RE: What is the difference between a password and a private key(s) on Steemit and how to make your account more secure, by using them correctly. by lukestokes

View this thread on: hive.blog | peakd.com | ecency.com

Viewing a response to: @stellabelle/re-noisy-re-stellabelle-re-noisy-re-stellabelle-re-noisy-what-is-the-difference-between-a-password-and-a-private-key-s-on-steemit-how-to-make-your-account-more-secure-by-using-them-20170611t184952323z

security · @lukestokes · Jun 11 '17

This is the beauty of public and private key encryption. Any system can validate your signed messages using your public key (i.e. ensuring you used the correct private key), but they don't ever have to have access to your private key to do so. That's why if you lose your private keys, they are lost forever. No one has a backup but you. :)

properties (22)

`author`	lukestokes
`permlink`	re-stellabelle-re-noisy-re-stellabelle-re-noisy-re-stellabelle-re-noisy-what-is-the-difference-between-a-password-and-a-private-key-s-on-steemit-how-to-make-your-account-more-secure-by-using-them-20170611t191630333z
`category`	security
`json_metadata`	{"tags":["security"],"app":"steemit/0.1"}
`created`	2017-06-11 19:16:30
`last_update`	2017-06-11 19:16:30
`depth`	6
`children`	5
`last_payout`	2017-06-18 19:16:30
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	0.000 HBD
`curator_payout_value`	0.000 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	340
`author_reputation`	556,640,380,599,219
`root_title`	"What is the difference between a password and a private key(s) on Steemit and how to make your account more secure, by using them correctly."
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	4,612,266
`net_rshares`	0

@stellabelle · Jun 12 '17

yes, but how does the private key get sent to steemit, after you input it into the box? This is the part i still don't understand....where does that private key go? To what area inside of the steemit website?

properties (22)

`author`	stellabelle
`permlink`	re-lukestokes-re-stellabelle-re-noisy-re-stellabelle-re-noisy-re-stellabelle-re-noisy-what-is-the-difference-between-a-password-and-a-private-key-s-on-steemit-how-to-make-your-account-more-secure-by-using-them-20170612t150344351z
`category`	security
`json_metadata`	{"tags":["security"],"app":"steemit/0.1"}
`created`	2017-06-12 15:03:45
`last_update`	2017-06-12 15:03:45
`depth`	7
`children`	4
`last_payout`	2017-06-19 15:03:45
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	0.000 HBD
`curator_payout_value`	0.000 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	208
`author_reputation`	516,061,669,130,124
`root_title`	"What is the difference between a password and a private key(s) on Steemit and how to make your account more secure, by using them correctly."
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	4,662,638
`net_rshares`	0

@lukestokes · Jun 12 '17

$2.29

As far as I understand (I may be wrong), it doesn't get sent to Steemit. JavaScript in the browser uses what you input there, runs the appropriate signing algorithm to create signed content and then sends that signed content to Steemit. Steemit then uses the public key to validate the signature. If you're familiar with public and private key encryption and signing / validating signatures, this makes a lot more sense. PGP is a great example and I've used that for a long time so it's familiar to me. I hope that helps. Thanks for asking these questions!

👍 stellabelle

`author`	lukestokes
`permlink`	re-stellabelle-re-lukestokes-re-stellabelle-re-noisy-re-stellabelle-re-noisy-re-stellabelle-re-noisy-what-is-the-difference-between-a-password-and-a-private-key-s-on-steemit-how-to-make-your-account-more-secure-by-using-them-20170612t150651894z
`category`	security
`json_metadata`	{"tags":["security"],"app":"steemit/0.1"}
`created`	2017-06-12 15:06:51
`last_update`	2017-06-12 15:06:51
`depth`	8
`children`	3
`last_payout`	2017-06-19 15:06:51
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	2.238 HBD
`curator_payout_value`	0.049 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	556
`author_reputation`	556,640,380,599,219
`root_title`	"What is the difference between a password and a private key(s) on Steemit and how to make your account more secure, by using them correctly."
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	4,662,831
`net_rshares`	643,799,820,293
`author_curate_reward`	""

properties (23)vote details (1)

voter	weight	wgt%	rshares	pct	time
stellabelle	0 B		643,799,820,293	100%

@stellabelle · Jun 12 '17

> JavaScript in the browser uses what you input there, runs the appropriate signing algorithm to create signed content

yes, this is the specific information I was seeking. thanks. I'm starting to dig into encryption, and how it works. This is good to know because I was a bit paranoid about our keys....why don't we have 2FA on here?

properties (22)

`author`	stellabelle
`permlink`	lukestokes-re-stellabelle-re-lukestokes-re-stellabelle-re-noisy-re-stellabelle-re-noisy-re-stellabelle-re-noisy-what-is-the-difference-between-a-password-and-a-private-key-s-on-steemit-how-to-make-your-account-more-secure-by-using-them-20170612t150923495z
`category`	security
`json_metadata`	{"tags":["security"],"app":"steemit/0.1"}
`created`	2017-06-12 15:09:24
`last_update`	2017-06-12 15:09:24
`depth`	9
`children`	2
`last_payout`	2017-06-19 15:09:24
`cashout_time`	1969-12-31 23:59:59
`total_payout_value`	0.000 HBD
`curator_payout_value`	0.000 HBD
`pending_payout_value`	0.000 HBD
`promoted`	0.000 HBD
`body_length`	334
`author_reputation`	516,061,669,130,124
`root_title`	"What is the difference between a password and a private key(s) on Steemit and how to make your account more secure, by using them correctly."
`beneficiaries`	`[]`
`max_accepted_payout`	1,000,000.000 HBD
`percent_hbd`	10,000
`post_id`	4,662,966
`net_rshares`	0

2 replies