1

My understanding is that 12th word is a checksum… so why are following mnemonics both valid?

gather video album produce report surge grant buzz buzz jaguar modify occur

gather video album produce report surge grant buzz buzz jaguar modify surge

Michael Folkson
  • 14,337
  • 3
  • 11
  • 45
sunknudsen
  • 241
  • 1
  • 8

1 Answers1

2

12-word BIP39 phases only have a 4-bit checksum. In other words, 8 bits of the last word are still "data".

Pieter Wuille
  • 98,249
  • 9
  • 183
  • 287
  • Thanks for helping out… can you please expand on this? Why are `occur` and `surge` considered valid checksums for preceding 11 words? – sunknudsen Aug 27 '22 at 13:31
  • 1
    Your premise is wrong. It's not the whole word that is a checksum. The word is an encoding of 12 bits of data. 8 of those bits are data. The other 4 bits are checksum. – Pieter Wuille Aug 27 '22 at 13:32
  • Can you please include example of how checksum is derived in answer? Having a hard time understanding how two different words can yield same checksum even if only part of work is checksum (perhaps a naive understanding of your answer). – sunknudsen Aug 27 '22 at 13:37
  • @sunknudsen if you add a 4 bit checksum to some data there’s still a 1/16 chance that random data will validate the checksum – Mike D Aug 27 '22 at 13:39
  • 1
    They may or may not be the same checksum - I haven't checked. The point is that part of the last word is part of the phrase the checksum is computed over. There shouldn't be anything surprising over the fact that two phrases can differ. – Pieter Wuille Aug 27 '22 at 13:39
  • Got it… just stumbled upon https://bitcoin.stackexchange.com/questions/69957/bip39-manual-phrase-calculations-how-are-multiple-checksums-valid thanks to your feedback. Guess we can close this one? – sunknudsen Aug 27 '22 at 13:40
  • That's a better answer! – Pieter Wuille Aug 27 '22 at 13:41