About HOPE XI - Stealing Bitcoin With Math!

in steemit •  8 years ago  (edited)

LINK TO PRESENTATION

They did a brute force on private keys starting at 0x00...00 and increasing and found some BTC. They did a brute force on some brain wallets using common words as a private key generator and found some BTC.

They did a brute force on some "random" brain wallets that they were using JavaScript's Math.random(). Because JS generates a random number with a seed based on what time it is, they were able to generate past and future private keys and found some more BTC.

They also expanded on this ECDSA vulnerability explaining that once they found one bad address, they could use what they found there to expose other bad addresses. I thought it was an interesting talk, even though all of these "vulnerabilities" have been known for a while and are all because of bad client side code, aka in wallets.

Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!
Sort Order:  

Congratulations @olivo! You have received a personal award!

Happy Birthday - 1 Year
Click on the badge to view your own Board of Honor on SteemitBoard.

For more information about this award, click here

By upvoting this notification, you can help all Steemit users. Learn how here!

Following you!

Congratulations @olivo! You received a personal award!

Happy Birthday! - You are on the Steem blockchain for 3 years!

You can view your badges on your Steem Board and compare to others on the Steem Ranking

Vote for @Steemitboard as a witness to get one more award and increased upvotes!
  ·  7 years ago Reveal Comment