How Peter Todd stored bitcoin in his brain wallet

Few things are more cypherpunk than keeping keys in your brain wallet

by David Canellis /
article-image

SlayStorm/Shutterstock and Adobe modified by Blockworks

share

This is a segment from the Supply Shock newsletter. To read full editions, subscribe.

Bitcoin is hard money, in more ways than one.

The never-ending task of keeping BTC safe might be one of the hardest. There are plenty of options — hardware wallets, software solutions and even multi-sigs can do the trick, depending on how they’re implemented.

But if you’re legendary Bitcoiner Peter Todd, you might opt for the trusty brain wallet. And luckily for us, he’s told us exactly how he would do it.

Newsletter

Subscribe to The Breakdown

(P.S. Catch Peter Todd on stage at Permissionless IV in Brooklyn later this month, as he sits down with Pete Rizzo for an intimate chat to kick off Day 1.)

First, a disclaimer: Todd shared his brain wallet process a long time ago, in August 2012, over a year before BIP-39 was introduced. 

BIP-39 brought mnemonic phrases to Bitcoin and made room for a 25th word to be layered on top, which significantly boosted the level of entropy, keeping private keys safe from brute force attacks.
All that only makes Todd’s process more impressive, even if he might use a different method today. He effectively did what BIP-39 does with his mind (and some help from Bitcoin itself).

The method

Here’s how, in Todd’s own words:

  1. “Generate a password that you can remember individually. Personally I use the program pwgen which produces ‘pronounceable passwords.’ I use it in eight-character upper/numerals/symbols mode.
  2. Write that password down. Yes this is heresy; you’ll securely destroy it later. 
  3. Memorize that password. This is a lot easier than you think. I find if I spend five minutes a day memorizing a password I can recall it easily in a week or so, and have probably memorized it pretty much permanently after a month or two. Remember studying in university? Use those techniques. Flashcards are very effective; an important part of memorization is being forced to recall what you are trying to memorize. 
  4. Repeat until you have five different passwords memorized. During this process it helps to do something like encrypting different files with the sub-passwords, and practice decrypting them to ensure you don’t forget the individual parts. This also allows you to avoid having copies of the parts of the password if you’re paranoid. 
  5. Take all five passwords and concatenate them into one big super password: eiS9ui@R + vi4Ug~ee + Aet\ito0 + ohB$oh9w + Roh”k2ie = eiS9ui@Rvi4Ug~eeAet\ito0ohB$oh9wRoh”k2ie 
  6. Use this password! Eventually you will forget it, although the time it takes to forget it will go down exponentially the longer you use it. For me, I make a point of using my passwords every month or so. Even just recalling it mentally is enough.”
As always, a relevant xkcd.

Follow those steps and your password would be 49 characters long. Ideally, Todd would like at least 128 bits of entropy to eliminate any risk of brute force. By his own analysis, his optimal configuration for pwgen would generate 221 bits of entropy — “almost the gold-standard 256-bits level that modern encryption provides.”

In practice, this works by feeding the memorized password to the Bitcoin client’s encryptwallet function. The client would re-encrypt the wallet.dat file using that password as the key.

Any potential thieves — in meatspace or cyberspace — would need to somehow syphon the password from your brain before they could ever get to your bitcoin. Just whatever you do, do not forget the password. “You just gotta trust that you really can learn,” Todd wrote.

“The key is that you don’t try to memorize the whole thing at once. Split the task up into a few subtasks, IE, sub-passwords, and memorize them one after another. People used to have dozens of phone numbers in their head, memorized one at a time.”

All hail the safe deposit box!

Todd was right to point out that the average Joe isn’t going to do any of this.

And that’s exactly why Peter Todd will forever be a Bitcoin Legend.

Get the news in your inbox. Explore Blockworks newsletters:

Tags

Newsletter

The Breakdown

Decoding crypto and the markets. Daily, with Byron Gilliam.

Upcoming Events

Digital Asset Summit 2025

Old Billingsgate

Mon - Wed, October 13 - 15, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

buy ticketslearn more

Permissionless IV

Industry City | Brooklyn, NY

TUES - THURS, JUNE 24 - 26, 2025

Permissionless IV serves as the definitive gathering for crypto’s technical founders, developers, and builders to come together and create the future.If you’re ready to shape the future of crypto, Permissionless IV is where it happens.

buy ticketslearn more

Permissionless IV Hackathon

Brooklyn, NY

SUN - MON, JUN. 22 - 23, 2025

Blockworks and Cracked Labs are teaming up for the third installment of the Permissionless Hackathon, happening June 22–23, 2025 in Brooklyn, NY. This is a 36-hour IRL builder sprint where developers, designers, and creatives ship real projects solving real problems across […]

learn more

recent research

Research Report Templates (8).png

Research

Solana Meta Aggregators

Meta-aggregators like Titan and Kamino Swap improve price execution for users, making the Solana swapping landscape more competitive. Jupiter has incorporated meta-aggregation features into its latest routing engine to keep users on its front end (own the user, own the flow). At large, teams are treating swaps as a commoditized complement, offering incredibly cheap or free swaps to own the end-user and increase demand for high-margin product offerings (multi-product DeFi). On another note, the divergence in the concentration of aggregator volume between DEXs suggests increased specialization at the DEX layer by asset type.

by Carlos Gonzalez Campo

/

news

article-image

FinanceLightspeed Newsletter

Beam and Braid to offer stablecoins to smaller banks

Many community banks and credit unions feel like they missed the fintech craze — and they don’t want to miss stablecoins

by Jack Kubinec /
article-image

Empire NewsletterFinance

‘There’s so much opportunity’ in crypto: BlackRock COO

BlackRock COO Rob Goldstein noted that the firm had been looking into crypto since 2017

by Katherine Ross /
article-image

Forward Guidance NewsletterOpinion

Is the Fed risking a policy mistake by sitting on their hands?

With the June FOMC meeting coming up, the Fed remains unlikely to cut interest rates. Is this the right move?

by Felix Jauvin /
article-image

The DropWeb3

Off The Grid active wallets hold steady ahead of Steam launch

The crypto-optional shooter is expected to release on Steam in a few weeks

article-image

0xResearch NewsletterBusiness

Spark airdrop lights the fuse on decentralized governance

The new airdrop campaign reaches 50,000 users, setting the stage for Spark’s 10-year token distribution

by Macauley Peterson /
article-image

PeopleSupply Shock

We’re all still early — but not early enough for the free bitcoin faucet

FOMO can be a multiplayer experience

by David Canellis /