My big question (sorry Nadim, if this has been addressed before as part of the MiniLock discussions) is what stops passphrases being brute forced. It seems from the spec that the passphrase == private key and public key is then derived from that, in the usual ECC manner.
The Bitcoin community has learned the hard way that there are no secure passphrases. Example: https://www.reddit.com/r/Bitcoin/comments/1ptuf3/brain_wallet_disaster/ Just lost 4 BTC out of a hacked brain wallet. The pass phrase was a line from an obscure poem in *Afrikaans*. Somebody out there has a *really* comprehensive dictionary attack program running. Fuck. I thought I had my big-boy pants on.
_______________________________________________ Messaging mailing list [email protected] https://moderncrypto.org/mailman/listinfo/messaging
