Bitcoin Cash wallets are really just collections of key pairs. Hiearchical Deterministic wallets are the state of the art for reliably creating and backing up collections of related keypairs. For more detail read Andreas’s in depth explation about how they work in Mastering Bitcoin chapter 5.
BITBOX is an HD wallet which aims to be compliant w/ BIPS 32, 39, 43, 44. When you first fire up BITBOX we create a random mnemonic from 16 bytes of entropy which we then use to create a root seed, master key and 10 default accounts.
Generate mnemonic
You can configure how much entropy BITBOX uses to create your mnemonic in the config section. More entropy means more words in your mnemonic. By default BITBOX will use 16 bytes and create a 12 word mnemonic.
| Entropy (bits/bytes) | Mnemonic length (words) |
|---|---|
| 128/16 | 12 |
| 160/20 | 15 |
| 192/24 | 18 |
| 224/28 | 21 |
| 256/32 | 24 |
To do this we’re using NodeJS’s crypto.randomBytes and the wonderful BIP39.js.
let randomBytes = BITBOX.Crypto.randomBytes(32);
let mnemonic = BITBOX.Mnemonic.fromEntropy(randomBytes);
Root seed
Next we take an optional password and combined w/ the mnemonic create a root seed. The number of potential seeds is 2^512.
let password = 'l337';
let rootSeed = BITBOX.Mnemonic.toSeed(mnemonic, password);
Master key
Finally we’re using bitcoinlib-js to create a masterkey from the rootSeed.
let masterkey = BITBOX.HDNode.fromSeed(rootSeed);
This masterkey can be used to create 4 billion child keys. Each of those child keys can produce 4 billion child keys recursively in a derivation path.
When you combine the number of potential mnemonics, seeds and nested child keys the potential Bitcoin Cash address space is unfathomably large.
Derivation Path
Due to the huge number of potential derivation paths BIPs 43 and 44 introduced conventions for adding meaning to the path. Specifically
m / purpose' / coin_type' / account' / change / address_index
purpose' is always set to 44 to signify that the wallet is BIP 44 compliant. coin_type' is set to 145 for $BCH. Then we create 10 accounts which are siblings and get the first private key in Wallet Import Format.
let purpose = "44'";
let coin = "145'";
let addresses = [];
for (let i = 0; i < 10; i++) {
let path = `m/${purpose}/${coin}/${i}`;
let account = BITBOX.HDNode.derivePath(masterkey, path);
addresses.push(BITBOX.HDNode.toWIF(BITBOX.HDNode.derive(account, 0)));
};
You can optionally set your own custom derivation path.
Display to user
We don’t want to display the private key WIF by default to the user because it’s unsafe. Instead we get the publicKey and display that by default allowing the user to toggle visibility of the privateKeyWIF w/ a button click.
let publicKey = BITBOX.ECPair.toLegacyAddress(BITBOX.ECPair.fromWIF(privKeyWIF));
CashAddr
publicKey from the previous step is Base58Check encoded. You can toggle displaying the address in CashAddr via bchaddr.js.
BITBOX.Address.toCashAddress(publicKey);
Testnet
You can also toggle generating keys on the $BCH testnet.
Summary
BITBOX aims to be an HD wallet which is compliant w/ BIPs 32, 39, 43 and 44. You can change the strength of the mnemonic, how many accounts are created, the derivation path, whether the addresses are displayed as Base58Check or CashAddr encoded and main or testnet.