Passphrase (25th Word): Benefits, Risks & How to Use It

Table of contents

• What is the passphrase (25th word)?
• How the passphrase works (technical overview)
• Benefits of using a passphrase
• Risks and trade-offs
• Step by step: how to enable and test a passphrase
• Passphrase best practices
• Hidden wallets, multisig, and compatibility
• Quick pros/cons table
• FAQ
• Conclusion and next steps

---

What is the passphrase (25th word)?

The "passphrase" is an optional extra secret that you add to a standard 12- or 24-word seed phrase (BIP-39). On some hardware wallet models it's commonly called the "25th word" because it effectively acts as an additional word appended to your recovery phrase. Add different passphrases and you create different wallets from the same seed phrase — often called hidden wallets because they are not visible unless the correct passphrase is entered.

Why does this matter? Because the passphrase separates knowledge (something you know) from possession (the device and seed phrase). In my experience this can be a powerful privacy and safety tool — but it also increases recovery complexity.

(If you need a primer on seed phrases first, see Seed phrase basics.)

How the passphrase works (technical overview)

Technically, BIP-39 allows an optional passphrase that is salted together with the seed phrase to produce a different master private key. That means: same 24-word seed + different passphrase = different accounts and private keys. The secure element on a hardware wallet still holds the private keys and signs transactions, but the passphrase itself is not stored on the device or on any server. It must be supplied each time (or cached in volatile memory while the device is unlocked).

This design gives you an additional authentication factor that is fully user-controlled. But it also means no one can help you recover funds if the passphrase is lost (not even the device manufacturer). So understand that the passphrase is a double-edged sword.

Benefits of using a passphrase

• Stronger protection against attacker access if someone steals your device and seed phrase.
• Ability to create hidden wallets for plausible deniability (you can hold a small balance on the visible wallet and keep larger holdings in a hidden one).
• Partitioning funds by purpose or risk profile (cold storage vs daily spending).
• Can reduce reliance on keeping multiple physical backups of the same extended key (if you have a safe, you can store the passphrase there separately).

I used a passphrase in testing to separate long-term holdings from daily funds and found the separation helpful for operational security — but it required disciplined backup practices.

Risks and trade-offs

Using a passphrase increases the attack surface of human error. Here are the main downsides:

• Irreversible loss: If you lose or forget the passphrase, seed phrase alone will not restore wallets created with that passphrase. Permanently lost funds are the usual result.
• Usability friction: You must enter the passphrase each session (or rely on risky caching), and every recovery requires the exact same passphrase spelling, capitalization, and spacing.
• Backup pitfalls: Storing the passphrase with the seed phrase (same location) defeats the security benefit. Storing them apart increases logistical complexity.
• Compatibility: Some third-party wallets and recovery tools treat passphrases differently; not all wallets support the same passphrase UX, which can complicate recovery on another device or software. See third-party-compatibility for details.

But wait — is it strictly more secure than multisig? Not always. Multisig distributes signing responsibility and reduces single-point failure, while passphrase is a single additional secret. Consider both options for high-value holdings (see multisig-setup-ledger).

Step by step: how to enable and test a passphrase

This is a conceptual, step-by-step guide. Follow device-specific prompts in your device manual or app, and update firmware before you begin (firmware-update-verify).

1. Prepare: Decide whether you will enter the passphrase on the device directly (preferred) or on a connected computer/mobile app (less private). Write down your passphrase plan and storage locations before activating.
2. Update firmware: Ensure your hardware wallet's firmware is up to date and verified (see firmware-update-verify).
3. Enable the passphrase feature: Use the device settings or companion app to enable the optional passphrase. Your device may ask whether you want the passphrase to be "on-device only" or managed by an app — choose on-device when possible for air-gapped security.
4. Create a test hidden wallet: Enter a simple, unique passphrase and open the corresponding hidden wallet. Send a small test amount to an address on that hidden wallet to confirm you can receive and later spend from it.
5. Backup the passphrase separately: Store the passphrase on a durable backup (see metal-backup-plates) and keep it in a different physical location than your seed phrase.
6. Practice recovery: Use the recovery process on a secondary device (or in simulation) to confirm you can restore the passphrase + seed phrase combination. This step can expose compatibility issues early.

Test with tiny amounts first. Trust but verify.

Passphrase best practices (ledger passphrase best practices)

• Use a long, unpredictable passphrase — ideally a random sequence of words or a long sentence that’s not tied to personal data.
• Enter the passphrase directly on the device if it supports that option (reduces exposure to the host computer). And test whether your device caches the passphrase (know the behavior).
• Never store the passphrase with the seed phrase in the same physical or digital place.
• Consider metal backup plates for the passphrase (separate from your recovery phrase plate) and store them geographically apart. See backup-metal-slip39 for backup options.
• For very large holdings, evaluate multisig instead of or alongside a passphrase — multisig reduces single human-error risk and shares custody across keys (multisig-setup-ledger).
• Plan for inheritance: include clear instructions and secure access to the passphrase for trusted executors (without writing the passphrase plainly in a will).

Hidden wallets, multisig, and compatibility

Hidden wallets created by the passphrase are useful for plausible deniability, but they are not a panacea. They can complicate audits, estate planning, and third-party recovery. If you use multisig, understand that adding a passphrase to one key in a multisig setup can make recovery or co-signing more complex. Test compatibility with the wallets and tools you expect to use (see wallet-compatibility-matrix).

Also consider how emergency procedures will work. Who has access? How will you prove ownership? These are operational questions, not theoretical ones.

Quick pros/cons table

Benefit	Risk / Trade-off
Extra layer of security beyond seed phrase	If lost, passphrase cannot be recovered — funds may be gone forever
Hidden wallets for privacy or deniability	Higher operational complexity and chance of human error
Separation of funds (cold vs daily spending)	Compatibility issues with some wallets and recovery tools
Can protect against a stolen seed phrase	Bad backups (co-located) negate benefits

FAQ

Q: Can I recover my crypto if the device breaks?

A: Yes — if you have both your seed phrase (recovery phrase) and the exact passphrase. The seed phrase alone will not restore wallets created with a passphrase. For device failure recovery steps, see restore-recover-failure.

Q: What happens if the company that made my hardware wallet goes bankrupt?

A: Your funds are not stored by the company; they are on the blockchain. As long as you control your seed phrase and passphrase, you can recover on compatible wallets or third-party tools. However, compatibility and tooling may change, so keep a tested recovery plan (see company-bankruptcy-and-business-risk).

Q: Is Bluetooth safe for entering a passphrase?

A: Bluetooth introduces more attack vectors than a purely USB, on-device input method. If possible, enter the passphrase on the device itself (air-gapped). For a deeper look at connection methods, see connections-usb-bluetooth-nfc.

Q: If I forget my passphrase, can someone help me recover it?

A: No. There is typically no backdoor. If you forget the passphrase and do not have a backup, the funds are effectively irrecoverable.

Conclusion and next steps

A passphrase (the so-called 25th word) is a powerful but exacting tool. It raises security and privacy when used correctly, and it destroys recoverability if used carelessly. In my testing, disciplined backup and frequent dry-runs of recovery are the difference between a useful security layer and a potential disaster.

If you plan to use a passphrase, start small: update firmware, test with tiny transfers, practice recovery, and separate backups physically. For more setup guidance, see setup-overview and passphrase-usage-risks. Ready for a deeper walkthrough? Check the step-by-step device walkthroughs at walkthrough-nanos-step-by-step or review multisig alternatives at multisig-setup-ledger.

And remember — security is a trade-off between protection and recoverability. Choose the balance that you can reliably maintain.