I am wanting into establishing a multisig setup utilizing Sparrow, and wished to see if anybody can discover any flaws in my arrange, and doubtlessly accessing my funds if I lose a key.
arrange = 2 of three
Key retailer 1 = Passport HWW
Key retailer 2 = Chilly Card HWW
Key retailer 3 = Gordian Seed Software (cell sizzling pockets)
I’ll arrange the Chilly Card and Passport as per the directions within the beneath video
https://www.youtube.com/watch?v=Gx0mke_4BJU
Seeds for these will likely be written onto a seed plate (one seed phrase per plate).
After establishing the Gordian Seed Software and importing to Sparrow/exporting again to the seed device, I’ll deposit (the smallest quantity potential) into the multisig pockets.
I’ll then restore the pockets utilizing all 3 seeds to a special chilly card and passport machine, and import the pockets as a brand new pockets in Sparrow.
If the funds can be found within the pockets, I’ve the seed phrases all saved accurately. I wipe the unique chilly card and passport HWWs.
The seed plates for the two HWWs will likely be saved robustly at completely different bodily places.
I’ll destroy the copy of the seed phrase for the gordian seed device.
I’ll then check spending the BTC on the pockets in 3 separate transactions (signing with all 3 of the potential mixtures of the two of three key shops.) If I can full these 3 transactions I’m happy I’ve the power to entry my BTC ought to any 1 of the three keystores develop into compromised.
My questions are
- is there any apparent flaw on this form of storage setup?
and extra importantly
- the one different data I’ll want within the occasion that one among my keys turns into bodily compromised is the xpub/zpub of every of the three keys?
Moreover storing these xpub/zpubs collectively (while it could create a privateness threat) would not create a safety threat? e.g with every of the two seed plates I might retailer the xpub/zpub for ALL 3 KEYS on an encrypted SD card. If somebody one way or the other managed to realize entry to a seed plate (extremely unlikely given the sturdy bodily arrange, however worst case), they’d have entry to 1 of the three seed phrases, AND entry to all 3 xpub/zpubs? This may not give them entry to my BTC, and I might nonetheless have entry to it and will spend it (switch it to a different pockets) when it grew to become obvious one of many seed phrases may very well be compromised?
I simply need to make sure that I am not capturing myself within the foot through the use of a extra subtle setup than a regular chilly storage. In actuality I contemplate the possibility of creating a mistake establishing a multisig answer and exponentially extra likley risk than normal chilly storage changing into compromised.
