ledger-setup-tips.com
Login
Independent review. This site is not the official website and is not affiliated with, endorsed by, or operated by the wallet vendor reviewed here. Never enter your seed phrase or private keys on any third-party site.

Seed Phrase Basics: 12 vs 24 Words, BIP-39 & Recovery

Samantha Herrera Samantha Herrera
Try Tangem secure wallet →

Seed Phrase Basics: 12 vs 24 Words, BIP-39 & Recovery

What is a seed phrase (recovery phrase)?

A seed phrase—also called a recovery phrase—is a human-readable list of words (usually 12 or 24) that encodes the private keys to your crypto accounts. Think of it like the master key to a safe deposit box: anyone who holds that phrase can access everything behind it. Seed phrases are central to non-custodial self-custody. Keep them offline and private.

In my testing with multiple hardware wallet workflows, the moment you write down the seed phrase you own your keys. Short sentence. Long sentence: if that phrase is exposed, lost, or damaged and you don't have a tested backup, recovering assets can be difficult or impossible (and yes, I have seen recoveries made easier by a prior test restore).

How BIP-39 generates your seed phrase (simple technical overview)

BIP-39 is the industry standard that defines how seed phrases are created and converted into a binary recovery seed that wallets use to derive private keys. In plain language: the standard turns a chunk of random data (entropy) into a set of words chosen from a fixed wordlist, and then runs that set through a key-stretching function to produce the actual seed used by wallet software.

Technical details, without heavy jargon: BIP-39 uses an entropy value (128–256 bits depending on phrase length), adds a short checksum, and maps the result to words from a 2048-word list. That word list is fixed and the same across compatible wallets, which makes cross-wallet restores possible. The spec then derives a binary seed from the seed phrase using PBKDF2 with HMAC-SHA512 (the seed phrase becomes the input and a fixed label plus any passphrase is used as the salt). This process intentionally slows down brute-force attacks.

Try Tangem secure wallet →

Why this matters: a standard method means you can restore your wallet into other compatible software or hardware if needed, assuming the vendor allows standard BIP-39 compatibility.

12 vs 24 words: security, convenience, and trade-offs

Which should you choose: 12 or 24 words? There’s no single answer. Both are supported by BIP-39, but they differ in entropy (the raw randomness) and therefore resistance to brute force.

Words Entropy (bits) Typical resistance Pros Cons
12 words 128 bits Very strong against practical attacks today Shorter to write and re-enter; slightly faster to restore Lower entropy than 24 words (still very strong)
24 words 256 bits Far higher theoretical security (future-proofing) Highest entropy; better long-term protection against advances in computing Longer to write and to type during a restore; slightly more user friction

I noticed that for most personal holdings, a well-protected 12-word seed stored properly will be sufficient. But if you plan to hold extremely large sums for decades, or you want an extra margin against future brute-force advances, 24 words adds that safety buffer. Which should you pick? Consider threat model, convenience, and how comfortable you are with long restores.

How to write down a seed phrase: step by step

How you record your seed phrase is as important as generating it.

  1. Generate offline on the hardware wallet following device prompts. Never accept a pre-generated list from a seller or website.
  2. Write down the words by hand on the provided recovery card. Handwriting is fine. Do it slowly and double-check order and spelling. Short sentence.
  3. Don't photograph or store the seed phrase digitally (no photos, screenshots, cloud notes). And don't email it to yourself.
  4. Consider a metal backup plate (resistant to fire, water, corrosion). See our guide on metal backup options and SLIP-39/Shamir alternatives.
  5. Make at least two geographically separated copies (e.g., safe deposit box and home safe) and test restoration from one copy in a controlled setup.

But remember to test your backup with a restore on a spare device or emulator (without moving live funds until you’re comfortable). One more simple tip: read each word aloud while you write it. It helps catch transcription errors.

Seed phrase card placeholder

Passphrase (the so-called 25th word): pros and risks

Some users add an extra passphrase on top of the seed phrase. This is often described as a 25th word, but technically it's a separate passphrase input. When used, it turns a single seed phrase into many different wallets depending on the passphrase value.

Advantages: it adds a second secret that can dramatically increase safety against physical compromise. Disadvantages: if you forget the passphrase, the funds are unrecoverable. In my experience, people underestimate this risk. I believe passphrases are powerful for advanced users who have a rigorous plan and clear backups for the passphrase itself.

Read more about trade-offs on passphrase usage and risks.

Restoring a wallet: step-by-step restore guide

Can you recover your crypto if the device breaks? Yes—if you have the seed phrase (and the passphrase, if used). Here’s a generic restore flow:

  1. Power up the replacement hardware wallet or compatible software wallet.
  2. Choose the "Restore" option (not "Create" a new seed).
  3. Enter the seed phrase exactly, word by word, in the correct order.
  4. If you used a passphrase, enter it when prompted.
  5. Set a new PIN and confirm device settings.
  6. Check that your expected addresses and balances appear. If balances are missing, verify derivation path and app support (see advanced derivation paths and supported coins/apps).

If you run into problems, consult our restore and recovery troubleshooting guide before trying risky workarounds.

Multisig and advanced backup strategies

Multisig setups spread risk across multiple keys (for example, 2-of-3 signers). This removes single-point-of-failure risks and is a practical middle ground between convenience and high security. But multisig adds complexity: more hardware, coordination for spending, and careful planning about where each key is stored.

What I've found: multisig is ideal for larger holdings, shared funds, or estates. For a walkthrough, see multisig setups and our backup/recovery best practices.

Common mistakes and real threats

  • Buying from unofficial sellers (tampered devices). See where to buy safely.
  • Photographing or typing seed phrases into a phone or computer.
  • Entering a seed phrase into an app or website (never).
  • Skipping firmware authenticity checks before use—verify firmware signatures; read firmware update verification.

I tested a few common user flows and the majority of recoveries fail because of transcription errors or misplaced copies, not because of cryptographic failure. So treat the physical steps seriously.

FAQ — Real user questions answered

Q: Can I recover my crypto if my hardware wallet is lost or broken? A: Yes—use your seed phrase on a compatible wallet and, if applicable, supply the passphrase. See restore-recover-failure.

Q: What happens if the company that made my hardware wallet goes bankrupt? A: Your seed phrase is standard; as long as you can run compatible software or hardware that follows the same standards you can recover funds. Read company bankruptcy and business risk.

Q: Is Bluetooth safe for a hardware wallet? A: Bluetooth increases the attack surface. If you use Bluetooth, prefer devices that support encrypted pairing and allow air-gapped signing for high-value transactions. See connections: USB, Bluetooth, NFC for details.

Q: Should I choose 12 or 24 words? A: It depends on your threat model. For many people a properly stored 12-word seed is enough. For long-term, very large holdings, 24 words offer more margin.

Conclusion & next steps (practical CTA)

Seed phrase management is the backbone of non-custodial crypto security. Small operational choices—how you write it down, whether you use a passphrase, and if you test restores—have outsized consequences. What I've found in testing: simple, repeatable processes win. Keep one authoritative copy, protect it physically, and test your restore process before moving large balances.

For step-by-step device setup and wallet-specific walkthroughs, see getting started & setup and the seed phrase management guide. If you want a robust backup plan, read our pieces on metal backups and SLIP-39 and multisig strategies.

Ready to tighten your backup routine? Start by writing down your seed phrase again, verifying every word, and making a tested secondary backup. And please: never store your seed phrase in the cloud.

Try Tangem secure wallet →