (lawyer/accountant/custodian/etc.) with access to a key for recovery +* A lost/stolen hardware wallet / seed +* An upstream supply-channel attack +* A forgotten PIN / passphrase +* A lost seed +* A compromised random-number generator +* An [evil-maid attack](https://en.wikipedia.org/wiki/Evil_maid_attack) +* Malware on your computer +* A rogue bank employee snooping in your safe deposit box +* An eager heir **While this setup is far more secure than a traditional single-key signature scheme (which has little/no fault tolerance), be mindful that the wrong combination of 2+ major mistakes could be enough to lose all of your bitcoin!** @@ -48,4 +50,5 @@ This guide is free, and there are no refunds. We **highly** recommend you practice all of this first. See disclaimer [here](/disclaimer). + {% include next_steps.md next_url="/how-it-works" next_name="How it Works" %} From 15e38f2ce369a78723654f2381150afc25257d5b Mon Sep 17 00:00:00 2001 From: Sasha Klein Date: Tue, 14 Dec 2021 12:07:42 -0800 Subject: [PATCH 5/6] More reversed auto-formatting --- _pages/setup-wallets/paper.md | 22 +++++++++++----------- _pages/why-multisig.md | 2 +- 2 files changed, 12 insertions(+), 12 deletions(-) diff --git a/_pages/setup-wallets/paper.md b/_pages/setup-wallets/paper.md index 339bb08..94ae2a1 100644 --- a/_pages/setup-wallets/paper.md +++ b/_pages/setup-wallets/paper.md @@ -40,29 +40,29 @@ define rifle cliff summer priority ability chimney cotton tennis crash husband t ## Calculate the 24th Word and Other Seed Data using SeedPicker The 24th word cannot be calculated on paper or in your head, so you will need a secure computer -for this step. This guide recommends the open source tool `SeedPicker`, which was designed for this purpose. +for this step. This guide recommends the open source tool `SeedPicker`, which was designed for this purpose. #### Practice First with a Dry Run Let's start with a dry run. As this is just for testing, you don't have to worry about security at all. Use the following *insecure* seed phrase (the word `zoo` repeated 23 times): ``` -zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo +zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo zoo ``` (an unbiased monkey would not pull the same word out of a hat 23 times in a row) #### Calculate the 24th Word 1. Visit [seedpicker.net](https://seedpicker.net) 1. Enter the practice phrase (`zoo zoo zoo...`) and hit `Calculate!` -1. You will see that the 24th word calculation result is `buddy`: -![](/assets/img/setup-paper-seedpicker-example-output.png){:width="70%" class="border_image"} +1. You will see that the 24th word calculation result is `buddy`: +![](/assets/img/setup-paper-seedpicker-example-output.png){:width="70%" class="border_image"} #### Save the Output 1. Write down the whole 24 word phrase (`zoo` repeated 23 times + `buddy` as the 24th word) *offline* on paper only. **Do not save this to any computer.** -1. Scroll down to `Export Public Key Info To Specter Desktop` and click on the `Download` button. +1. Scroll down to `Export Public Key Info To Specter Desktop` and click on the `Download` button. This will download a `json` file to your computer, containing the extended public key info. -Save the file to a DVD-R or USB drive to later share with Specter-Desktop. -![](/assets/img/setup-paper-seedpicker-save-json.png){:width="70%" class="border_image"} +Save the file to a DVD-R or USB drive to later share with Specter-Desktop. +![](/assets/img/setup-paper-seedpicker-save-json.png){:width="70%" class="border_image"} > Note: You do not need to record the xpub, root key fingerprint, or derivation path on your paper wallet. @@ -78,9 +78,9 @@ See [advanced section](paper-advanced) for more info. In the previous step, you saved your extended public key information (`seedpickerxp-foo.json`) to a DVD-R or USB drive. 1. On Specter-Desktop: Click `+ Add new device`, enter a `Name` (like `Paper Wallet`), click `Choose files` and select your file (`seedpickerxp-foo.json`), and hit `continue`. -Your file will be automatically parsed into something like this: -![](/assets/img/setup-paper-specter-input.png){:class="border_image"} -1. Your public key is now added to Specter-Desktop: -![](/assets/img/setup-paper-display-pubkey.png){:width="70%" class="border_image"} +Your file will be automatically parsed into something like this: +![](/assets/img/setup-paper-specter-input.png){:class="border_image"} +1. Your public key is now added to Specter-Desktop: +![](/assets/img/setup-paper-display-pubkey.png){:width="70%" class="border_image"} {% include next_steps.md next_url="keystone" next_name="Setup Keystone" %} \ No newline at end of file diff --git a/_pages/why-multisig.md b/_pages/why-multisig.md index bd31b93..799e860 100644 --- a/_pages/why-multisig.md +++ b/_pages/why-multisig.md @@ -11,7 +11,7 @@ This is true, but managing your own keys is **really** hard. The math behind the bitcoin protocol is bulletproof, but being your own bank requires you to be near perfect in your execution. When it comes to cryptography, you are only as strong as your weakest link. For traditional single-key signature schemes, the only thing between your bitcoin and an attacker is a single mistake! -Learn more about some of these risks by listening to [SLP Episode 97 with Michael Flaxman](https://stephanlivera.com/episode/97/). +Learn more about some of these risks by listening to [SLP Episode 97 with Michael Flaxman](https://stephanlivera.com/episode/97/). The central goal of this guide is to help you implement a security scheme with no single points of failure. To accomplish this, you will setup your own multisig wallet using multiple hardware wallets from multiple different vendors. From 16427ededf094abe89ed08421525fed4c48a3c97 Mon Sep 17 00:00:00 2001 From: Sasha Klein Date: Wed, 15 Dec 2021 12:02:38 -0800 Subject: [PATCH 6/6] Another clarification --- _pages/how-it-works.md | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/_pages/how-it-works.md b/_pages/how-it-works.md index cc2e21d..dd72ade 100644 --- a/_pages/how-it-works.md +++ b/_pages/how-it-works.md @@ -5,9 +5,11 @@ no_advanced_link: true This guide walks you through the creation of a multisig "wallet" with a recommended 2-of-3 quorum. The below outline pertains to this recommended 2-of-3 setup. One of the wallets is a "paper wallet," and only used as a "watch only" wallet and for emergency backup. -Functionally, once your multisig is set up, you will need access to 2 of the 3 wallets (the two hardware wallets) in order to spend funds through the software (here we recommend Specter Desktop) that orchestrates the multisig setup. You will not need any of the hardware wallets to _receive_ funds, as Specter keeps the extended public keys (xpubs) associated with each wallet, allowing it to generate unique receive addresses without the ability to send funds unilaterally. +Functionally, once your multisig is set up, you will need access to 2 of the 3 wallets (the two hardware wallets) in order to spend funds through the coordination software (here we recommend Specter Desktop) that orchestrates the multisig setup. You will not need any of the hardware wallets to _receive_ funds, as Specter keeps the extended public keys (xpubs) associated with each wallet, allowing it to generate unique receive addresses without the ability to send funds unilaterally. -The receive flow does not require the presence of any hardware device apart from the computer running Specter Desktop. +The receive flow does not require the presence of any hardware device apart from the computer running Specter Desktop, and because the _private keys_ are only on the hardware device, loss or theft of the computer would only compromise the privacy of your receive addresses -- not give the ability to send your coins. + +Sending coins, instead, requires signing by 2 of the 3 devices in the quorum -- the two "hardware" wallets, at least so long as the paper wallet remains on paper. The spending flow works as follows. You will: