Skip to main content

Mnemonic Phrase | Bitcoin Glossary | Mapping Bitcoin

Mnemonic Phrase

Security

Also known as: mnemonic, mnemonic seed, word list

A human-readable sequence of 12 or 24 words defined by BIP39 that encodes a wallet's master seed. The mnemonic phrase serves as a backup that can restore all keys and addresses in an HD wallet.

Overview

A mnemonic phrase (also known as a seed phrase or recovery phrase) is a sequence of 12 or 24 English words that encodes the master secret from which all keys in a hierarchical deterministic (HD) wallet are derived. Defined by the BIP39 standard, the mnemonic provides a human-friendly way to back up and restore a wallet's entire key tree.

How It Works

1. Generate random entropy (128 or 256 bits)
2. Compute checksum (first 4 or 8 bits of SHA-256)
3. Append checksum to entropy
4. Split into 11-bit segments
5. Map each segment to a word from the 2,048-word BIP39 list

128 bits → 12 words
256 bits → 24 words

Example (12 words):
  abandon ability able about above absent
  absorb abstract absurd abuse access accident

From Mnemonic to Keys

The mnemonic words are converted into a 512-bit seed using PBKDF2 with an optional passphrase. This seed is then used as the root of a BIP32 HD wallet tree, from which all private keys, public keys, and addresses are deterministically generated.

Mnemonic Words + Optional Passphrase
          │
      PBKDF2 (2048 rounds)
          │
      512-bit Seed
          │
      BIP32 Master Key
        /    \
    Child    Child
   /    \   /    \
  ...  ...  ...  ...  ← All addresses

Security Considerations

Anyone who obtains the mnemonic phrase gains complete control over all funds in the wallet. The phrase must be stored securely — ideally on a physical medium (metal plate, paper) in a safe location, never digitally on internet-connected devices. The optional BIP39 passphrase adds an extra layer of protection, creating an entirely different wallet for each passphrase used.

Common Misconceptions

The 12 or 24 words are not random — they come from a specific 2,048-word list, and the last word includes a checksum. Entering a random selection of words from the list will almost certainly fail validation. Also, the same mnemonic with different derivation paths (BIP44, BIP84, BIP86) will produce different addresses, which is why wallet software must know the correct path to restore funds.

Related Terms

Seed PhraseSecurity

A sequence of 12 or 24 words that deterministically generates all the private keys in an HD wallet. The seed phrase is the master backup for a wallet and must be stored securely offline, as anyone with access to it can control the associated funds.

Recovery PhraseSecurity

A sequence of words (typically 12 or 24) that can be used to restore a Bitcoin wallet and all its associated keys and addresses. Recovery phrases follow the BIP39 standard and are the most critical backup component for any HD wallet.

BIP39Development

A Bitcoin Improvement Proposal that defines the standard for generating mnemonic phrases (typically 12 or 24 words) from which a wallet's master seed is derived. These word lists enable human-readable backups of wallet keys.

HD WalletSecurity

A hierarchical deterministic wallet that generates all key pairs from a single master seed using the BIP32 standard. HD wallets simplify backup (only the seed needs to be stored) and enable organized key management with multiple accounts and address chains.