While private or mnemonic keys offer many advantages for security, they also present practical challenges, according to Mudit Gupta, the chief information security officer of layer-2 scaling solution Polygon.
Speaking at the Ethereum Community Conference (EthCC) event on July 17, Gupta discussed the differences between theoretical security and practical security in the blockchain and crypto space. Gupta told the EthCC audience in Paris that when it comes to theoretical security, the space is “running so fast.” However, the Polygon executive believes that when it comes to practical security, the space is “so far behind.”
For example, the executive explained how private keys are more difficult to keep safe than passwords because they can be changed if they get leaked. He explained:
According to Gupta, there are at least a couple of billion dollars lost due to people losing their mnemonic keys. The executive noted much more is at risk because of the lack of proper security. “There are billions of dollars in the wallets of users that are incorrectly secured,” Gupta said.
In addition, Gupta noted that private keys are theoretically 100% secure. “If nobody knows your private key, nobody can access your funds,” he said. However, the security professional recognized that there are practical problems that can come up.
“What if you die for some reason? How can your loved ones access your funds? So that’s a tough problem to solve. Then, there is the key rotation problem. What if, for whatever reason, your key is compromised?” he explained.
Related: Answering a morbid question: What happens to your Bitcoin when you die?
Apart from these issues, the executive also talked about the challenges of being a defender in the security
Read more on cointelegraph.com