Crypto
4 min read

Mnemonic Phrase

A 12 or 24-word sequence (per BIP-39) that encodes a wallet’s master seed. Anyone with the phrase has full control of the wallet, so it must be backed up offline and never shared.

How mnemonic phrases work

The technical basis (BIP-39):

  1. Random entropy is generated (typically 128 or 256 bits).
  2. Entropy is combined with checksum to produce a 12 or 24 word phrase.
  3. Words come from a defined wordlist of 2,048 carefully-chosen words.
  4. The phrase derives a master seed through a key derivation function.
  5. The master seed derives all wallet keys through hierarchical deterministic (HD) derivation (BIP-32).

The phrase encodes everything needed to recover an entire wallet: every address, every private key, every transaction history.

Why words instead of just keys

Several reasons:

  • Easier to write down. 12-24 common English words vs. 256-character hex strings.
  • Easier to verify. Words can be checked individually for correctness.
  • Easier to communicate verbally if needed (in emergencies).
  • Standard wordlist — limited dictionary reduces typo risk.
  • Built-in checksum — invalid phrases are detectable.

The wordlist

The BIP-39 English wordlist has 2,048 words chosen with specific properties:

  • No words within 4 letters of each other — reduces transcription errors.
  • Common, easily-recognizable words.
  • No abbreviations or acronyms.
  • Distinct meaning — minimizes confusion.

Other languages have their own BIP-39 wordlists (Japanese, Spanish, Chinese, etc.), but English is by far the most-used.

Why mnemonic phrases are foundational

Practical implications:

  • Single backup point. Anyone with the phrase has full wallet access.
  • Cross-wallet portability. Most major wallets implement BIP-39, so a phrase from one wallet works in another.
  • Forever recovery. As long as the phrase exists, the wallet exists.
  • Critical to protect. Loss = permanent loss of funds. Theft = stolen funds.

This single string of words is one of the most security-critical objects in self-custody crypto.

Storage best practices

How to store mnemonic phrases:

  • Write on paper or stamp on metal. Never digital.
  • Multiple physical backups in different locations.
  • Don't photograph — defeats offline storage.
  • Don't enter into apps or websites that aren't your trusted wallet.
  • Don't share — anyone with the phrase has full control.
  • Test recovery before storing significant funds.

Metal backups (steel plates with stamped or laser-engraved words) are popular for long-term durability against fire, water, and decay.

Common mistakes

Several patterns produce losses:

  • Storing digitally — photo, cloud document, email, password manager. Each has been breached or lost.
  • Storing with the wallet device — defeats the protection offered by separation.
  • Sharing with others — anyone you tell becomes a security risk.
  • Entering into "verification" sites — common phishing vector.
  • Loss without backup — natural disasters, careless disposal, faded ink.
  • Death without inheritance plan — heirs may not know how to access.

What seed phrases don't protect against

A few risks remain:

  • Phishing during use. Even properly stored, a seed phrase can be revealed if you enter it into a fake site.
  • Hardware compromise. A wallet device with malicious firmware can leak signed transactions.
  • Coercion. Physical threat for the seed phrase bypasses technical security.
  • Implementation bugs. Some wallets have generated seeds with insufficient randomness.

Variants and extensions

A few related concepts:

  • 24-word vs. 12-word. 24 words has 256 bits of entropy; 12 words has 128 bits. Both are secure for practical purposes.
  • Optional 25th word (passphrase). Adds an additional factor; protects against seed-phrase compromise alone but adds operational complexity.
  • Shamir Secret Sharing — splits the seed into multiple shares; a threshold (e.g., 3 of 5) is required to reconstruct. More complex but enables sharing without exposing the full seed.

Hardware wallet seed handling

Best practice with hardware wallets:

  • Generate the seed on the hardware wallet itself, not on a connected computer.
  • The hardware wallet shows you the seed during initial setup.
  • You record it externally (paper or metal).
  • The seed never leaves the device during normal operation.
  • Recovery requires re-entering the seed if the device is lost or fails.

This separation provides the security advantage of hardware wallets — the seed is generated, stored, and operated on without ever touching internet-connected hardware.

Inheritance planning

A real concern: what happens to crypto if you die unexpectedly?

  • Without a plan, heirs may not know about the crypto, let alone access it.
  • Sharing the seed with family during life creates security risks.
  • Multi-signature setups with trusted parties can enable inheritance without single-share exposure.
  • Specialized services (Casa, Unchained Capital) provide inheritance products.
  • Letters of instruction with executor or attorney can include guidance.

The right approach depends on holdings size and family dynamics. The wrong approach is having no plan.

What individuals should know

For self-custody crypto holders:

  • Treat the seed phrase as the most-critical security item in your crypto stack.
  • Never digitize it.
  • Store multiple physical backups in different locations.
  • Use metal storage for fire and water resistance.
  • Plan for inheritance.
  • Test recovery before relying on it.

The seed phrase is the foundation of self-custody. Everything else (hardware wallets, multi-sig, security practices) is built on top of properly handling this single string of words.