Home Explore Help
Sign In
mmgen
/
mmgen-wallet
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki

an online/offline cryptocurrency wallet for the command line https://mmgen-wallet.cc

Tree: ec524f7ef5
Branches Tags
mmgen-wallet
MMGen ec524f7ef5 Add v0.10.0 release notes 6 years ago
cmds f0fea335eb py3port: update hashbangs 6 years ago
data_files 949e42ebf4 py3port: 2to3 on all files 6 years ago
doc ec524f7ef5 Add v0.10.0 release notes 6 years ago
extmod 59007ee697 py3port: rewrite secp256k1 extension module 6 years ago
mmgen fec4fcb772 py3port: Bitcoin ABC v0.18.8.0 compatibility fix 6 years ago
scripts 8c1df23332 py3port: 'test.py autosign_live' - test device insertion/removal + LED 6 years ago
test 766281cb0e py3port: test.py: improved version checking for solc 6 years ago
INSTALL 8fb3efd99c mmgen-autosign: encrypt signing wallet with session key on removable device 7 years ago
LICENSE b7572c9946 new file: LICENSE 10 years ago
MANIFEST.in 881d55993f ERC20 token support (create/deploy, TX create/sign/send) 6 years ago
README.md 5eb0bea794 modified: README.md 6 years ago
SIGNING_KEYS.pub bf5334f4cb Update signing keys, links 7 years ago
setup.py 489d637719 py3port: setup.py: check Python version 6 years ago

README.md

Note: This is the source code repository of the MMGen wallet system. For an easier way to install MMGen, check out the prebuilt bootable USB images on the MMGenLive home page.

MMGen = Multi-Mode GENerator

a Bitcoin and altcoin online/offline software wallet for the command line

Description

MMGen is a wallet and cold storage solution for Bitcoin (and selected altcoins) implemented as a suite of lightweight Python scripts. The scripts work in tandem with a reference Bitcoin Core daemon (or altcoin daemon) running on both an online and offline computer to provide a robust solution for securely storing, tracking, sending and receiving Bitcoins.

The online computer is used only for tracking balances and creating and sending transactions. Thus it holds no private keys that can be hacked or stolen. All transactions are signed offline: your seed and private keys never touch a network-connected device. The offline computer used for wallet creation, address generation and transaction signing is typically a low-powered device such as a Raspberry Pi.

MMGen is designed for reliability by having the Bitcoin daemon itself, rather than less-tested third-party software, do all the “heavy lifting” of tracking and signing transactions. It’s also designed with privacy in mind: unlike some other online/offline wallet solutions, MMGen plus Bitcoin Core is a completely self-contained system that makes no connections to the Internet except for the Bitcoin network itself: no third parties are involved, and thus no information about the addresses you’re tracking is leaked to the outside world.

Like all deterministic wallets, MMGen can generate a virtually unlimited number of address/key pairs from a single seed. Your wallet never changes, so you need back it up only once.

At the heart of the MMGen system is the seed, the “master key” providing access to all your Bitcoins. The seed can be stored in five different ways:

  1. as a password-encrypted wallet. For password hashing, the crack-resistant scrypt hash function is used. Scrypt’s parameters can be tuned on the command line to make your wallet’s password virtually impossible to crack should it fall into the wrong hands. The wallet is a tiny, six-line text file suitable for printing or even writing out by hand;

  2. as a seed file: a one-line, conveniently formatted base-58 representation of your unencrypted seed plus a checksum;

  3. as an Electrum-like mnemonic of 12, 18 or 24 words;

  4. as a brainwallet passphrase (this option is recommended only for users who understand the risks of brainwallets and know how to create a strong brainwallet passphrase). The brainwallet is hashed using scrypt with tunable parameters, making it much harder to crack than standard SHA-256 brainwallets; or

  5. as “incognito data”, an MMGen wallet encrypted to make it indistinguishable from random data. This data can be hidden in and retrieved from a random-data filled disk partition or file at an offset of your choice. This makes it possible to hide a wallet in a public location -- on cloud storage, for example. Incognito wallet hiding/retrieval is seamlessly integrated into MMGen, making its use nearly as easy as that of the standard wallet.

The best part is that all these methods can be combined. If you forget your mnemonic, for example, you can regenerate it and your keys from the stored wallet or seed file. Correspondingly, a lost wallet can be regenerated from the mnemonic or seed or a lost seed from the wallet or mnemonic. Keys from a forgotten brainwallet can be recovered from the brainwallet’s corresponding wallet file.

mmgen-txcreate running in an Rxvt terminal window mmgen-txcreate running in an Rxvt terminal window

Why MMGen is not a BIP32 wallet

Most popular wallets today are based on the BIP32 protocol. But while BIP32 is undeniably powerful and flexible, it has two significant weaknesses, in our view. First of all, it relies on elliptic-curve cryptography, which means that with the advent of quantum computing, or perhaps the discovery of a weakness in the secp256k1 curve, not only will your individual keys be at risk but the entire system used to derive them. Thus an attacker could conceivably gain access to all your crypto assets in one fell swoop. With MMGen you're protected against this danger, as its key derivation scheme relies entirely on the SHA256 and SHA512 cryptographic hash algorithms, which use no complex math and are generally considered quantum-safe. Incidentally, a nice side-effect of MMGen's hash-based KD scheme is that you can recover your keys from an MMGen seed without the MMGen program itself using standard command-line utilities.

A second critical weakness of BIP32 is mentioned in the text of the BIP:

One weakness that may not be immediately obvious, is that knowledge of a parent extended public key plus any non-hardened private key descending from it is equivalent to knowing the parent extended private key (and thus every private and public key descending from it).

This means that the compromise of a single key could lead to the theft of other, or even all, of your keys, something that MMGen's hash-based derivation scheme once again protects you against. True, BIP32 does implement “hardened” keys to counter this vulnerability, but with their use you lose the ability to generate addresses from a master public key, which is the only functionality an EC-based wallet provides over a hash-based one in the first place. In which case you might as well be using a hash-based wallet like MMGen for the additional security it provides. As to the master public key feature, MMGen makes up for its absence by allowing you to easily generate address lists for distribution to potential payers.

Download/Install

Install a prebuilt bootable image (MMGenLive) on a USB stick

Install from source on Microsoft Windows

Install from source on Debian, Ubuntu, Raspbian or Armbian Linux

Using MMGen

Getting Started with MMGen

MMGen Quick Start with Regtest Mode

MMGen command help

Recovering your keys without the MMGen software

Altcoin and Forkcoin support (ETH,ETC,XMR,ZEC,LTC,BCH and 144 Bitcoin-derived alts)

Forum | Reddit | PGP Public Keys | Donate (BTC,BCH): 15TLdmi5NYLdqmtCqczUs5pBPkJDXRs83w