Wallet Encryption

Definition

Wallet encryption protects private keys stored on devices by encrypting them with a user-chosen password. Even if an attacker gains access to the wallet file, encrypted keys remain inaccessible without the correct password.

Technical Explanation

Wallet encryption typically uses password-based key derivation (like Argon2 or PBKDF2) to convert a password into an encryption key, then encrypts private keys with symmetric ciphers like AES-256. Strong passwords and slow key derivation functions resist brute-force attacks.

The encryption key never leaves memory during wallet operation; it's derived when unlocking and cleared when locking. For post-quantum security, both the key derivation and symmetric encryption must resist quantum attacks—AES-256 provides adequate post-quantum security.

SynX Relevance

SynX encrypts all wallet keys using Argon2id for key derivation and AES-256-GCM for encryption. Your private keys are never stored unprotected. Even if your device is compromised, attackers cannot access your quantum-resistant keys without your password.

Frequently Asked Questions

Is my wallet encrypted by default?: SynX requires setting a password during wallet creation—encryption is mandatory.
What happens if I forget my password?: Use your recovery phrase to restore the wallet with a new password.
How strong should my wallet password be?: Use at least 12 characters with mixed types. Password managers can generate strong passwords.

Your keys, protected at rest. Secure with SynX