交易安全

在线安全交易

该主题主讨论关于如何建立你的在线交易身份以及在比特币社区和他人交易的最佳实践。

介绍

在Bitcoin社区，很多人非常在意他们的安全和身份问题。主要有以下两个原因：

1. There is no violent body to cover your back for you. Or more simply there is no courts to seek assistance from if your transaction sours.
2. One’s reputation is the most important thing that any user has; traders will take very little risk with new users who have not proven themselves. (as they could just be last week’s scammer with a new identity)

bitcoin社区使用一些工具来协助保护他们的隐私以及身份。首先最重要的一点就是保护你的计算机安全（Secure Computer）.

在继续进行之前，请确保你已经阅读了保护计算机安全指南（Securing Your Computer），本指南假定你的计算机在硬件和软件两方面都是安全的

创建一个安全的身份

第一步是创建一个安全的公有私有密钥对（public-private key-pair），这将会是保障你的钱包安全和身份安全的基础，请参阅保护你的钱包

创建你的第一个PGP密钥对

A PGP key-pair does two very important functions.

1. Sign information with an unforgeable signature
2. Decrypt things that other people encrypt for you

This allows you to both conduct business privately (encryption), and give out promises that you cannot deny making (signature).

Microsoft Windows:

• Install GPG4Win: http://www.gpg4win.org/
  

This contains all the key management and generation tools for Microsoft Windows.

All:

1. Install Thunderbird: https://www.mozillamessaging.com/en-GB/
2. Setup your email account with Thunderbird.
3. Install the Enigmail plugin for Thunderbird: https://addons.mozilla.org/en-US/thunderbird/addon/enigmail/
   

Upon loading Enigmail, Thunderbird will ask you to make a new ‘identity,’ follow this wizard and you will have created your identity.
You should backup your private key in a secure place. Secondary, you should create a revocation certificate and store that in a different secure place (maybe print it out and store it in your fire safe).

Register with [#bitcoin-otc]

Follow the guide here: http://wiki.bitcoin-otc.com/wiki/Using_bitcoin-otc

Register the same username at the popular places:

• Bitcoin Forum
• Bitcoin Wiki
• [IRC]

Use a strong and different password for each of these places, keeping your passwords in a secure place. This will allow other people in the community to track you across the different Bitcoin related sites. Also making identity theft online more challenging.

Best Practices with trading

Use Bitcoin-OTC

• Always require the user to become registered with #bitcoin-otc.
• Require a signed message from the fingerprint quoted at: http://bitcoin-otc.com/viewgpg.php
• Follow additional recommendations for avoiding fraud.

Make sure both parties agree to the terms of the trade with signed messages

• Get a PGP signed quote, and check the signature.
• Send a PGP signed receipt.

This allows either party to go public if the trade has become sour and stops your trading partner from claiming the details of the agreement were somehow different.

Search the Bitcoin Forum for the username of the person that you are trading with. Check if the user has provided constructive and useful advice to other parties. And, most importantly, check for any claims that the user has scammed.

Use an escrow

Trading might benefit from an escrow such that bitcoins are disbursed only after contract terms have been met.

A popular online escrow is ClearCoin.

Found in Bitcoin's community are trusted individuals willing to act as independent, third-party escrow brokers.