Keystore

What is Keystore?

A keystore is an encrypted file containing a private key, protected by a password. Keystores allow exporting your wallet from one application and importing it into another.

How does Keystore work?

1. User generates or imports a private key.
2. The user sets a password.
3. The key is encrypted using the password (typically using scrypt).
4. The encrypted key and encryption parameters are saved as a JSON file.
5. The file is downloaded or saved locally.
6. To import, the user uploads the file and enters their password.
7. The application decrypts the key using the password.
8. The decrypted key is used to sign transactions.
9. The key should never be stored unencrypted.

Why does Keystore matter?

Keystores enable wallet portability. Without keystores, you'd be locked into one wallet application.

Key features of Keystore

• Encrypted file containing private key
• Password-protected
• Portable between applications
• Can be stored locally or backed up
• Less secure than hardware wallets
• Requires strong password
• Standard format (JSON)
• Key recovery depends on password

Examples of Keystore

MetaMask allows exporting keystore files. MyEtherWallet lets you work with keystores.

Geth generates keystores. Mobile wallets often don't support keystore import due to security.

Hardware wallets can import keystores but store keys securely on the device.