Could a memory dump of a running validator process expose the wallet password?

• passe-partout

  1 24 0.0 C

  Passe Partout dumps cryptographic keys from running processes. It is useful to extract private ssh keys from ssh agent.

It shouldn't be hard to extract the private keys from a memory dump. It's just a matter of reverse engineering the memory contents. Worse, if someone develops something like this, but for BLS keys, then the process becomes very easy, even for a script kiddie.

• lighthouse

  124 2,742 9.7 Rust

  Ethereum consensus client in Rust (by sigp)

  

* Use a validator that supports "remote signing". I.e. the signing keys are in a remote, trustworthy, device. That devices does the digital signatures for the validator. Something like this or this. E.g. you could run the signer on a secured RPi, running locally.

• InfluxDB

  www.influxdata.com featured

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• tailscale

  1,006 16,653 9.9 Go

  The easiest, most secure way to use WireGuard and 2FA.

  

FWIW, tailscale is open source, and uses WireGuard underneath.

Suggest a related project