Storing an encrypted private key on a server

1

I am planning on building a small e-wallet website to learn the basics of encryption and handling accounts, transactions, and balances in Bitcoin.

I want to learn how to make a website where the database does not hold anyone's private data.

What client-side encryption and hashing algorithm should I use? What algorithm or process should I use to ensure that the users encrypted and hashed data is secure on the server?

Using brainwallet, the process for account creation is this:

  1. The client creates a private key.
  2. The user enters a username/password
  3. The client encrypts the private key with a password. The client hashes the password and username. The client sends data to the server.
  4. The server stores the hashed username/password and encrypted private key to the database.

Now, whenever a user wishes to spend a transaction on my site, I am attempting to use brainwallet to send transactions. The process for this will be:

  1. The user types in a username and password.
  2. The client sends a hashed username/password to the server.
  3. The server responds with an encrypted private key for that user.
  4. The client decrypts the private key with a password.

As a side note: is this a sound process for storing and transmitting data to the server?

bvpx

Posted 2013-09-29T21:29:23.880

Reputation: 1 052

Answers

3

I am planning on building a small e-wallet website to learn the basics of encryption and handling accounts, transactions, and balances in Bitcoin.

This is really not the place to learn. Even the most hardened Bitcoin services get attacked on a regular basis.

Using brainwallet, the process for account creation is this:

"Brain wallets" are an incredibly easy way for users to lose all of their funds. It happens every day. Think your 8 word sentence is strong enough? Chances are that it's not, and there's at least three bots that will empty the wallet in seconds of it receiving funds.

Now, whenever a user wishes to spend a transaction on my site I am attempting to use brainwallet to send transactions.

The code you're referencing is just a frontend for blockchain.info and the bitcoinjs library.

As a side note: is this a sound process for storing and transmitting data to the server?

Blockchain.info uses this method for it's web wallet, but no, it's very unsafe and offers very little in the way of security. If your server is compromised, the keys still are. If you are malicious, you can just backdoor the client scripting and nobody would ever know. It is not secure, and a service using this type of system shouldn't be advertising itself as such.

Anonymous

Posted 2013-09-29T21:29:23.880

Reputation: 891

The brainwallet code I linked is not an actual brain wallet, it's a javascript implementation of address generation and transaction creation/signing. I think that the security gained from storing an encrypted private key rather than a plaintext private key is significant. At the end of the day, if a user is going to use a webwallet, they'll choose blockchain.info over any competitor who has access to their private key in plaintext.bvpx 2013-09-29T22:52:45.013

Blockchain.info has access to the private keys anyway, you would have to be a fool to believe otherwise. If not them, someone with root on their boxes, or someone at cloudflare, or the janitor at the datacenter. JavaScript based crypto, can not and will not ever be secure when the code protecting the data is being loaded from a possibly adversarial server. Even if there wasn't a backdoor (I'm not saying there is), any JS encryption is weak and slow, compounded by the fact that users choose bad passwords. Better to just forgo the veil of false security, and store the keys server side.Anonymous 2013-09-29T23:26:59.560

Asked: 2013-09-29T21:29:23.880

Viewed: 1 245 times

Active: 2014-05-22T08:50:09.357