The Master Seed (2024)

Table of Contents
Introduction Generation and Serialization

Introduction

Applications running on Ledger personal security devices are designed to be lightweight and easily recoverable. Ledger achieves both of these goals by using hierarchical deterministic key generation. Hierarchical deterministic key generation is used by applications to derive a theoretically infinite number of cryptographic secrets from a single master seed. This way, your cryptocurrency private keys, passwords, and other cryptographic secrets can all be determined and intrinsically "stored" in a single master seed. Thanks of this, the device's apps don't have to store their own private keys, because they can all be generated on-demand by the device from the master seed. This means that if your device is lost, destroyed, or reset then all you need is your master seed to recover your secrets. In addition, an application that supports this scheme can be deleted and reinstalled without losing any secure data or assets. Your master seed is randomly generated for you when you first set up your Ledger device, and then you just need to write it down to allow you to recover your device in the future.

Generation and Serialization

The master seed is the key to your cryptographic secrets. As such, the master seed should be something that is long and nearly impossible for anyone to guess. Your master seed isn't like a password or a PIN (Ledger devices already have PINs to protect access to them), instead it's the root of all of your cryptographic secrets. Once your device randomly generates it for the first time and you write it down on paper, you will only need to access it if you have to recover your device.

See Also
What Is a BIP39?

Ledger uses a standard called BIP 39 (opens in a new tab) for the generation and interpretation of the master seed on all of our devices. BIP 39 is an industry standard used by many other hierarchical deterministic wallets. The exact type of BIP 39 seed used by Ledger devices by default is a 24-word mnemonic that consists of only the 2048 words from the BIP 39 English wordlist (opens in a new tab). Here's how a BIP 39 24-word mnemonic seed is generated:

  1. The device generates a sequence of 256 random bits using the true random number generator (TRNG) built into the device's Secure Element
  2. The first 8 bits of the SHA-256 hash of the initial 256 bits is appended to the end, giving us 264 bits
  3. All 264 bits are split into 24 groups of 11 bits
  4. Each group of 11 bits is interpreted as a number in the range 0 - 2047, which serves as an index to the BIP 39 wordlist, giving us 24 words

The result of this process is that your device will generate a single mnemonic seed out of 2256 possible mnemonic seeds (That's one of 115 792 089 237 316 195 423 570 985 008 687 907 853 269 984 665 640 564 039 457 584 007 913 129 639 936 possible mnemonic seeds). Note that while the first 23 words are completely random, the final word is derived from 3 random bits and 8 calculated bits from the SHA-256 hash. This means that the final word can act like a checksum - if you input an incorrect seed into the device while recovering it, it is possible for the device to detect that the inputted seed is invalid.

ℹ️

Can someone guess my seed? There are 2256 different possible 24-word mnemonic seeds. For comparison, the number of atoms on Earth is estimated to be around 2166. Just let that sink in for a second. The chance of someone else being able to guess your seed is astronomically small, to say the least.

But all we have here is a sequence of 24 words, how can the device use this as a cryptographic secret?

After the 24-word mnemonic is generated, it has to be converted into a binary seed by the device. This process is called serialization. This is done using the PBKDF2-HMAC-SHA512 key derivation function to convert your mnemonic seed and an optional passphrase of your choosing into a 512 bit binary seed. This BIP 39 passphrase can be set on your device (opens in a new tab) through the Settings menu, and it can be changed at will without resetting your device (in fact, you can have multiple passphrases loaded onto the device at once if you wish). By changing the passphrase, the resulting 512 bit binary seed is completely changed.

This 512 bit binary seed is the root of your device's cryptographic secrets. Every cryptographic secret that your device needs (cryptocurrency private keys & addresses, passwords, etc.) can be derived from this 512 bit binary seed. We'll explore how an infinite number of cryptographic secrets can be derived from this one seed in the next section, HD Key Generation.

The Master Seed (2024)
Top Articles
Windows Basics: All About Windows
Learning Center | Resources
Jail Inquiry | Polk County Sheriff's Office
Missed Connections Inland Empire
Bin Stores in Wisconsin
Santa Clara College Confidential
Songkick Detroit
Vanadium Conan Exiles
Directions To Lubbock
Crime Scene Photos West Memphis Three
Mivf Mdcalc
83600 Block Of 11Th Street East Palmdale Ca
Locate Td Bank Near Me
Delectable Birthday Dyes
What Was D-Day Weegy
Facebook Marketplace Charlottesville
Valentina Gonzalez Leak
Inevitable Claymore Wow
U/Apprenhensive_You8924
This Modern World Daily Kos
Nwi Arrests Lake County
Guilford County | NCpedia
Georgia Vehicle Registration Fees Calculator
Metro Pcs.near Me
Yisd Home Access Center
Marion City Wide Garage Sale 2023
Workshops - Canadian Dam Association (CDA-ACB)
2011 Hyundai Sonata 2 4 Serpentine Belt Diagram
The Eight of Cups Tarot Card Meaning - The Ultimate Guide
Yu-Gi-Oh Card Database
Busted! 29 New Arrests in Portsmouth, Ohio – 03/27/22 Scioto County Mugshots
Myra's Floral Princeton Wv
Devargasfuneral
Smayperu
Martin Village Stm 16 & Imax
Craigslist Com Humboldt
Mississippi State baseball vs Virginia score, highlights: Bulldogs crumble in the ninth, season ends in NCAA regional
1-800-308-1977
Ljw Obits
NHL training camps open with Swayman's status with the Bruins among the many questions
Directions To The Closest Auto Parts Store
Why Are The French So Google Feud Answers
The Nikki Catsouras death - HERE the incredible photos | Horror Galore
Movie Hax
The Average Amount of Calories in a Poke Bowl | Grubby's Poke
Ajpw Sugar Glider Worth
Grand Park Baseball Tournaments
Lux Funeral New Braunfels
Goosetown Communications Guilford Ct
Generator für Fantasie-Ortsnamen: Finden Sie den perfekten Namen
Latest Posts
Technology Services - Google Two Factor Authentication FAQ
How To Buy A House With No Money Down
Article information

Author: Sen. Ignacio Ratke

Last Updated:

Views: 6221

Rating: 4.6 / 5 (56 voted)

Reviews: 87% of readers found this page helpful

Author information

Name: Sen. Ignacio Ratke

Birthday: 1999-05-27

Address: Apt. 171 8116 Bailey Via, Roberthaven, GA 58289

Phone: +2585395768220

Job: Lead Liaison

Hobby: Lockpicking, LARPing, Lego building, Lapidary, Macrame, Book restoration, Bodybuilding

Introduction: My name is Sen. Ignacio Ratke, I am a adventurous, zealous, outstanding, agreeable, precious, excited, gifted person who loves writing and wants to share my knowledge and understanding with you.