How Peter Todd stored bitcoin in his brain wallet

Few things are more cypherpunk than keeping keys in your brain wallet

article-image

SlayStorm/Shutterstock and Adobe modified by Blockworks

share

This is a segment from the Supply Shock newsletter. To read full editions, subscribe.


Bitcoin is hard money, in more ways than one.

The never-ending task of keeping BTC safe might be one of the hardest. There are plenty of options — hardware wallets, software solutions and even multi-sigs can do the trick, depending on how they’re implemented.

But if you’re legendary Bitcoiner Peter Todd, you might opt for the trusty brain wallet. And luckily for us, he’s told us exactly how he would do it.

(P.S. Catch Peter Todd on stage at Permissionless IV in Brooklyn later this month, as he sits down with Pete Rizzo for an intimate chat to kick off Day 1.)

First, a disclaimer: Todd shared his brain wallet process a long time ago, in August 2012, over a year before BIP-39 was introduced. 

BIP-39 brought mnemonic phrases to Bitcoin and made room for a 25th word to be layered on top, which significantly boosted the level of entropy, keeping private keys safe from brute force attacks.
All that only makes Todd’s process more impressive, even if he might use a different method today. He effectively did what BIP-39 does with his mind (and some help from Bitcoin itself).

The method

Here’s how, in Todd’s own words:

  1. “Generate a password that you can remember individually. Personally I use the program pwgen which produces ‘pronounceable passwords.’ I use it in eight-character upper/numerals/symbols mode.
  2. Write that password down. Yes this is heresy; you’ll securely destroy it later. 
  3. Memorize that password. This is a lot easier than you think. I find if I spend five minutes a day memorizing a password I can recall it easily in a week or so, and have probably memorized it pretty much permanently after a month or two. Remember studying in university? Use those techniques. Flashcards are very effective; an important part of memorization is being forced to recall what you are trying to memorize. 
  4. Repeat until you have five different passwords memorized. During this process it helps to do something like encrypting different files with the sub-passwords, and practice decrypting them to ensure you don’t forget the individual parts. This also allows you to avoid having copies of the parts of the password if you’re paranoid. 
  5. Take all five passwords and concatenate them into one big super password: eiS9ui@R + vi4Ug~ee + Aet\ito0 + ohB$oh9w + Roh”k2ie = eiS9ui@Rvi4Ug~eeAet\ito0ohB$oh9wRoh”k2ie 
  6. Use this password! Eventually you will forget it, although the time it takes to forget it will go down exponentially the longer you use it. For me, I make a point of using my passwords every month or so. Even just recalling it mentally is enough.”
As always, a relevant xkcd.

Follow those steps and your password would be 49 characters long. Ideally, Todd would like at least 128 bits of entropy to eliminate any risk of brute force. By his own analysis, his optimal configuration for pwgen would generate 221 bits of entropy — “almost the gold-standard 256-bits level that modern encryption provides.”

In practice, this works by feeding the memorized password to the Bitcoin client’s encryptwallet function. The client would re-encrypt the wallet.dat file using that password as the key.

Any potential thieves — in meatspace or cyberspace — would need to somehow syphon the password from your brain before they could ever get to your bitcoin. Just whatever you do, do not forget the password. “You just gotta trust that you really can learn,” Todd wrote.

“The key is that you don’t try to memorize the whole thing at once. Split the task up into a few subtasks, IE, sub-passwords, and memorize them one after another. People used to have dozens of phone numbers in their head, memorized one at a time.”

All hail the safe deposit box!

Todd was right to point out that the average Joe isn’t going to do any of this.

And that’s exactly why Peter Todd will forever be a Bitcoin Legend.


Get the news in your inbox. Explore Blockworks newsletters:

Tags

Decoding crypto and the markets. Daily, with Byron Gilliam.

Upcoming Events

Old Billingsgate

Mon - Wed, October 13 - 15, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

recent research

Unlocked by Template (10).png

Research

Innovations on Aptos’ technical design through Raptr, Shardines, and Zaptos approach near-optimal latency and throughput by unlocking 100% utilization of network resources, with the capacity to settle 260k transactions per second with latencies less than 800ms. The original Move language was revamped with the launch of Move 2, supporting more expressivity in smart contract logic and a scalable ability to interact with high volume datasets. The ecosystem has benefitted from strong asset inflows, now hosting over $1.3B in stablecoins, $450M in bridged BTC, and $530M in RWAs. Activity in the Aptos ecosystem has grown notably over the past year, with monthly application revenue reaching ~$835k and monthly DEX volumes growing to over $5B, both at new all time highs.

article-image

The House on Thursday passed the CLARITY Act, a landmark cryptocurrency market structure bill

article-image

Interchain Labs will focus on sovereign L1s and institutional demand, abandoning plans for smart contracts on the Cosmos Hub

article-image

Also, only three tokens have outperformed bitcoin so far this year: XMR, HYPE and SKY

article-image

The fund group has submitted proposals in recent months for other funds that would hold litecoin, solana, XRP, HBAR, Sui and others

article-image

Momentum’s back — BTC leads, risk assets follow

article-image

Ondo Finance’s acquisition of blockchain development company Strangelove follows its buy of Oasis Pro