Passphrase Management: Best Practices & Recovery Risks
Overview
A passphrase is an optional extra secret that you add on top of a seed phrase. Together the seed phrase plus the passphrase produce a distinct set of private keys and therefore a separate, "hidden" wallet. Think of your seed phrase like the master key to a safe deposit box. The passphrase is a second secret lock on a second box stored in the same vault. Short sentence. Long sentences are helpful when explaining cryptography because the mechanics matter: adding a passphrase changes the key derivation path, so the blockchain addresses change and the funds tied to that hidden wallet are invisible unless you supply the exact passphrase every time.
(If you want the technical detail about the 25th-word pattern, see our guide on the passphrase (25th word).)
Who should use a passphrase
- People who want plausible deniability or separate hidden accounts.
- Advanced users who understand backup and recovery trade-offs.
- Those running air-gapped setups or multi-layer cold storage strategies.
Who should probably avoid a passphrase? Beginners who are not confident about secure backup routines, and anyone who cannot guarantee a long-term, testable backup will find passphrases more likely to cost them access than to increase security. In my experience, passphrases are powerful but unforgiving. And remember: they are only as useful as your backup process.
See also: cold-storage-strategies and seed-phrase-management.
How to set up a passphrase (step by step)
Step-by-step (high level):
- Decide whether an on-device passphrase or an external passphrase is right for you. Some people type directly on-device. Others use an external keyboard or air-gapped input.
- Choose a passphrase that is long and memorable to you, or generate a strong one and store it securely. Avoid single dictionary words.
- Enable the passphrase feature on the device (follow the device prompts). Test by deriving a watch-only address to confirm the wallet appears as expected.
- Make multiple backups of the passphrase using recommended methods (see next section). Be sure to test recovery on an air-gapped machine before moving significant funds.
Want a device-specific walkthrough? See the setup-guide and nano-s-setup-step-by-step pages for general setup patterns (device UI varies).
How to store a passphrase safely (backup methods)
Short answer: prefer durable offline backups and test them.
But which method? Here is a practical comparison.
| Method |
Pros |
Cons |
When to use |
| Paper written passphrase |
Simple and offline |
Fragile, fire/water risk, visible |
Short-term or paired with metal plate |
| Metal backup plate (engraved/stamped) |
Extremely durable |
More expensive, needs secure storage |
Long-term vault backup |
| Shamir backup (SLIP-39) |
Split shares, redundancy |
Operational complexity, compatibility |
Distributed backups, family plans |
| Encrypted digital vault (air-gapped) |
Easy to duplicate |
Risk of bad encryption setup, still digital |
As secondary backup with strong passphrase |
| Split manual shares (two-person split) |
Limits single-point failure |
Needs coordination |
Company or co-trustee workflows |
| Password manager (cloud) |
Convenient |
Attack surface online |
Not recommended for primary passphrase |
Alt text: diagram showing passphrase backup options and trade-offs.
For detailed metal backup recommendations and testing, see seed-backup-security and legal-backup-considerations.
Forgot passphrase — what happens and recovery options
Short answer: the hidden wallet cannot be recovered with the seed phrase alone. If you forget the passphrase, funds in the hidden wallet are effectively inaccessible. The public addresses derived from seed-only wallets will not include those funds.
What can you do?
- Try to recall meaningful passphrases first (common patterns, passive hints you created). I suggest making a list of likely candidates and testing them first in a watch-only environment rather than repeatedly entering them into a live signing device.
- Use deterministic checking (on an air-gapped computer): derive addresses using your seed phrase plus a candidate passphrase to see if funds appear. This avoids repeatedly unlocking a live device and reduces risk. (Yes — this requires some technical steps; see sweep-recover-software-wallets and restore-recover-wallet.)
- If your passphrase is short or predictable, brute force is technically possible, but often impractical if the passphrase is strong. Brute force also carries operational risk and cost.
And one warning: do not post your seed phrase anywhere while trying to recover; the seed phrase alone is enough to steal everything if combined with a discovered passphrase.
Passphrase risks and common mistakes
- Over-reliance on memory. Humans forget. Long, unique passphrases are secure, but they increase recovery risk.
- Single-copy paper backups. One flood or fire and you're out of luck.
- Storing passphrases in online tools without additional encryption. Cloud services are convenient; they are also attack surfaces.
- Using trivial passphrases (dates, names). These are easy to crack.
What I've found from long-term testing is that many losses come from the combination of a complicated scheme and no tested recovery plan. During the 2019–2020 market shocks (and the later institutional failures), many people who added passphrases suddenly discovered the cost of forgetting them.
See common-mistakes-best-practices and usb-otg-bluetooth for connectivity-related cautions.
Inheritance, estate planning, and legal considerations
Passphrases complicate inheritance. If you die and your heirs only have the seed phrase, they will not be able to access the hidden wallet without the passphrase. Plan ahead.
Options:
- Leave a sealed, professionally notarized note with clear instructions (and store the metal plate separately).
- Use a trusted attorney or digital vault under strict legal terms. (But be careful: handing over passphrases to third parties introduces custody risk.)
See legal-backup-considerations and lost-device-company-bankrupt for related reading.
FAQ: real user questions answered
Q: Can I recover my crypto if the device breaks?
A: Yes—if you have the seed phrase and any passphrase used. Seed + passphrase = access. If the passphrase is lost, only funds in wallets derived without a passphrase are recoverable. See device-loss-recovery.
Q: What happens if the company that made the device goes bankrupt?
A: Your crypto is secured by private keys; company bankruptcy does not affect on-chain ownership. Make sure you have tested backups. See lost-device-company-bankrupt.
Q: Is Bluetooth safe when using a passphrase?
A: Bluetooth relates to transport of signed transactions or metadata; the passphrase is used in key derivation locally on the device. For highest security, use an air-gapped signing approach. See usb-otg-bluetooth and connectivity-security.
Q: Can passphrases be used with multisig?
A: Multisig setups usually solve other threat models and can be combined with passphrases in certain architectures, but that adds complexity. Read multisig-setups before combining techniques.
Conclusion and next steps
A passphrase is a powerful tool. It can provide plausible deniability and a second layer of security, but it also creates an irreversible dependency: forget it, and funds are gone. I believe the right approach balances strength with recoverability — long, unique passphrases paired with durable, tested backups (metal plates, distributed shares, and documented recovery procedures).
Next steps I recommend: test a recovery with small amounts first, review seed-phrase-management, then read our setup-guide for secure device configuration. If you're planning family access, see legal-backup-considerations and plan for redundancy.
Want to troubleshoot a forgotten passphrase or hidden wallet situation? Start at forgot passphrase — recovery steps and use the troubleshooting-flowchart to map your options.
And if you want help with an advanced recovery strategy or multisig design, check multisig-setups and sweep-recover-software-wallets.
Safe holding.
