Wallet Security Dos and Don'ts: Difference between revisions

From Bitcoin Wiki
Jump to navigation Jump to search
Liraz (talk | contribs)
→‎Do: understand and test
Liraz (talk | contribs)
→‎Don't: clarified address re-use privacy implications
Line 18: Line 18:
* DO NOT reuse a wallet encryption passphrases with online services
* DO NOT reuse a wallet encryption passphrases with online services
* DO NOT store your wallet on cloud storage (Dropbox, etc.)
* DO NOT store your wallet on cloud storage (Dropbox, etc.)
* DO NOT re-use addresses (this also applies to paper wallet addresses)
* DO NOT re-use addresses (including paper wallet addresses) if you care about privacy


== See also ==
== See also ==

Revision as of 12:47, 22 January 2017

This article should not be considered as a replacement for the more in-depth articles on best practices, however key points in wallet security:

Do

  • DO seek to understand what you are doing, before you do it
  • DO verify understanding by testing with small low value transactions
  • DO encrypt your wallet with a strong passphrase
  • DO backup your wallet
  • DO use recommended software from the list at https://bitcoin.org/en/choose-your-wallet
  • DO keep your OS up to date and run a virus scanner
  • DO store significant amounts in offline wallets (cold/paper/hardware)

Don't

  • DO NOT trust an untrustworthy device or program to generate your wallet keys
  • DO NOT generate cold storage keys on Internet-connected machines.
  • DO NOT reconnect to the Internet a machine that has had access to cold storage keys.
  • DO NOT reuse a wallet encryption passphrases with online services
  • DO NOT store your wallet on cloud storage (Dropbox, etc.)
  • DO NOT re-use addresses (including paper wallet addresses) if you care about privacy

See also