1
Someone robbed me at gunpoint and took my laptop. The laptop contained an encrypted hardrive with a wallet.dat file. Both the hardrive and wallet.dat had at best weak passphrases for the encryption. I have assumed both to be compromised.
My question has to do with the one-way permutation hash function of ripemd-160 to generate both the private and public keys used in brain wallet generators.
[I am assuming that wallet generators are using one way permutations. I could be wrong. If I am then please inform me. Most wallet generators use the brainwallet.py available on github.]
If an attacker has obtained your private key can he "reverse engineer" the key to obtain the original brain wallet passphrase used when the wallet was generated?
If so I assume he can use that to bruteforce any other wallet that would use the same passphrase as a seed as mentioned in this post here:
Why does it matter if he can reverse-engineer the key to your passphrase? If he has the private key, he can spend your balance. You won't be able to make a new brain wallet with the same passphrase, as it will result in the same address. So unless your passphrase was the password you use for everything (stupid idea!), this doesn't really matter. – Steven Roose – 2014-01-15T16:42:15.380
Any reason for your cross-post at crypto.se? You obviously already received an answer here...
– e-sushi – 2014-01-15T18:09:32.660I did not know where to best post the question. Sorry – user12247 – 2014-01-16T01:06:55.810
Steven re-read the post. The question was relevant to the seed passphrase being obtained. The wallet was already secured (empty wallet) – user12247 – 2014-01-16T01:15:36.220