[Why Conventional Backups Often Fail (And What Many Don't Realize)]
1. Backing Up Private Keys of Wallets
In the early days of crypto, wallets only relied on private keys, skipping out on those mnemonic phrases.
These private keys are basically a long string of letters and numbers. Just one wrong character and boom, the key is toast, and there's no way to get it back.
Private keys link to a specific blockchain and wallet.
If you have multiple blockchains or wallets, backing up each key one by one turns into a real headache.
2. Storing BIP39 Mnemonics as Plaintext
Keeping BIP39 mnemonic phrases in plaintext is a big no-no.
If they get exposed, anyone who knows about BIP39 can easily restore your wallet and swipe your funds.
3. Backing Up Using BIP39 Index Numbers
Each word in BIP39 matches up with a number (like "office" = 1229), called a BIP39 index (1 2048).
Works across languages: English, Chinese, or whatever BIP39 wordlist you’re using.
Less obvious as crypto data, which adds some layer of secrecy. But still, if someone grabs those index numbers in plaintext, they’re at risk from anyone in the know about crypto.
4. Backing Up BIP39 Mnemonics Plus Passphrase
Even when you mix plaintext BIP39 mnemonics with a passphrase, it's still super risky.
Complicated passphrases are tough to etch onto stainless steel.
And if you're juggling multiple wallets with different passphrases, it just makes everything way harder.
5. Monoalphabetic Substitution Ciphers Are Easy Targets
Using a monoalphabetic substitution cipher for the 26 letters of the English alphabet (like a→e, d→y, f→k) might look safe at first.
- Technically, there are about 26! ≈ 4×10²⁶ ways to map those letters (~88 bi.
CipherSeed: A Comprehensive Guide to Super-Secure Crypto Wallet Backups
5 replies 473 views
yield_forkFull Member
Posts: 162 · Reputation: 728
#2Jul 1, 2026, 02:21 AM
I agree with you, you mapped out all the inherent risks of storing seeds in plain text. I'm curious to see some demonstration video of the cipher numbers...
However, I haven't found any website or article that identifies the product you describe. Do you intend to do that later? Although, searching on google for 'CipherSeed', I find a website that claims to specialize in encrypting seed phrases in the cloud, so I don't think it has anything to do with the supposed service/solution you're announcing.
Remember that this is not the only method to "shuffle" the initial passphrase backup, there are several... A simple BIP39 passphrase is already sufficient (provided it's strong and resistant to brute force) to protect real funds. The thief doesn't even know about the existence of the hidden wallet generated by the passphrase. For now, this is the simplest and most efficient way that doesn't require third-party software, as most wallets that support BIP39 have passphrase support, and the user can perform the entire procedure on an offline air-gapped computer or an air-gapped hardware wallet.
Thanks for your comment! Just to clarify, this is a real product, fully documented on cipherseed.io, and its focused on physical, number‑based backups of BIP39 seeds not cloud storage or custodial encryption.
Thanks for your points! I fully agree that a strong BIP39 passphrase can protect a hidden wallet if handled properly.
However, there are a few practical considerations:
If your 12 or 24-word mnemonic is stored in plaintext, the risk of leakage remains significant, no matter how strong the passphrase is.
If you generate multiple wallets with different passphrases, how do you safely store all these passphrases? Writing them on paper risks fire/water damage; engraving them on steel is cumbersome; if theyre generated systematically and remembered mentally, its easy to forget or for others to guess.
In comparison, CipherSeeds approach is simple and reliable: you transform each mnemonic into cipher numbers using a one-time, personal mapping. These numbers can be stored physically in any location without revealing your seed, while the mapping alone allows you to recover any wallet.
Its not meant to replace passphrases, but for long-term, multi-wallet management and physical security, I find this method far more practical and robust.
paul.ninjaFull Member
Posts: 152 · Reputation: 539
#4Jul 3, 2026, 03:08 PM
This is a clever system and the write-up is fun to read, but I think you're solving a very narrow threat model while making the common failure modes worse.
From an attacker's point of view, your cipher numbers are just another way of encoding the same 128-256 bits of entropy. The security still collapses to one thing: do they get access to both the encoded data and the rule. If they do, it's game over, just like getting seed + passphrase. If they don't, it's effectively uncrackable, also just like a normal BIP39 seed with a strong passphrase. You're not really buying more entropy, you're buying a different place to shoot yourself in the foot: losing or mis-recording the mapping table instead of the passphrase.
silentchainHero Member
Posts: 473 · Reputation: 2317
#5Jul 3, 2026, 05:55 PM
No cipher surpasses PGP encryption.
PGP private key can be stored on hardware dongle such as Yubico 5, which may be cloned for redundancy.
Encrypted SEED can be stored in password manager (PM), secured with complex password, part of which is stored on the same dongle.
In turn, the database of this PM can be stored in Tails Persistent Volume, locked by another complex password.
The entire encryption system which resembles the Russian nesting doll is effectively unbreakable. The medium containing such encrypted SEED can be cloned virtually an indefinite number of times and openly distributed worldwide for distributed storage.
The practical technique is provided here, which I believe is far superior for many reasons to the method proposed by OP.
BIP39 is already extremely strong. Nobody needs more entropy.
What most people actually struggle with is everything around it:
They dont understand software encryption
They dont trust digital tools
They want something physical, simple, and hard to mess up
CipherSeed is not designed to be stronger than BIP39.
Its designed to be easier for normal people to manage without mistakes.
The only real risk is very clear:
an attacker would need both the cipher numbers and the private mapping rule at the same time.
Thats why the recommended setup is extremely practical:
Rent two small safe-deposit boxes
Box A: cipher numbers
Box B: mapping table
You can add Box A2/A3 and Box B2/B3 if you want.
This scheme works for any number of wallets.
With this model:
No passphrase to memorize
No fear of someone glancing at your seed
No family/visitors accidentally seeing it
No bank employee seeing a BIP39 word
Much less mental stress overall
The goal of CipherSeed is simple:
Keep BIP39s security, but give ordinary users a physical workflow that is easy to understand, easy to maintain, and very hard to mess up.
?Reply
Sign in to reply to this topic