This is the approved revision of this page, as well as being the most recent.
What is a private key?
A private key in the context of Bitcoin is a secret number that allows bitcoins to be spent. Every Bitcoin address has a matching private key, which is saved in the wallet file of the person who owns the balance. The private key is mathematically related to the Bitcoin address, and is designed so that the Bitcoin address can be calculated from the private key, but importantly, the same cannot be done in reverse.
Because the private key is the "ticket" that allows someone to spend bitcoins, it is important that these are kept secure. Private keys can be kept on computer files, but they are also short enough that they can be printed on paper. An example of a utility that allows extraction of private keys from your wallet file for printing purposes is pywallet.
In order to create a transaction with a private key, it must be available to a program or service that allows entry or importing of private keys. Some wallets allow the private key to be imported without generating any transactions while other wallets or services require that the private key be swept. When a private key is swept, a transaction is broadcast that sends the entire balance held by the private key to another address in the wallet or securely controlled by the service in question.
An example of private key sweeping is the method used on MtGox's Add Funds screen and BIPS Import screen. Just as with any other deposit, there is risk of double-spending so funds are deposited to the MtGox account after a six-confirmation wait (typically one hour). In contrast BlockChain.info's My Wallet service and Bitcoin-QT each provide a facility to import a private key without creating a sweep transaction.
In Bitcoin, private key is a 256-bit number, which can be represented one of several ways. Here is a private key in hexadecimal - 256 bits in hexadecimal is 32 bytes, or 64 characters in the range 0-9 or A-F. Bitcoin private key length:
E9 87 3D 79 C6 D8 7D C0 FB 6A 57 78 63 33 89 F4 45 32 13 30 3D A6 1F 20 BD 67 FC 23 3A A3 32 62
Range of valid
Nearly every 256-bit number is a valid private key. Specifically, any 256-bit number between 0x1 and 0xFFFF FFFF FFFF FFFF FFFF FFFF FFFF FFFE BAAE DCE6 AF48 A03B BFD2 5E8C D036 4141 is a valid private key.
The range of valid private keys is governed by the secp256k1 ECDSA standard used by Bitcoin.
Base 58 WIf
When we represent private keys in Bitcoin, however, we use a shorter format known as wallet import format, which offers a few advantages. The wallet import format is shorter, and includes built-in error checking codes so that typos can be automatically detected and/or corrected (which is impossible in hex format). Wallet import format is the most common way to represent private keys in Bitcoin. For private keys associated with uncompressed public keys, they are 51 characters and always start with the number 5. Private keys associated with compressed public keys are 52 characters and start with a capital L or K. This is the same private key in wallet import format.
When a private key is imported, it always corresponds to exactly one Bitcoin address. Any utility which performs the conversion can display the matching Bitcoin address. The mathematical conversion is somewhat complex and best left to a computer, but it's notable that each private key will always correspond to the same address no matter which program is used to convert it.
The Bitcoin address corresponding to the sample above is: 1CC3X2gu58d6wXUWMffpuzN9JAfTUWu4Kj
Some applications use the mini private key format. Not every private key or Bitcoin address has a corresponding mini private key - they have to be generated a certain way in order to ensure a mini private key exists for an address. The mini private key is used for applications where space is critical, such as in QR codes and in physical bitcoins. The above example has a mini key, which is:
Any transaction that has the correct signature will be accepted by the Bitcoin network. At the same time, any person who owns your private key can create the correct transaction. These two facts connected together mean that someone who knows your private key can steal from you.
Many paths are open to thieves who want private keys. The two most popular paths are memory carriers (flash cards) and communication channels. Therefore, should adhere to strict measures during transportation and storage of the private keys.
Software wallets usually store private keys in the” wallet file " on the main hard drive. Wallets usually store this file in a standard, well-known directory, making it an ideal target for viruses directed against the owners of currency exchange.
To counter the threat, software wallets offer the ability to encrypt the wallet file. Any intruder who gains access to your wallet file will then need to decode it. The complexity of this task depends on the encryption quality and the strength of the password used. Wallet files can be encrypted with a variety of wallet programs, you just need to set a password.
Although wallet backups are a good idea, they can potentially serve as a leak of private keys. For example, you might find it tempting to save a wallet file in a cloud storage service like Dropbox. However, anyone who can view the backup online (the list of such people may be unexpectedly long), will be able to steal some or all of your money. A similar problem can arise when sending backups to yourself by e-mail or if you leave the backup sheet in an unreliable place at home. Encryption can reduce the risk, but not eliminate it completely.
Preventing accidental leakage of private keys-the main task of the “cold storage”.
Private and public key
A public key (address) is a set of symbols that the blockchain uses to identify a specific wallet. You get translations for it, you can show it to other users.
Another thing – a private key. Under no circumstances can it be shown to outsiders, including developers Exodus wallet.
In no case, it can not be imported into other people's wallets or into new wallets (for example, to obtain Bitcoin Cash and Bitcoin Gold) as long as the main wallet (from which the key) has bitcoins. First, transfer them to another secure wallet, and then import the private key into new wallets.
- There are many online scammers who use social engineering to steal your keys.
- They can offer you free tokens (Airdrop) for every bitcoin you store in your wallet.
- Or help to get a new coin (Bitcoin Gold) faster than others through an innovative online wallet.
- Gimmicks can be mass. Their main task is to get you to upload a private key to the network or an application they have written.
If you do it – and you can say goodbye to the cryptocurrency portfolio.
The security of private key
Operations with cryptocurrency wallets (especially for the export and import of private keys) should be performed only on a secure computer, without connecting to the Internet.
The correct option is to install Linux (easy to manage – Mint) on a virtual machine, open the Exodus wallet on its base and carry out all operations in this environment.
There may be too many hidden threats (dangerous loopholes list) on your desktop to export private keys with a serious cryptocurrency balance.
If a private key with a Bitcoin balance is compromised or stolen, the bitcoin balance can only be protected if it is immediately spent to a different address whose private key is not compromised. Because bitcoins can only be spent once, when they are spent away from a private key, the private key is worthless unless more coins are sent to the address.