Ledger wallet security with Passphrase and how to set Passphrase

Securing recovery phrase and ledger wallet PIN code

Ledger Security: Keep your crypto assets safe

Ledger products offer a combination of hardware and software security features to protect your crypto assets against potential attacks. To enjoy the highest level of security offered by your Ledger wallet, be sure to follow these instructions:

24-word recovery phrase security

Your 24-word recovery phrase is your only backup of your private keys. It allows you to recover your crypto assets in case you lose access to your device. The recovery phrase is sometimes called a seed phrase.

Anyone who gets your recovery phrase can steal your crypto assets.

A common saying in this regard is:

Not Your Keys, Not Your Coins. It’s That Simple.

This phrase means that if you don’t have your private key, you don’t own the coins or coins in your wallet, simple as that. This sentence shows you the importance of safe storage of ledger words

We recently conducted a survey of our Instagram users and it showed that 90% of users do not know the importance of keeping words safe. and they are not familiar with its meaning/

Let me explain this better with an example: a user contacted our support and announced that his ledger was stolen. Well, we assured him that there would be no problem. He just needs to buy another ledger and use the 24 recovery words to regain access to his property. But unfortunately, his answer surprised us, which you can see in the conversation below.

Unfortunately, he lost his property just because of neglecting the safe keeping of 24 words of ledger recovery.

Note that the ledger does not save your private keys, and if you lose them, you cannot get them from the ledger company.

Always ensure that your 24-word recovery phrase is obtained from the ledger display. In other words, the 24-game words of the ledger should not be pre-arranged with the ledger.

• Never share your 24-word recovery phrase with anyone in any way.
• Never enter your recovery phrase on any device other than a hardware wallet.
• Never take a picture of a 24-word recovery phrase.
• Always store copies of recovery statements in a safe place out of sight.

There are other solutions for safe storage of ledger recovery words that we invite you to read this article.

Secure your PIN

During the setup process, you choose a PIN code.

• Always choose a PIN yourself.
• Always enter your PIN out of sight.
• Change your PIN if needed.
• Remember that three wrong PIN code entries in a row will reset your device and its settings will be reset to factory settings.

• Never use easy PIN code like 0000, 123456, or 55555555.
• Never share your PIN with others.
• Never use a PIN code that you have not chosen yourself.
• Never save your PIN on your computer or phone.

How to change the PIN code for Ledger wallet

Your Ledger Wallet device PIN code prevents unauthorized access to your device Cryptocurrency Assets Your PIN code is selected when the device is first set up, but you can easily change it at any time.

Instructions :

1. Connect and unlock your ledger wallet by entering your PIN code.
2. Hold both buttons for 3 seconds to open the Control Center.
3. Go to Settings > Security > Change PIN.
4. Choose a new 4 to 8-digit PIN code.
5. Confirm the new PIN by entering it again.
6. Enter your old PIN code for validation.

Your new PIN code is now set.

Security tips:

• Choose your PIN code. This code will unlock your device.
• An 8-digit PIN code provides an optimal level of security.
• Choose a PIN code that is hard to guess.

Resetting the ledger wallet and returning it to factory settings

Factory resetting your Ledger device will erase all private keys, apps, and settings from the device. You can then set it up as a new device, or use your recovery phrase to restore your crypto assets if you have it, or you can safely transfer the device to someone else.

Instructions :

The device can be reset from its settings menu or by entering an incorrect PIN code three times.

Important note :

If you reset your device while you’ve lost your recovery words, you’ll lose your assets forever.

Resetting the ledger wallet from the device settings

Instructions :

• Connect and unlock your ledger wallet by entering your PIN code.
• Hold both buttons for 3 seconds to open Control Center.
• Go to settings and press both buttons to confirm.
• Then select Security and press both buttons to confirm.
• Select the reset device by pressing both buttons.
• To continue, read the warning by pressing the right button.
• Press both buttons to reset the device.
• Enter your PIN to confirm. Then your device will be reset.

Resetting the ledger wallet from PIN code

Instructions :

• Plug the USB cable into your ledger wallet to turn it on.
• Enter an incorrect PIN three times in a row.
• The device resets after the third incorrect attempt as a security measure.

Set passphrase for ledger wallet

Set a passphrase to add a layer of security to your cryptocurrency holdings. This option is recommended for advanced users only. Read this article carefully before setting up a password.

Security tips:

The recovery phrase and passphrase functions enable a wide range of security settings. You can use them to design a security strategy that fits your personal circumstances. Please don’t overcomplicate things.

Getting to know the security capabilities of the password in the ledger

Important Notes

A passphrase is an optional security feature that adds an extra layer of protection to your Ledger hardware wallet. It works by adding a 25th word of your choosing, with a maximum length of 100 characters, to your 24-word recovery phrase. This creates an entirely new set of addresses that can only be accessed by entering both the recovery phrase and the passphrase.

Using a passphrase can significantly enhance the security of your crypto assets. It can help to protect them from physical theft, malware attacks, and even social engineering scams. However, it’s important to remember that a passphrase is only as secure as you make it. If you forget your passphrase or it falls into the wrong hands, you could lose access to your crypto assets permanently.

Introduction of passphrase

As you probably know, your 24-word recovery phrase is the key to your cryptocurrency assets. It is crucial to keep this phrase safe and secure, and never enter it on any internet-connected device such as a mobile phone, computer, etc. If someone gains access to your 24-word recovery phrase, they will be able to access all your assets unless you have used a passphrase as an additional security layer for your account.

Why do we use a passphrase?

A passphrase is an optional advanced security feature that allows you to add an extra 25th word of your choosing to your 24-word recovery phrase. This is why it is also commonly referred to as the 25th word. Unlike the regular recovery phrase, you choose the 25th word yourself. There are no restrictions on the word you choose, except for the maximum length of 100 characters. You can create this word using a combination of uppercase and lowercase letters, numbers, and special symbols.

Using a passphrase in addition to normal account settings allows access to a whole new set of accounts. This operation is somewhat similar to having two completely different recovery statements.

Using a passphrase adds an extra layer of security to your Ledger device. Even if someone gains access to your 24-word recovery phrase, they will not be able to access your cryptocurrency assets without also knowing your 25th word. Accessing the 24-word recovery phrase only grants access to your regular accounts. For this reason, accounts managed with a passphrase are often referred to as “hidden accounts.”

Not only does using a passphrase add an additional layer of security, but it also increases the randomness of your account password. While the 24-word recovery phrase is already highly random and has a vast number of possible combinations, using a 25th word takes this randomness to a new level. This method also introduces a human element into the password creation process. Instead of relying solely on a 24-word sequence generated by a device, you are adding a personally chosen random word to the mix. It’s important to note that the recovery phrase generated by a Ledger device is inherently secure. Ledger devices use the highest quality True Random Number Generator (TRNG) to create recovery phrases. Additionally, you can choose to encrypt your recovery phrase with a PIN code, which we will discuss further below.

What is plausible deniability?

Like any valuable asset, Ledger devices are always at risk of theft. Unfortunately, the crypto world has seen numerous cases where known wealthy individuals have been targeted for physical theft. In such situations, a passphrase can provide an additional layer of protection for your assets.

Deniable plausibility involves creating the illusion for thieves that they have access to all of your assets. For example, under duress, thieves may force you to reveal your recovery phrase or unlock your Ledger device. With a regular setup, this would grant them access to your regular accounts but not your hidden accounts. This can be especially useful if you keep a small amount of funds in your regular accounts and the majority in your hidden accounts. You can even have multiple hidden accounts with different passphrases. This setup is particularly useful in situations where attackers are aware of the existence of passphrases.

Deniable plausibility does not offer any guarantees, but it provides you with a second chance to protect your cryptocurrency assets in situations where you are forced to reveal your recovery phrase or unlock your Ledger device.

Is it possible to use a password in the ledger device?

Yes, you can use a passphrase on a Ledger device! While a few other wallets also support passphrases, you usually have to enter them through a computer. This can make your passphrase vulnerable to online attacks. With Ledger, you can enter your passphrase directly on the Ledger device itself to activate your hidden account. This helps to keep your assets even more secure.

You have two options to set the passphrase with the ledger. The first option is to enter the passphrase whenever you want to use it in the device, which is called Set temporary passphrase. In this way, when the device is turned off, it will allow access to your normal accounts again.

The next option is to link a custom passphrase to a secondary PIN code. When choosing this option, you first generate the passphrase directly on your ledger device. After doing this, you will be able to choose a secondary PIN code for your ledger device. After that, every time you turn on the device, you can specify the mode you want between choosing the primary or secondary PIN code. If you choose to enter a secondary PIN code, accounts hidden by passphrases will be accessible to you.

For example:

Normal PIN code: 1653 → normal accounts

Secondary PIN code: 8350 → Secret accounts

Recommended Principles It should be noted that passphrase is considered an advanced feature for several reasons. First, you must remember the passphrase completely. Moving one character will give you access to a completely different set of accounts. It is even possible to write a character in small or large letters.

If you do not remember the password exactly and character by character, you will not be able to access the currencies under its management. Therefore, it is important to firstly enter this phrase accurately when setting it up, and secondly, remember this phrase exactly.

Also, the longer the password is and the combination of uppercase and lowercase letters, numbers or special characters is used in its creation, the more secure it will be. It is better to consider the password as a password and try to define it as complex as possible and do not use simple and specific words.

For example:

Password 1: password → extremely insecure because it is short and no random words, capital letters or numbers and special characters are used in it.

Passphrase 2: IReallyLikeMyBitcoins → It’s a bit more secure because it’s longer and contains capital letters, but it still uses plain English words and doesn’t contain any numbers or special characters.

Passphrase 3: H05!xp4e2i6dAnV?esRjfap953nxZprsi495nAASF5n,!f01.?d → safest mode; Because it is long and contains a random combination of numbers and different characters and no real words are used in it.

The third passphrase is the most secure but extremely difficult to remember. You can use words that have a special meaning for you, such as Iret3LNS’tuBgm! which includes uppercase and lowercase letters, special characters and numbers, and the first letters of this sentence are obtained: I really enjoy the 3 Ledger Nano S’s that uncle Bob gave me!

Again, we must emphasize that the passphrase is considered sensitive information and you should treat it with the same care and caution as you treat the recovery phrase:

Never share your passphrase – Ledger will never ask you for it. Never enter your password on a computer, phone or any other internet-connected device.

نحوه عملکرد عبارت عبور یا Passphrase

You should keep the 24-word recovery phrase that is given to you during the initial setup of the ledger hardware in a safe place. Later, in case of problems, you can use these 24 words and recover your cryptocurrency assets.

• A passphrase is essentially a password added to your 24-word recovery phrase that provides access to a new set of accounts.
• If your 24-word recovery phrase is available, the passphrase will protect your cryptocurrency assets.
• This passphrase protects your assets if your 24 words fall into someone’s hands. In this way, if someone knows your 24 words, they must also know your password to access your money.
• Each different passphrase unlocks a unique set of accounts. You can use as many passphrases as you like.
• The passphrase can be applied to any currency managed by the ledger device.

prerequisites :

• Your device is powered up and updated to the latest version.
• Make sure your recovery phrase is available.
• Read this article completely before starting

Set a passphrase or PassPhrase

instructions :

1. Connect your ledger wallet and enter your PIN code.
2. Go to Settings > Security > Passphrase.
3. Click on the warning and select Set up passphrase.
4. Choose one of two options:

• Pin Attachment: Creates a second PIN code to open passphrase-protected accounts.

  Note: You can only have one secondary PIN code.

   

• Temporary setting: You must enter the password every time you want to access password-protected accounts.

Paste the PIN code

By attaching a password to a new PIN code, a new set of accounts is created in your ledger. Based on your chosen secret password, you can access accounts by entering a secondary PIN code protected by this passphrase.

• Only one passphrase can be attached to a PIN code. If you attach the password again, your password will be lost.
• The passphrase is saved on the device until you overwrite it with another or until the device is reset. and go to factory settings mode.
• Store a physical backup copy of the secret passphrase in a safe place. After setting the device, you cannot display it.

instructions :

1. Select the Attach to a PIN option from the Passphrase menu in the device’s security settings.
2. Select the PIN code that activates the passphrase.
3. Enter the secondary PIN code to confirm again.
4. Choose and confirm a secret passphrase (up to 100 characters).
5. Enter your current PIN code for validation. Your device will display Processing then confirm that the passphrase is set.
6. Your device will continue to manage accounts based on your recovery phrase without a passphrase Please turn the device off and on and enter your secondary PIN to access passphrase-protected accounts.

Set a temporary passphrase or PassPhrae

Using a temporary passphrase provides access to a new set of accounts in your ledger. Follow the instructions below each time you access the accounts supported by the password.

• Accounts based on your chosen secret passphrase.
• Store a physical backup copy of the secret passphrase in a safe place. The device cannot display it after the initial setup.

instructions :

• Select the Set temporary option from the Passphrase menu in the device’s security settings.
• Choose and confirm a secret passphrase (up to 100 characters).
• Enter your current PIN code for validation. Your device will display Processing Confirm that the passphrase is set.
• Your device now manages accounts protected by this passphrase. You can also access your regular accounts. Please restart the device and enter your PIN code.

Account password recovery

If you lose or reset your ledger wallet, you can recover your cryptocurrency holdings on any ledger device as long as you have both your 24-word recovery phrase and your secret password.

instructions :

• Remove your recovery phrase and passphrase.
• Recover your cryptocurrency assets in the ledger using your recovery phrase.
• Follow the instructions above for a temporary passphrase or PIN attachment, while paying attention to the following:
  • Temporary passphrase: Simply enter the passphrase to access protected accounts
  • Attach a PIN code: You can choose any PIN code, but you must enter the passphrase you’ve already set up to access accounts protected by it.

Password security in action

Add accounts to Ledger Live

When you add an account, its extended public key (xpub) is stored in the Live Ledger and encrypted by the password you set.

To ensure that Ledger Live does not store information about passphrase-protected accounts, you can simply delete these accounts after you’re done managing them.

Protection against threats

To protect yourself in the event of a physical threat, place only a small fraction of your assets in PIN-only protected accounts and the bulk of your assets in password-protected accounts.

If you are pressured to unlock your ledger wallet and hand over your PIN to an attacker, don’t worry about your password-protected main asset.

Phrase protection recovery

Divide your recovery phrases into several parts and write down different versions of each one and hide them in different places. In this case, if a copy of it is found, they cannot steal your property due to a flaw in the words.