- The interface / client / wrapper / holder that you use to manage your account(s).
- Example: MyEtherWallet.com, your Ledger Hardware Wallet, a Multisig Wallet Contract.
- A public & private keypair that “holds” your funds.
- Your funds are actually stored on the blockchain, not in the wallet or account.
- Just like your Reddit account has a
username (public) and
password (private), so does your Ethereum account. For additional security, you can use a password to encrypt your private key which would result in a
username (public) and
password (private) and
that password (private + more secure). See the
Keystore File section.
Address (“Public Key”)
- You use this to send funds to an account.
- Sometimes referred to as the “public key”
- A string made up of
40 hexadecimal characters.
- In Ethereum, the address begins with
- In cryptography, you have a keypair: the public and private key.
- You can derive a public key from a private key, but cannot derive a private key from a public key.
- (Advanced) In Ethereum, the address “acts” like the public key, but it’s not actually the public key.
- (Advanced) In Ethereum, the public key is derived from the private key and is 128 hex characters. You then take the
"SHA3" (Keccak-256) hash of this (64 characters), take the last 40 characters, and prefix with
0x, give you your 42-character address.
- You use this to send funds from an account.
- The secret half of your Address / public key.
- A string of 64 hexadecimal characters.
- (Almost) every string of 64 hexadecimal characters is a private key.
- If you hand-type a private key differently today than yesterday, you will access a different wallet. Never hand type your private key.
- This is the string you need to send from your account. Without it you cannot access your funds. Although, you don’t need to save this raw, unencrypted private key in this format. You can saving the fancy versions of it (e.g. the Keystore File / Mnemonic Phrase).
- Encrypted version of your private key in JSON format (though it does not have a JSON extension)
- A fancy version of your private key that is protected by a password of your choosing.
- When combined with the password, it has the private key.
- Safer than a private key because you need the password.
- File name usually is in the format
- Example of File Nae:
- Example of Contents:
- Another fancy version of your private key, that is actually used to derive multiple private keys.
- A (typically) 12 or 24 word phrase that allows you to access infinite number of accounts.
- Used by Ledger, TREZOR, MetaMask, Jaxx, and others.
- Originates from BIP 39 Spec.
- The accounts you can access with this phrase are determined by the “path”.
- Example 12-words:
brain surround have swap horror body response double fire dumb bring hazard
- Example 24-words:
card enrich gesture connect kick topple fan body blind engine lemon swarm venue praise addict agent unaware equal bean sing govern income link leg
- Typically, a single-purpose device that “holds” your private key(s), ensuring your private keys are safe.
- Typically, they use a 24-word phrase. This phrase you should write down (not on your computer) and store separately from your hardware wallet.
- If you lose your hardware wallet, you can still gain access to your accounts & funds via the word-phrase you wrote down.
- Never type the word-phrase on your computer. It defeats the purpose of your hardware wallet.
AddressIdenticon / AddressIcon:
- The colorful blob of colors that corresponds to your address.
- It is an easy way to see if your address is correct.
- Example 1
- Example 2
- Note: the above addresses are a single character different but have remarkably different icons & colors. Magic!
- Used all over Ethereum for a variety of things, a hexadecimal string is comprised of the numbers
0 1 2 3 4 5 6 7 8 9and
A B C D E F
- The input given to derive a private key. This should always be generated in a truly random way, not something you make up with your measly human brain.
- If you chose the seed, it is known as a
- An account generated from a seed or password or passphrase of your choosing.
- Humans are not capable of generating enough entropy and therefore the wallets derived from these phrases are insecure.
- Brain wallets can be brute forced by super fast computers.
- Brain wallet are insecure.
- Don’t use brain wallets.
- Also known as “randomness”.
- The more random something is, the more entropy it has, and the more secure it is.
- Usually defined in “bits of entropy” or the number of years it would take to brute-force a _______ (e.g. private key) derived with that much entropy.
- Ethereum private keys are 256-bit keys
- 24-Word mnemonic phrases are also 256 bits of entropy. 2048 words in the dictionary. 11 bits of entropy (the words).
11 * 24 = 264. The last word is a checksum.
Thanks for Team MyEtherWallet for this much needed resource.