Blockchain Wallet Security: Understanding the Risks of Pseudo-Random Number Generators and Centralized Custody

BY KEYHUNTER 03.04.2025

The article discusses the evolution of blockchain wallets, focusing on their importance and challenges since the launch of Bitcoin by Satoshi Nakamoto on January 3, 2009. This marked the beginning of blockchain technology, which uses wallets as a primary user interface for managing private keys and authorizing transactions securely.

Key Developments in Blockchain Wallets

  1. Original Wallet: The first Bitcoin wallet, known as the Satoshi client, stored private keys in an unencrypted file called wallet.dat. As Bitcoin gained value, hackers targeted these files. Later versions encrypted the file using a master key and wallet passphrase, but weak passphrases often posed security risks.
  2. Brainless Wallets: Around 2013, users attempted to create “brain wallets” by hashing memorable passphrases into private keys. However, this approach proved unreliable due to human difficulty in recalling passphrases and generating randomness. Many brain wallets were compromised because passphrases were guessable.
  3. Modern Wallets: Over time, wallets have evolved to include more secure options like hardware wallets that store private keys offline, reducing vulnerability to hacking. Additionally, mobile apps like Electrum introduced user-friendly interfaces for managing Bitcoin assets.

Challenges with Wallets

Blockchain wallets face two major challenges:

  • Generating truly random and secure private keys.
  • Safeguarding these keys against loss or theft.

Summary

Blockchain wallets have undergone significant evolution since 2009, transitioning from simple software solutions to advanced tools like hardware wallets. Despite improvements in security and usability, managing private keys remains a critical challenge for developers and users alike.

The security of blockchain wallets is crucial for safeguarding digital assets, but several challenges have arisen over the years. Here are some key issues:

Pseudo-Random Number Generators (PRNGs)

Computers are deterministic machines and not inherently good at generating truly random numbers. They often use pseudo-random number generators (PRNGs) that produce the same sequence of numbers when given the same seed. This can be problematic when generating blockchain addresses, as hackers can attempt to guess the initial inputs to access valuable addresses. For example, Cakewallet used a flawed PRNG, leading to a vulnerability that could be exploited with relatively few attempts.

Custodial Wallets

Custodial wallets, where assets are managed by a third party, are often seen as a solution to security headaches. However, they have their own risks. Large custodial wallets like Mt. Gox and FTX have failed spectacularly, resulting in massive losses. Mt. Gox lost approximately 650,000 bitcoins, while FTX’s collapse involved about $8 billion in missing funds. The lack of guarantees and regulatory protections in cryptocurrency makes custodial wallets risky.

Smart Contracts

Using smart contracts, like those in the Parity wallet library on Ethereum, can offer a decentralized alternative to custodial wallets. These contracts require multiple signatures to transfer assets, providing an additional layer of security. However, even smart contracts are not foolproof. A bug in the Parity wallet library allowed a user to freeze funds in multiple wallets, resulting in the loss of about $1.2 billion worth of ETH.

Summary

Blockchain wallet security faces challenges from flawed pseudo-random number generators, the risks associated with custodial wallets, and vulnerabilities in smart contracts. Ensuring the randomness of private keys, avoiding reliance on potentially incompetent or malicious custodians, and thoroughly testing smart contracts are essential steps in protecting digital assets. Despite these challenges, advancements in wallet technology continue to improve security and usability for users.

Pseudo-random number generators (PRNGs) play a critical role in the security of blockchain wallets by generating private keys, transaction signatures, and other cryptographic elements. However, their deterministic nature can introduce vulnerabilities if not implemented securely.

How PRNGs Impact Blockchain Wallet Security

  1. Deterministic Nature of PRNGs:
  • PRNGs generate sequences of numbers based on an initial seed value. While these numbers appear random, they are predictable if the seed is known or weak[1][3].
  • For example, early implementations in Bitcoin wallets used flawed PRNGs, leading to predictable private keys and enabling attackers to brute-force them[2][3].
  1. Private Key Generation:
  • Private keys are 256-bit numbers that must be truly random to ensure security. Weak PRNGs can result in predictable keys, allowing attackers to steal funds by guessing or calculating these keys[3][4].
  1. Cryptographic Signatures:
  • Bitcoin uses the Elliptic Curve Digital Signature Algorithm (ECDSA), which requires a unique random nonce for every transaction signature. If the same nonce is reused or predictable, attackers can derive the private key and compromise wallet security[1][3].
  1. Historical Vulnerabilities:
  • The Android Bitcoin wallet vulnerability (2013) and issues in libraries like BitcoinJS (2011–2015) highlight how weak PRNGs have led to significant losses due to compromised private keys[2][3].
  1. Solutions:
  • Cryptographically secure PRNGs (CSPRNGs) are designed to resist statistical and cryptographic attacks, making them suitable for blockchain applications[3][7].
  • Standards like RFC 6979 ensure deterministic yet secure generation of random numbers by incorporating private keys and irreversible hash functions, mitigating randomness-related vulnerabilities[1][3].

Summary

PRNGs are essential for blockchain wallet security but can introduce risks if improperly implemented. Weak randomness in key generation or transaction signatures can lead to theft of funds and undermine trust in the system. Adopting cryptographically secure PRNGs and adhering to best practices like RFC 6979 are crucial for safeguarding blockchain wallets against these vulnerabilities.

The vulnerability in Cakewallet’s code, which involved using a flawed pseudo-random number generator (PRNG), significantly impacted users over a three-year period from 2018 to 2021. Here’s how:

Impact on Users

  1. Predictable Private Keys:
  • The PRNG used by Cakewallet generated private keys that were not truly random, making them predictable. This meant that attackers could potentially guess or calculate these keys, especially if they knew the initial seed or pattern used by the PRNG.
  1. Wallet Address Compromise:
  • Once an attacker obtained a private key, they could access the associated wallet address and steal any cryptocurrency stored there. This vulnerability put users’ funds at risk without their knowledge, as they might not have noticed the theft until they checked their balances.
  1. Extended Exposure:
  • The vulnerability remained undiscovered for three years, giving attackers ample time to exploit it. With modern computing power, it’s feasible to brute-force through a large number of possibilities within this timeframe, especially if running the hacking software offline.
  1. Limited Awareness:
  • Users might not have been aware of the vulnerability until it was publicly disclosed in 2021. This lack of awareness meant that many users continued to use their wallets without taking additional security precautions, further increasing their exposure to potential theft.
  1. Recovery Challenges:
  • Recovering stolen funds in cryptocurrency is often difficult due to the decentralized nature of blockchain transactions. Once funds are transferred out of a compromised wallet, tracing and recovering them can be nearly impossible without the cooperation of exchanges or other intermediaries.

Summary

The vulnerability in Cakewallet’s code exposed users to significant risks over a prolonged period. The predictable nature of the private keys generated by the flawed PRNG allowed attackers to potentially steal funds without users’ knowledge. The extended exposure and lack of awareness exacerbated the issue, highlighting the importance of robust security measures in blockchain wallet development.

Citations:
[1] https://cointelegraph.com/news/lack-of-randomness-why-hackers-love-it
[2] https://www.kaspersky.com/blog/vulnerability-in-hot-cryptowallets-from-2011-2015/49943/
[3] https://antiguanewsroom.com/the-role-of-bitcoins-pseudo-random-number-generators-in-cryptographic-security/
[4] https://www.pyth.network/blog/secure-random-numbers-for-blockchains
[5] https://pmc.ncbi.nlm.nih.gov/articles/PMC7180860/
[6] https://blockworks.co/news/random-number-generators-metaverse
[7] https://www.mdpi.com/2227-7390/11/23/4812

Citations:
[1] https://simpleswap.io/blog/the-evolution-of-crypto-wallets
[2] https://www.techzim.co.zw/2025/03/will-the-us-holding-bitcoin-force-governments-to-take-crypto-seriously/
[3] https://bitcoinmagazine.com/technical/the-evolution-of-bitcoin-wallets-from-the-early-days-to-todays-modern-solutions-
[4] https://github.com/roeeaharoni/string-to-tree-nmt/blob/master/string-to-tree-nmt/data/WMT16/de-en-raw/dev/newstest-2013-2014-deen.tok.clean.en
[5] https://en.wikipedia.org/wiki/History_of_bitcoin
[6] https://quizlet.com/759928059/random-questions-and-answers-online-part-13-flash-cards/
[7] https://www.techtarget.com/whatis/feature/A-timeline-and-history-of-blockchain-technology
[8] http://www.dailyblaguereader.com/blog/?paged=6
[9] https://academy.moralis.io/blog/everything-you-need-to-know-about-the-history-of-bitcoin-wallets