Don't be discouraged, it's not as complicated as it sounds. Let's start with a quick explanation of what public-key cryptography (or asymmetrical cryptography) is. I won't go into too much details, I will try to keep things as easy as possible to understand. You can check this link for a nice and detailed explanation. Or google your way for some hardcore mathematical explanations.
Historic Background
(adapted from Fiddler On The Roof)
In a nutshell, you have a pair of keys, one private and one public.
You use your PRIVATE key to encrypt and sign a message. The ENcrypted message can then be DEcrypted using the PUBLIC key while confirming that the message was authenticly signed by you.
The reverse process is possible too, but with a beautiful twist. Someone else may use your PUBLIC key to encrypt a message and send it to you, but that message can ONLY be decrypted using your PRIVATE key. Thus, anyone intercepting the encrypted message cannot do anything with it because they don't have your private key.
The whole purpose of this system: Authentication
That's why it's very important to keep your private key secure, while you can safely share your public key with everyone.
What's All That Have To Do With Steem?
Steem uses this asymmetrical cryptography to secure and authenticate every transaction: upvote, memo, transfer, post, etc. Everytime you do any of those activities, you're actually signing them with your private key. Then, the system validates your transactions by using your public key. Authenticated transactions are added to the blockchain, while non-authenticated ones are rejected. It makes sense, doesn't it? Imagine someone trying to impersonate you to drain your precious wallet. If they don't have your private key to sign the transaction, then they won't be able to surprise you when you wake up in the morning!
Why So Many Steem Keys?
There is a FAQ section that answers that question pretty clearly. I'm pasting it because many users never took the time to read the FAQ fully.
Posting key - The posting key allows accounts to post, comment, edit, vote, resteem, and follow or mute other accounts. Most users should be logging into Steemit every day with the posting key. You are more likely to have your password or key compromised the more you use it so a limited posting key exists to restrict the damage that a compromised account key would cause.
Active key - The active key is meant for more sensitive tasks such as transferring funds, power up/down transactions, converting Steem Dollars, voting for witnesses, updating profile details and avatar, and placing a market order.
Memo key - Currently the memo key is not used.
Owner key - The owner key is only meant for use when necessary. It is the most powerful key because it can change any key of an account, including the owner key. Ideally it is meant to be stored offline, and only used to recover a compromised account.
The OWNER key is the same thing as the PASSWORD that you were given upon signing up with Steem. It's the most important key. Keep it safe and don't use it to login unless you really have to. Use the Posting key to login to your account.
π A quick tip to distinguish between the Steem keys:
π Private keys start with: 5
πOwner key starts with: P5
How Do I Retrieve My Private And Public Keys?
- Log in with your Owner Key (Password), this will allow you to reveal all the private keys.
- Go to your Wallet, Permissions, and click on "Show Private Key" or "Login to Show". Notice that by default, the PUBLIC keys are shown. Also, there is no button to show the Private Owner Key, I guess it's for extra security reasons.
- To reveal the Active Private Key, press "Show Private Key" and you will get this pop up box. Paste your Owner Key in it and press Login.
After you retrieved your keys, SAVE them somewhere secure.
Log out and log in again, but this time use the Posting private key, as recommended in the FAQ.
What If My Keys Are Compromised?
I may happen that you accidentally paste one of your private keys in a public channel or in a chat. I've seen it happen today as a matter of fact, and I notified the person to immediately reset his keys.
You can do that by going to your Wallet, Password, and generate a new one. SAVE it. You don't need to worry about generating the other keys (Posting, Active, Memo) because they will be automatically derived from the new Owner Key (Password). Just redo the steps I explained earlier to retrieve the new PRIVATE keys and save them.
Wrapping Things Up
- NEVER share your PRIVATE keys with anyone (unless you absolutely trust them).
- Public keys are safe to share.
- Keep your keys secure! π
- Read the FAQ.
- Don't forget to vote for me as witness. Instructions in the footer of this post, and... it will require your Active Private key to vote π.
Join us on https://discord.gg/GpHEEhV
If you really like it, resteem.
If you love it, follow.
Don't be shy, click that banner and enjoy my blog (gif animation by @justcallmemyth)
π³ Check out my Steem witness application and vote for me. π³
Thank you.
Alternatively, you can issue this command in cli_wallet (after unlocking it)
vote_for_witness "YOURACCOUNT" "drakos" true true