Cryptographically Secure Seed Generation

Risk: Predictable or weak entropy in seed generation may compromise private keys, endangering user funds.

Control:

  • Private keys are generated with the .NET RandomNumberGenerator class to ensure cryptographically secure random values.

  • Generated entropy is passed to the BIP39 mnemonic generation method for creating human-readable seedphrases.

References:

NIST CSF Alignment:

  • PR.AC-1: Identities and credentials are managed securely

  • PR.DS-2: Data-in-transit and key generation use cryptographic methods

FCA Compliance:

  • FG 16/5: Use of strong cryptographic methods for key and credential management

PreviousSecure Storage of Sensitive DataNextCode Generation Synchronisation

Last updated