用户指南:私钥助记词、密码和私钥
:::note[New 加密货币和 Web3 新手?
前往 MetaMask Learn 获得专为 web3 新手设计的直接学习体验。 该功能完全免费,支持多种语言,并包含模拟等多种实用工具,协助您顺利启用 MetaMask。
:::
MetaMask: a different model of account security
公共区块链技术与传统的网络技术相比,使用了一套非常不同的工具来保护用户数据。 我们大多数人都习惯于使用应用程序或相关服务创建账户,并通过写信给支持团队等类似方式重设我们的密码或用户名。 我们习惯于借助应用程序保存我们的数据,大体存储于属于公司的某些计算机上。
然而…… MetaMask 的工作方式并非如此。 MetaMask 有三种不同类型的密码,以不同的方式使用,确保您的钱包和账户的私密与安全:私钥助记词、密码和私钥。 我们将逐一向您介绍这些秘密。
Intro to Secret Recovery Phrases
One of the key technologies underlying MetaMask, and most user account-related tools in the crypto space is the seed phrase, or as it's referred to in MetaMask, your Secret Recovery Phrase (SRP).
**您的所有账户都是借助您的私钥助记词通过运算衍生出来的。 **您可以把私钥助记词(SRP)想象成一个钥匙圈,钥匙圈上挂着您想要使用的各种私钥,而且每个私钥控制一个账户。**
Now, if you want a more technical explanation:
Seed phrases as we know them today were codified for usage in Bitcoin, according to a standard referred to as Bitcoin Improvement Proposal 39, or BIP-39. BIP-39 codifies, among other things, specific lists of words in different languages; a highly-randomized selection of these words are then used to create a seed, or secret recovery, phrase.
In MetaMask there are 12 words in a seed phrase. Some older seeds, and some generated by e.g. hardware wallets, use 18, or even 24-word phrases.
这些词中的每一个都对应一系列数字,当按照特定顺序放置时,则代表以一种更加用户友好的方式来记住一串非常非常长的数字。 然后,这个数字用来 确定性地 生成您的账户,您可能听说过人们所提及的确定性钱包。 在计算机科学中,确定性用于描述一种 始终 产生相同结果的过程(通常是某种算法)。 换言之,您的私钥助记词将始终生成由其衍生的一组相同账户。
此处有一些重要的特性需要注意:
私钥助记词就是控制钱包的秘密所在。
- If someone has this secret, they have complete access to the wallet, and all accounts generated by it.
MetaMask does not keep your SRP : you are the custodian of your wallet.
- MetaMask representatives will never ask for your Secret Recovery Phrase, even in a customer support scenario. If someone does ask for it, they are trying to scam you or steal your funds.
您的私钥助记词在本地用于衍生私钥,每个账户/地址一个。
- Accounts exist on the blockchain, and these private keys unlock those accounts.
It is possible to import accounts from other SRPs and private keys.
- However, these accounts will not be automatically restored by MetaMask in another instance; you will have to manually re-add them, unless you have a Google/Apple account connected to MetaMask—then all connected accounts (except hardware wallets) will be automatically restored.
- For other scenarios, if you have manually imported accounts, make note of their private keys, in the same way you did your seed phrase, in order to be able to re-import them in the future.
If you uninstall the app or the extension, you will likely lose access to your data and accounts.
- Your data is stored locally in an encrypted vault, from which you can recover an SRP under some circumstances
- Any transactions you performed with that local version of MetaMask, even if you delete it, will have been recorded on the blockchain.
- Therefore, the transactions should be reflected on a block explorer
- And you can continue using those accounts in another instance of MetaMask, so long as you restore using the same Secret Recovery Phrase (with the words in the same order).
Bottom line: so long as you have your Secret Recovery Phrase, you will always be able to uninstall MetaMask and restore your wallet.
MetaMask Secret Recovery Phrase: Dos and Don'ts
应做
- 请将私钥助记词抄写在安全位置。由于具体环境因人而异,我们无法提供具体存放建议。
- 手写私钥助记词的重要性在于它无法被网络窃取。例如,若存储于联网的云存储文件夹的文件中,理论上存在被盗风险。
- 请仔细核对每个单词的拼写,确保所有单词均按照原始顺序完整抄写。
- 如需协助,请联系 MetaMask 支持团队的 官方渠道。
不应做
- 将它存放在易于发现的位置,例如贴在电脑上的便利贴。
- 将它存放在易受黑客攻击的位置,例如云端存储的文档或标题注明“助记词”的电子邮件。
- 向任何人提供您的助记词,即使对方自称是 MetaMask 支持团队成员。
- 更改单词顺序。
Secret Recovery Phrase FAQs
我的助记词还原了另一个账户!
请参阅此处有关此主题的知识库文章。 此外,请参阅此处社区帖子了解更多上下文和背景信息。
Other FAQs:
Passwords and MetaMask
MetaMask 仅将密码用作一项用途:保护应用程序本身;换言之,密码用来打开应用程序,无论是移动版应用程序还是浏览器内的扩展程序。 在您使用私钥助记词恢复或创建钱包后,就不再需要经常使用(但是您应备份并确保其安全),您将使用您的密码(或者更常见的是在移动设备上使用面部识别或指纹等生物识别身份验证)来解锁应用程序。 有关更多详细信息,请参阅我们此处的文章。
MetaMask traditionally uses passwords to secure the app itself; in other words, to open the application. When your application (Extension or Mobile) locks, your password is used to unlock it. You should make sure to set a strong password and to securely back it up. MetaMask cannot help you recover your password if you forget it.
If you've connected your Google or Apple account to MetaMask, your password helps you unlock the application, and also helps you access your SRP. Your SRP is sharded across five different and encrypted. Only the combination of your Google/Apple account and your password can decrypt and access your SRP; you need both to access your SRP and MetaMask.
Private keys
While a Secret Recovery Phrase is used to create and restore your wallet, including all accounts created in that wallet, each account has its own private key. 此私钥可用于将该账户(且仅限于该账户)导入其他钱包。 Similarly, single accounts from other crypto wallets can be imported to your MetaMask.