Conceal Wiki

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
security [2020/02/10 23:40] โ€“ boot2thrillsecurity [2022/12/21 17:21] (current) โ€“ lolitalollipop
Line 1: Line 1:
-{{ :security.jpg|}}+{{ :security.jpg?800 |}}
  
 It is very important that you **secure your funds and take every single measure possible to ensure the safety of your currency**. This guide will go through some of the basic security measures every user should take. It is very important that you **secure your funds and take every single measure possible to ensure the safety of your currency**. This guide will go through some of the basic security measures every user should take.
Line 6: Line 6:
  
 ===Safely store your private key and never share your private key=== ===Safely store your private key and never share your private key===
-When creating a new Conceal wallet, you will be provided with a **private key**. A private key allows access to your wallet and is the single most important  . Without your private key, you cannot access your crypto. Never, under any circumstances, should you ever share your Conceal wallet or private keys with any person or software that you do not intend to take control of all of your assets.+When creating a new Conceal wallet, you will be provided with a **private key**. A private key is the single most important method to access your wallet. Without your private key, you cannot access your crypto. Never keep your private key online, or as an email, or in the cloud. These methods are most susceptible to being hacked.  
 + 
 +Ideally this **private key** should be **written down on paper and stored in a safe place**. To make it more secure you can laminate it and store it in a vault. 
 + 
 +Another, less secure, alternative is to **copy the private key to the clipboard and store it electronically**. Be aware that some types of malware may have access to the clipboard which could lead to the private key being compromised.  
 + 
 +If stored on the same device as the wallet itself, the private key backup would be useless in the case of ransomware or hardware failure, which caused access to the wallet to be lost in the first place. So, **if an electronic copy is being used, storing the file on a USB drive would be a better approach**.  
 + 
 +Never, under any circumstance, should you ever share your Conceal wallet or private key with any person or software that you do not intend to take control of all of your assets.
  
 ===Safely store your recovery phrase and never share your recovery phrase=== ===Safely store your recovery phrase and never share your recovery phrase===
-When creating a new Conceal wallet, you will also be provided with a **recovery phrase**. This phrase allows you to recover the wallet if you lose access to it for any reason. Ideally this **recovery phrase** should be **written down on paper and stored in a safe place**. +When creating a new Conceal wallet, you will also be provided with a **recovery phrase**. This phrase allows you to recover the wallet if you lose access to it for any reason. Ideally this **recovery phrase** should be **written down on paper and stored in a safe place**. To make it more secure you can laminate it and store it in a vault.
  
 Another, less secure, alternative is to **copy the recovery phrase to the clipboard and store it electronically**. Be aware that some types of malware may have access to the clipboard which could lead to the seed being compromised.  Another, less secure, alternative is to **copy the recovery phrase to the clipboard and store it electronically**. Be aware that some types of malware may have access to the clipboard which could lead to the seed being compromised. 
  
 If stored on the same device as the wallet itself, the seed backup would be useless in the case of ransomware or hardware failure, which caused access to the wallet to be lost in the first place. So, **if an electronic copy is being used, storing the file on a USB drive would be a better approach**.  If stored on the same device as the wallet itself, the seed backup would be useless in the case of ransomware or hardware failure, which caused access to the wallet to be lost in the first place. So, **if an electronic copy is being used, storing the file on a USB drive would be a better approach**. 
 +
 +Never, under any circumstance, should you ever share your Conceal wallet or recovery phrase with any person or software that you do not intend to take control of all of your assets.
  
 ===Never reuse passwords and logins=== ===Never reuse passwords and logins===
Line 20: Line 30:
 ===Use long, secure passwords=== ===Use long, secure passwords===
 It might be a bit of a hassle to dig it up every time you want to login to trade or check your balances, but that process is much more seamless if you take advantage of secure, password managers that help you generate and remember every login/password for all exchanges you trade on. It might be a bit of a hassle to dig it up every time you want to login to trade or check your balances, but that process is much more seamless if you take advantage of secure, password managers that help you generate and remember every login/password for all exchanges you trade on.
- 
-===Enable two-factor authentication (2FA)=== 
-This is the first thing anyone investing should immediately enable after you register on an exchange, or any location where you store your cryptocurrency. All exchanges have this option, so enable it! 2FA ensures that even if your login and password is compromised, hackers cannot get into your account unless they also enter a time-sensitive 6 digit code, that only you can access on your phone. 
  
 ===Exchanges=== ===Exchanges===
-This is the riskiest way to store your crypto because your funds are in the hands of a third party. The exchange or custodian is holding your crypto in their wallets. So they control your private keys or recovery phrases of these wallets.+By far, the riskiest method to store your cryptocurrency is on exchanges. The cryptocurrency golden rule is **NOT YOUR KEYS, NOT YOUR FUNDS**. Storing your crypto on exchanges keeps control of your funds in the hands of a third party. The exchange is holding your crypto in their wallets. They control the private keys, they control the recovery phrases. There are many examples of exchanges being hacked and clients losing their crypto
  
-There are countless stories about exchanges being hacked and losing funds of their clients. It is ok to have some of your funds on an exchange for trading purposes. Longtime holdings should never be stored on an exchange because you are not the owner of your keys.+Short-term storing of your crypto on exchanges for trading purposes is understandableHowever, long-term storing of your crypto on exchanges should never be considered a secure option. Remember, **NOT YOUR KEYS, NOT YOUR FUNDS**. 
 + 
 +===Enable two-factor authentication (2FA)=== 
 +This is the first thing anyone investing should immediately enable after you register on an exchange, or any location where you store your cryptocurrency. All exchanges have this option, so enable it! 2FA ensures that even if your login and password is compromised, hackers cannot get into your account unless they also enter a time-sensitive 6 digit code, that only you can access on your phone.
  
 This is not an exhaustive list, but should be the very minimum of what you should be doing to secure your funds. This is not an exhaustive list, but should be the very minimum of what you should be doing to secure your funds.
  
  • security.1581378059.txt.gz ยท Last modified: 2020/02/10 23:40 by boot2thrill
  • GNU Free Documentation License 1.3 Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3