In the world of cryptocurrency, securing your digital assets is paramount. While hardware wallets offer robust protection, the way you store your recovery seed phrase can make all the difference. Shamir Backup, also known as Shamir's Secret Sharing (SSS), is an advanced method that significantly enhances the security of your seed phrase by eliminating single points of failure. This guide will explain how it works, its benefits, and how you can implement it with popular hardware wallets.
What Is Shamir Backup?
Shamir Backup is a cryptographic technique that splits your standard recovery seed phrase into multiple unique parts, called "shares." Instead of having one set of words that grants full access to your funds, you generate several shares. To restore access, you only need a predefined subset of these shares—known as the "threshold." For instance, you might create 5 shares and set a threshold of 3, meaning any 3 of those 5 shares can reconstruct your original seed. This approach adds flexibility and security, allowing you to distribute shares across different locations or trusted individuals.
How Shamir Backup Works
The process uses a mathematical algorithm to divide your private key into multiple segments. Each share is generated independently and does not reveal any information about the original seed on its own. The threshold you choose determines how many shares are required for recovery. The maximum number of shares is typically 16, and you can set the threshold to any number up to that total.
Why is this necessary? A standard 24-word seed is cryptographically secure and nearly impossible to brute-force. However, the risk lies in physical threats: loss, theft, or damage. Storing your entire seed in one place creates a single point of failure. If someone finds or photographs it, they can drain your funds without your knowledge. Since cryptocurrencies are decentralized, there's no central authority to reverse transactions. Shamir Backup mitigates this by dispersing the shares, making it harder for attackers to compromise your assets and reducing the impact of losing one share.
Advantages of Using Shamir Backup
- Eliminates Single Points of Failure: By distributing shares across multiple locations, you avoid having all your eggs in one basket.
- Flexible Recovery Options: You can set thresholds that require multiple people to collaborate for access, ideal for inheritance or shared accounts.
- Enhanced Security: Even if some shares are lost or stolen, your funds remain safe as long as the threshold isn't met.
- Customizable Setup: Choose the number of shares (up to 16) and the threshold that fits your security needs.
- Redundancy: Losing one share doesn't mean losing your funds—you can recover with the remaining shares.
Here’s a quick comparison with traditional seed storage:
| Aspect | Traditional Seed Backup | Shamir Backup |
|---|---|---|
| Seed Structure | Single seed phrase | Multiple shares (up to 16) |
| Recovery Words | 12, 18, or 24 words | 20 or 33 words per share |
| Key Advantage | Simple to set up | Customizable threshold |
| Main Risk | Single point of failure | Slightly longer setup |
| Recovery Process | One location/person | Multiple locations/people |
| Security Level | Secure | Extremely secure |
| Theft Resistance | Vulnerable | High resistance |
Practical Tips for Shamir Backup
Implementing Shamir Backup requires careful planning. Here are some best practices:
- Choose a High Threshold: Opt for a threshold close to the total number of shares, like 4 out of 5, to maximize security.
- Diversify Storage Locations: Store shares in geographically separate places—e.g., home safe, bank vault, trusted family member’s house.
- Avoid Online Storage Risks: If storing shares digitally, encrypt them and ensure the number of online shares is below your threshold. Never store unencrypted shares online.
- Trusted Locations Only: Only deposit shares in locations you fully trust, considering physical and digital security.
👉 Explore more strategies for secure seed storage
Implementing Shamir Backup on Trezor
Trezor Model T supports Shamir Backup natively, offering a seamless setup process. Note that Trezor One does not currently support this feature.
Step-by-Step Setup on Trezor Model T
- Visit the Trezor Beta Wallet website.
- Click "Create Wallet."
- Select "Create with Shamir Backup."
- Follow the on-device instructions on your Model T.
- Agree to the terms and start the backup process.
- Choose the number of shares (max 16) and set your threshold.
- Write down the 20-word seed for each share accurately. Double-check for errors.
- Store each share securely, preferably using durable materials like titanium capsules.
- Confirm the setup on your device once all shares are recorded.
Remember: You cannot convert an existing seed phrase to Shamir Backup—it must be set up during wallet creation.
Shamir Backup on Ledger Devices
As of now, Ledger devices do not natively support Shamir Backup. The company has hinted at future support for Ledger Nano X, but it’s unlikely for Nano S. In the meantime, users can adopt alternative methods:
Manual Seed Splitting: Split a 24-word seed into three parts. For example:
- Share 1: Words 1-16
- Share 2: Words 9-24
- Share 3: Words 1-8 and 17-24
This creates a 2-of-3 threshold system. Note: This method is only secure for 24-word seeds, not shorter ones.
- Advanced Passphrase: Add a custom 25th word (passphrase) to your seed phrase. This acts as an extra security layer, creating a hidden wallet that’s inaccessible without the passphrase.
While these methods aren’t as robust as native Shamir support, they improve security over single-seed storage.
Using Cryptosteel for Shamir Shares
Products like Cryptotag Odin are designed to store Shamir shares durablely. These titanium capsules resist fire, water, and physical damage, ideal for long-term storage.
- Efficient Storage: Each share typically has 20 words. Since the first four letters of each word are unique (from a 2048-word list), you can engrave only those letters to save space.
- Organization: The first three words of each share are identical, helping you identify shares from the same wallet.
- Process: First, write all shares on paper. Transfer them to capsules meticulously, then destroy the paper to avoid leaks.
- Storage Tips: Store capsules in diverse, discreet locations. Their small size allows creative hiding spots, but ensure you remember where they are.
👉 Get advanced methods for protecting your assets
Frequently Asked Questions
What is the main purpose of Shamir Backup?
Shamir Backup enhances security by splitting your seed phrase into multiple shares. This prevents a single point of failure, as an attacker would need to access multiple shares to steal your funds. It also adds redundancy against loss or damage.
Can I convert my existing wallet to use Shamir Backup?
No. Shamir Backup must be implemented during the initial wallet creation process. If you already have a wallet, you’ll need to transfer your funds to a new wallet set up with Shamir Backup.
How many shares should I create, and what threshold is recommended?
You can create up to 16 shares. A common recommendation is to create 5 shares with a threshold of 3 or 4. This balances security and practicality, ensuring access even if one or two shares are lost.
Is it safe to store shares online?
It is risky. If you must store shares digitally, use strong encryption and ensure the number of online shares is less than your threshold. For example, if your threshold is 3, store no more than 2 shares online.
What happens if I lose shares exceeding my threshold?
If you lose more shares than your threshold allows for recovery (e.g., losing 3 shares in a 2-of-5 setup), you can still access your funds with the remaining shares. However, if losses exceed the recoverable threshold, your funds may be permanently inaccessible.
Does Shamir Backup work with all cryptocurrencies?
Yes, since it secures the master seed that generates all keys in your wallet, it works for all cryptocurrencies supported by the hardware wallet implementing the standard.
Shamir Backup is a powerful tool for anyone serious about cryptocurrency security. By understanding and implementing it correctly, you can protect your assets from both physical and digital threats while ensuring reliable access for yourself or trusted parties.