Best way to store crypto credentials like private keys and seeds -- Keepass
Password manager is not only meant for managing password for logging in website on a browser, I should have thought of this idea much early, how silly me.
Before entering the circle of cryptocurrency, I never so been so paranoid about the security of some digital random phrase. The most important digital text to me was probably my online banking password, which I could easily retrieve by clicking on the "Forgot your password?" link.
Crypto is a completely different game
The rule is simple here -- who owns the private key, who owns everything in it. There is no authority the victims could ask for help because they themselves are the only authority. While the hardware wallet like Trezor is the best device every crypto investor should get, there are still too many of interesting coins which haven't partnered with hardware wallet. Steem is one of them so let's take it as example.
We all know how important is the Steem owner key, but how do you store them? How do you secure this ultra-sensitive long phrase that represents the absolute ownership of your Steem account?
I used to store them using 7z built-in encryption method up to the moment before I'm writing this post. 7z does good in offering simple encrypting feature but it is designed for protecting truly sensitive data.
KeepPass maybe the best and final solution here
KeePass is a free open source password manager, which helps you to manage your passwords in a secure way. You can put all your passwords in one database, which is locked with one master key or a key file. So you only have to remember one single master password or select the key file to unlock the whole database. The databases are encrypted using the best and most secure encryption algorithms currently known (AES and Twofish).
KeePass has everything to be a perfect candidate of the crypto guardian:
- Open source so anyone can throw an security audit to it anytime.
- Offline so no one is hosting the database other than the user.
- Key file could be the best solution against key logging.
- Cross-platform
- Made to store various of password or complex code
- Use one of the most advanced encryption algorithms
How to setup
1)Download it here. Create a KeePass database file, in this case it is crypto_keys.kdbx.
2)Create a strong password is the key here. It should be strong enough to withstand any brute-forcing cracking process in case the database file is compromised. For the expert you might want to explore the key file method.
3)Simply give it a database name, keep the rest setting as default unless you want customize it further.
4)First let's see how it store Steem's key. I set fr3eze as the user name and put some random key as the password.
5)I will add another entry using EOS key pair. In this case I put 'EOS' as the title and leave the username empty. Private key in the password column while the public key in the note area. I leave other settings as default for both entry.
6)This is how the database looks like so far with the Steem and EOS entry.
7)Here is what making the KeePass really handy if you need to copy the user name, password or notes. Just double click on the text and you shall see the bottom bar indicating the click phrase is copied to the clipboard and will be cleared in 12 seconds.
8)Save and quit the KeePass. This is the database that I just created and it will be all you need to care about. Spread it over your private cloud or flash drive for better portability. There are many third party plugins from various platform to access this file but the general rule is stick only to those reputable or open source programs.
This is by far the best method to store private information about crypto to me. Are you with me?
KeePass 是开源项目里最有名气的密码管家,作为管理加密货币的绝密资讯最适合不过。比如恢复种子和私钥等等,之前都是用 7z 来简单的加密,使用 KeePass 的好处有:
- 免费开源,所以每个人都可以审核监督软件的安全程度。
- 离线设计,没有人拥有你的数据库,全是自己说了算。
- 加密设计非常先进。
- 跨平台。
- 本来就为收藏多种密码而设计。
不知你有什么更好保护货币密码的方法?
that`s very informative :)
Thanks and I appreciate that.
I am using keepass for about a year now, also at work to store all my passwords.
Both seperated in their own database.
I just love it!
You have 2 tabs and can switch between them just in time without entering your masterpass again.
Some plugins can even handle them like it's one
For sure you could even have 3 or more opened at once
Thanks for the info. I would still use Bitwarden as everyday password manager but it is good to know this.
Is this process going to save our trust and time we must replace . Is this going to be the most efficient way in the near future or just for the moment ?
Hope for your answer back
Yes and yes.
Thanks . Keep in touch for updates .
I use it exactly likte that. I think it's a very convenient and intelligent solution.
Link to download the tool: https://keepass.info/download.html
Oh I didn't include the link, edited. Thanks for verifying this method, definitely gonna save me tons of brain cell.
Great info. I get so anxious when someone tells me they only store their coins in an exchange. Very risky.
Some people need to learn from lessons, not lecture. haha.
Love trading? Full into cryptoworld?
So, you should start use iCoinCourse - best software for traders ever!
Description, support and download mirror there: icoincourse.com
Good information, there are lots of people who do not know how to keep their key safe.
To me storing in different places with the information, like- username, site name etc, in there(Obviously with your private language) . So you do not have to worry to loose it. Still it is better for the new comers i believe.
The trick to get thing well done is to do it with max efficientcy while keeping it simple, that's why I think Keepass got is the best fit here.
you got that right, my method is effective not much efficient. thanks ..
I've been keeping my master password in the password field and my other keys are in the same entry but stored as a string value in the Advanced tab.
Do you recommend to keep a single entry for every key?
Just became enabled in-memory protection to be safer
I dont think that would make a difference in term of security, both ways are OK. Just to make sure you use a strong master password for the database then you will be fine.
I am using Keepass like how you are using it too. One of the cool thing about Keepass is that you can store it totally offline in a USB stick and it will function a little like a hardware wallet. Haha.. This is unlike services like LastPass which there is still a copy at their server which you do not know if they are really properly secured.
Exactly the concern I used to have with centralised service like Lastpass. Hardware wallet is still unbeatable but still not supporting most coins. Guess Keepass will handle this well enough. Should have discuss this more with you just now haha.
Haha.. Yea man, there will be next time.
Hardware wallet is nice, however, KeePass can serve as a budget "hardware wallet" too.
Thank you so much for sharing. It's great.
Upvote and resteem! Waiting for your future post :D