blog-contributions/opsec/moneroinheritance/index.html

<!DOCTYPE html>
<html lang="en">
  <head>
    <meta charset="utf-8">
    <meta http-equiv="X-UA-Compatible" content="IE=edge">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <meta name="description" content="">
    <meta name="author" content="">
    <link rel="shortcut icon" href="../../../../../../assets/img/favicon.png">

    <title>Monero Inheritance</title>

    <!-- Bootstrap core CSS -->
    <link href="../../assets/css/bootstrap.css" rel="stylesheet">
	<link href="../../assets/css/xt256.css" rel="stylesheet">
    
    

    <!-- Custom styles for this template -->
    <link href="../../assets/css/main.css" rel="stylesheet">

    

    <!-- HTML5 shim and Respond.js IE8 support of HTML5 elements and media queries -->
    <!--[if lt IE 9]>
      <script src="https://oss.maxcdn.com/libs/html5shiv/3.7.0/html5shiv.js"></script>
      <script src="https://oss.maxcdn.com/libs/respond.js/1.3.0/respond.min.js"></script>
    <![endif]-->
  </head>

  <body>

    <!-- Static navbar -->
    <div class="navbar navbar-inverse-anon navbar-static-top">
      <div class="container">
        <div class="navbar-header">
          <button type="button" class="navbar-toggle" data-toggle="collapse" data-target=".navbar-collapse">
            <span class="icon-bar"></span>
            <span class="icon-bar"></span>
            <span class="icon-bar"></span>
          </button>
          <a class="navbar-brand-anon" href="\index.html">The Nihilism Blog</a>
        </div>
        <div class="navbar-collapse collapse">
          <ul class="nav navbar-nav navbar-right">

            <li><a  href="/about.html">About</a></li>
            <li><a  href="/blog.html">Categories</a></li>
<li><a href="https://blog.nowhere.moe/donate.html">Donate</a></li>
            <li><a  href="/contact.html">Contact</a></li>
          </ul>
        </div><!--/.nav-collapse -->
        
      </div>
    </div>

	<!-- +++++ Posts Lists +++++ -->
	<!-- +++++ First Post +++++ -->
	<div id="anon2">
	    <div class="container">
			<div class="row">
				<div class="col-lg-8 col-lg-offset-2">
  					<a href="../index.html">Previous Page</a></br></br><p><img src="../../assets/img/user.png" width="50px" height="50px"> <ba>Prism Breaker</ba></p>
<h1>How to setup a trustless inheritance plan for your monero </h1>
<p>If you make a lot of money in monero, and unluckily you are about to reach the end of your life, and again luckily you have someone you care and want them to have your money after your death, this tutorial is for you.</p>

<p>Let's do not ask why you do not handle them your coins or convert to fiat when you are still alive, maybe you want some sort of mysterious surprise for your relative who never heard of monero, and carries on to execute your evil plan with it.</p>
<img src="coffin.png" class="imgRz" style="width: 700px">

</div>
			</div><!-- /row -->
	    </div> <!-- /container -->
	</div><!-- /grey -->

	<!-- +++++ Second Post +++++ -->
	<div id="anon3">
	    <div class="container">
			<div class="row">
				<div class="col-lg-8 col-lg-offset-2">
          <h2><b>Theory and setup</b></h2>
		  <p>The plan is to setup a plan when your family find out you died, <b>they can recover your crypto</b>. You will need <b>2 lawyers</b> to setup this plan. But our plan will utilize some cryptography tools so <b>neither your lawyer or your family members</b> can access your crypto not as you intended.</p>
		  <img src="whole_process.png" class="imgRz">
          <p></p>
		  <p>To achieve what we want, we need <b>threshold encryption</b>, where we need to encrypt containers and make sure that we need at least 2 out of the 3 existing keys to open them, we can use veracrypt <a href="https://blog.nowhere.moe/opsec/veracrypt/index.html">https://blog.nowhere.moe/opsec/veracrypt/index.html</a>, but instead of only using passwords, we'll use keyfiles</p>		  
		  <p>We will setup a container with password and keyfile, for these kind of container you will need both password and keyfile to open, if one of them is lost, it is impossible to decrypt</p>
		  <img src="keyfile.png" class="imgRz" style="width: 500px">

		  <p>We will assume you already know to create veracrypt containers and how to mount them</p>

		  <p>The plan is to achieve a <b>2/3</b> multisig scheme. Which means we will have <b>3 keys</b>, and we should be able to access our wallet with <b>any 2 key</b>. It is like a council with 3 people, but you only need 2 people to agree to pass a law</p>
		  <img src="multi_sig.jpg" class="imgRz" style="width: 500px">
		  <p></p> 
		  <p>Monero multi-sig feature is still experimental, and has vulnerability before, so we will use veracrypt to achieve this multi-sig feature. Veracrypt itself does not support multi-sig,so we have to use some little tricks to achieve that. In short, we will create <b>3 keys</b> and <b>3 containers</b>. </p> 
		  <p>Let's do a simple math, there is 3 possible combinations for 3 keys</p> 
		  <img src="key_combination.png" class="imgRz" style="width: 500px">
		  <p></p>
		  <p>Then you create 3 containers with idential content, but encrypted with 3 keyfile combinations, thus you can achieve a 2/3 multi-sig</p>
		  <img src="containers.png" class="imgRz" style="width: 500px">
          <p></p>
		  <p>Finally you need to thing about a <b>password</b>, since this is also required for veracrypt to operate. You need to <b>remember</b> this, and you should notify your family members about this and make sure they also remember it.</p>
		  <p>Then use veracrypt to generate <b>3 keyfiles</b>, keyfiles will be random files generated by veracrypt. They have size of 1024kb and is highly random, so your container is <b>impossible to open</b> without them. </p>
		  <p>Choose to create a new volume, click next until you see the keyfiles option</p>
		  <img src="10.png" class="imgRz" style="width: 600px">
		  <p>We will try to generate 3 random keyfiles</p>
          <img src="11.png" class="imgRz" style="width: 600px">
          <p>Move your mouse to collect enough entropy, this is very important! The protection from cryptography will be significantly weakened if there is not enough randomness. Then set the key file size to maximum which is <b>1048576</b>. This is the maximum size utilized by veracrypt and we should use that.</p>
          <img src="12.png" class="imgRz" style="width: 800px">
		  <p></p>
          <p>Name your keyfile as <b>key 1</b> and save it. And repeat this step to produce <b>key 2 and key 3</b>. You shoud have <b>3 keyfiles</b> now ready for being used to encrypt your containers.</p>
		  <img src="Key_ready.png" class="imgRz" style="width: 300px">
		  <p></p>

		  <p>We will then continue to create 3 containers, you will create containers with the same password, but use a different combination of <b>2 keyfiles</b> for each container as planned</p>
		  <p>As a remaider, 3 containers will have a encryption setup like this</p> 
		  <p style="color: red;">Volume 1 : password + key file 1 + key file 2</p>
		  <p style="color: red;">Volume 2 : password + key file 2 + key file 3</p>
		  <p style="color: red;">Volume 3 : password + key file 1 + key file 3</p>
		  <p>Add the keyfiles in keyfile option when creating a new volume</p> 
		  <img src="16.png" class="imgRz" style="width: 600px">
		  <p></p> 
		  <p><b>You will always save three containers together, this means your family member can unlock 1 of the 3 container even one keyfile is lost.</b></p>
		  
		  <p>Then you need to try to unlock and copy the seed file to each of the container</p>
		  
		  <p>Then you need to properly <b>distribute the keys</b> as follows:</p>
		  <p>1.You will keep key file 1, and the local copies of containers <b>at home</b></p>
		  <p>2.Tell your family members about the plan, and most importantly <b>the password</b> they need to know because they still need that for container decryption.</p> 
		  <p>3.Upload the containers to a <b>cloud storage</b> which is controlled by your family members as a backup. You better ask them which cloud service they use, like icloud or gdrive, and copy the containers to their devices and upload to the cloud, so they can easily find the containers through their most familiar method</p> 
		  <img src="home_setup.png" class="imgRz" style="width: 600px">		
		  <p>4.Handle a physical copy of keyfile 2 and keyfile 3 to two different lawyers in different countries, and ask them to send it to your family members when you die officially.</p>
		  <p>In short there are <b>6 factors</b> that determine the sucess of inheritance, only the <b>keyfiles</b> allow <b>1 fault to happen</b>, so you should be really careful and make sure every part work as expected</p>
		  <img src="notice.png" class="imgRz" style="width: 700px">

		  <p>In this setup your monero can be safely inherited, and it is resistant against accidents. Different things can happen:</p> 
		  <p>1.The best case is you died, your family member grab your <b>local copy</b> of containers and keyfile1, and receive keyfile 2 from one lawyer. Then sucessfully decrypt to get the seed, and recovered your monero</p>
		  <p>2.<b>Your home is destroyed</b> in a disaster, but your family members and download the containers from the cloud. They wait until both lawyers deliver keyfile 2 and keyfile 3 to them. Then unlocked to recover your monero.</p> 
		  <p>3.<b>One of the lawyer</b> died in earthquake, plus his office also destroyed. Your family member still have your local copy of containers and keyfile 1, and receive another keyfile from the survived lawyer. They unlocked and recovered your monero.</p>
		  <p>You should find lawyers in <b>different cities</b> to reduce the risk.</p>
		  <p>You can also print this down as a reference for your family</p>		
		  <img src="Recovery.png" class="imgRz" style="width: 900px">
		  <p>This plan prevents your lawyers to steal crypto, because they do not have the containers plus the password. Your family members also cannot access your crypto, because they only have one key.</p>
		</div>
			</div><!-- /row -->
	    </div> <!-- /container -->
	</div><!-- /white -->

				</div>
			</div><!-- /row -->
	    </div> <!-- /container -->
	</div><!-- /white -->

	<!-- +++++ Footer Section +++++ -->

	<div id="anonb">
		<div class="container">
			<div class="row">
				<div class="col-lg-4">
					<h4>PrismBreaker</h4>
          <p>
						Shatter the big brother.</p></br></br><p>Creative Commons Zero: No Rights Reserved</br><img src="\CC0.png">
						
					</p>
				</div><!-- /col-lg-4 -->

				<div class="col-lg-4">
					<h4>My Links</h4>
					<p>

						<a target="_blank" rel="noopener noreferrer" href="http://blog.nowhere.moe/rss/feed.xml">RSS Feed</a><br/><a target="_blank" rel="noopener noreferrer" href="https://simplex.chat/contact#/?v=2-7&smp=smp%3A%2F%2FL5jrGV2L_Bb20Oj0aE4Gn-m5AHet9XdpYDotiqpcpGc%3D%40nowhere.moe%2FH4g7zPbitSLV5tDQ51Yz-R6RgOkMEeCc%23%2F%3Fv%3D1-3%26dh%3DMCowBQYDK2VuAyEAkts5T5AMxHGrZCCg12aeKxWcpXaxbB_XqjrXmcFYlDQ%253D&data=%7B%22type%22%3A%22group%22%2C%22groupLinkId%22%3A%22c3Y-iDaoDCFm6RhptSDOaw%3D%3D%22%7D">SimpleX Chat</a><br/>

					</p>
				</div><!-- /col-lg-4 -->

				<div class="col-lg-4">
					<h4>About nihilist</h4>
					<p style="word-wrap: break-word;"><u>Donate XMR:</u> 87iB34vdFvNULrAjyfVAZ7jMXc8vbq9tLGMLjo6WC8N9Xo2JFaa8Vkp6dwXBt8rK12Xpz5z1rTa9jSfgyRbNNjswHKTzFVh</p></br><p><u>Contact:</u> prismbreaker@waifu.club (<a href="https://keys.openpgp.org/vks/v1/by-fingerprint/735816B2B9E6F4660ECE44D983E602C4B6EA6AEE">PGP</a>)</p>
				</div><!-- /col-lg-4 -->

			</div>

		</div>
	</div>



    <!-- Bootstrap core JavaScript
    ================================================== -->
    <!-- Placed at the end of the document so the pages load faster -->
    
  </body>
</html>