What is a Hidden Wallet (Passphrase) in Ledger? Find Out by exploring this optional setting that adds another layer of protection to your crypto assets. It works by creating entirely separate sets of accounts on your device. These accounts are tied to a secret word or phrase of your choice. Without this passphrase, the accounts are invisible and inaccessible. Using this setup provides a powerful security advantage. It gives you a way to conceal your main crypto holdings, even if someone gains access to your primary wallet.
This protection works against physical threats. Imagine a scenario where you are forced to unlock your device. You could provide the PIN for your main wallet, revealing a smaller, decoy balance. Your larger holdings would remain safe and hidden in the passphrase-protected wallet. Learning about this feature is a key step for anyone serious about asset security.
Why Look Beyond Your Standard 24-Word Recovery Phrase?
Exploring an advanced security feature like the passphrase is a logical next step for serious crypto holders. Your standard 24-word recovery phrase does an excellent job securing your funds against remote attacks. It acts as the master key to all your accounts. However, it offers limited protection against physical coercion. Should someone force you to reveal your PIN, they would see all your assets. A hidden wallet creates a separate, secret layer beyond this initial defense.
Basically, a standard setup has a single point of failure in a physical confrontation. The Ledger passphrase feature introduces a critical element of doubt. It allows you to maintain two distinct sets of wallets. One is the obvious, public-facing wallet for daily use or as a decoy. The other is a secret wallet for your main stash. This separation is the foundation of what is known as plausible deniability, a vital concept for safeguarding wealth.
Understanding the Core of the Ledger Passphrase Feature
The Ledger passphrase feature creates entirely new sets of accounts by using a secret word you choose. This feature, also known as the 25th word, is an addition to your standard 24-word recovery phrase. It does not change or replace your original seed phrase. Instead, it works with it to generate a completely different and unique wallet. You can create an infinite number of hidden wallets this way. Each unique passphrase attached to your 24 words will open a distinct set of accounts.
The Foundation: Your 24-Word Recovery Phrase

Your 24-word recovery phrase is the master backup for your crypto. It is generated by your Ledger device during the initial setup. This phrase can restore all your private keys on any compatible hardware wallet. Protecting it is your highest priority. You should never share recovery phrase details with anyone for any reason. Your standard accounts, visible with your main PIN, are derived directly from these 24 words. This is your primary, or "decoy," wallet when using the passphrase feature.
Introducing the 25th Word Passphrase
A 25th word passphrase acts as a salt that modifies your original recovery phrase. Think of it as a password that unlocks a new set of wallets. When you enter a passphrase, the Ledger device temporarily combines it with your 24-word seed. This combination generates a new, unique master seed. From this new seed, a full set of new accounts is derived. The passphrase itself is never stored on the Ledger device or anywhere else. It exists only in your memory or in a secure, offline location you control.
Secrets Behind Wallet Generation
Wallet generation follows the BIP39 industry standard. Your 24-word phrase is the mnemonic. The passphrase is the optional salt. The cryptographic process combines the mnemonic and the salt to produce a binary seed. This seed is then used to derive all private keys and public addresses for your accounts. Changing even a single letter in your passphrase results in a completely different binary seed. Consequently, it opens a totally different wallet. This is why remembering your passphrase exactly is so important.
How to Create a Hidden Wallet: A Step-by-Step Guide
Knowing how to create a hidden wallet on your device is a straightforward process managed within the device's settings. Before you start, ensure your Ledger device is running the latest firmware. This ensures compatibility and access to all security updates. The process involves navigating to the security menu and selecting the passphrase option. From there, you have two choices for setting it up.
Initial Setup on the Device
First, you must enable the passphrase feature on the hardware wallet itself. This is not done within the Ledger Live application. The entire setup happens on the device to maintain security. You will use the device's buttons to navigate the menus and input your chosen passphrase.
- Power on your Ledger device and unlock it with your primary PIN.
- Navigate to "Settings" on the device's main menu and press both buttons to enter.
- Scroll to "Security" and enter that submenu.
- Find and select the "Passphrase" option.
- You will be presented with two options: "Set temporary" and "Attach to PIN." Read the on-screen instructions carefully before proceeding.
Attaching a Passphrase to a PIN
Attaching a passphrase to a PIN is the most convenient method for regular use. This links your hidden wallet to a second, separate PIN code. Unlocking your device with this second PIN will directly open your hidden wallet accounts. Unlocking with your original PIN will open your main accounts. It is an excellent way to manage both wallets on one device.
- Choose "Attach to PIN" in the Passphrase menu.
- Enter and confirm a new, secondary PIN. This PIN must be different from your main PIN.
- Next, enter your chosen passphrase. This can be up to 100 characters long and is case-sensitive.
- Confirm your passphrase by re-entering it.
- Finally, enter your original, primary PIN to confirm the action.
- Your device will now have two PINs. One for the main wallet and one for your new hidden wallet.
Methods for Accessing Passphrase Account Funds
Accessing passphrase account funds requires re-entering the passphrase on your device each time you want to use them. The Ledger Live software simply reflects the accounts that are active on the unlocked hardware wallet. Therefore, the method you use to unlock your device determines which accounts Ledger Live displays. This design ensures your passphrase never leaves the secure environment of the hardware wallet.
Temporary Session Access

Temporary access is useful for infrequent use of a hidden wallet. It avoids linking the wallet to a permanent second PIN. To use this method, you select "Set temporary" in the passphrase menu on your device. You then enter the passphrase for the hidden wallet you wish to access. For that session, your Ledger device will operate the hidden wallet. Ledger Live will show the corresponding accounts. Once you disconnect or power down the device, the connection is broken. You must repeat the process for the next session.
PIN-Based Access
PIN-based access streamlines the process of accessing passphrase account funds. If you have attached a passphrase to a secondary PIN, you just need to enter that specific PIN at startup. The device will then unlock and give access to the associated hidden wallet. Ledger Live will automatically sync and display these accounts. This is the recommended method for users who frequently access their hidden wallet. It removes the need to type a potentially long passphrase each time. A rare Ledger live synchronization error can sometimes occur, but usually reconnecting the device resolves it.
The Strategic Advantage of Plausible Deniability Crypto Security
True plausible deniability crypto protection is the main benefit of a hidden wallet. This concept is vital in situations where you might be forced to grant someone access to your assets. With a hidden wallet, you can reveal a primary wallet with a small or trivial amount of funds. This "decoy" wallet satisfies the aggressor's demands. Your main holdings, secured by the passphrase, remain undiscovered and safe. It provides a credible denial that you have any other funds.
Protection Against Physical Threats
Physical threats, often called "$5 wrench attacks," are a real risk for crypto owners. In such a scenario, an attacker forces you to unlock your hardware wallet. With a standard setup, this means you lose everything. Using the Ledger passphrase feature changes the game. You can comply by entering your main PIN, revealing your decoy wallet. The attacker has no way of knowing a much larger, hidden wallet exists. This makes the plausible deniability crypto security model a powerful defense mechanism.
Separating Your Crypto Stacks
Beyond security, hidden wallets are great for financial organization. You can create different hidden wallets for different purposes using unique passphrases. For example, you could have one for long-term savings, another for trading, and a third for experimental assets. This keeps your portfolios separate and easier to manage. You might use one hidden wallet exclusively for long-term holds like ethereum 2.0 staking, while your main account handles daily transactions. This clean separation prevents accidental spending of your savings.
What Are the Inherent Risks of Passphrase Usage?
Understanding the risks of passphrase implementation is critical before you begin. While this advanced security feature offers major benefits, it also introduces new responsibilities. The security of the passphrase-protected funds rests entirely on you. There are no backup or recovery mechanisms for the passphrase itself. Forgetting or losing it means your crypto is gone forever. You must be confident in your ability to manage this secret information over the long term.
The main risks of passphrase usage are centered on human error. Ledger cannot help you recover a lost or forgotten passphrase because they never have access to it. It is never stored on the device or transmitted anywhere. This is a feature, not a bug, but it places all responsibility on the user.
- Forgetting the Passphrase: The most significant risk is forgetting the passphrase. If this happens, the funds in the hidden wallet are permanently lost. There is no recovery process.
- Typographical Errors: A single typo in your passphrase will create a different, empty wallet. This can cause panic and lead you to believe your funds are lost, when in fact you have just accessed the wrong wallet.
- Loss of Physical Backup: If you write your passphrase down, the security of that physical backup is critical. If it is lost, stolen, or destroyed, you lose access to your funds.
- Complexity: Managing a 24-word phrase, a main PIN, a passphrase, and a secondary PIN adds complexity. This complexity increases the chance of making a mistake.
Using Your Hidden Wallet with Ledger Live and Third-Party Apps
For a hidden wallet, Ledger Live integration is seamless once you unlock the device with the correct PIN or temporary passphrase. The app does not know whether it is communicating with a main wallet or a hidden one. It simply displays the accounts generated by the private keys currently active on your connected hardware wallet. This ensures your passphrase remains secure on the device, never being exposed to your computer or smartphone.
Managing assets, including a potentially unsupported erc20 token, works the same way. You would connect your Ledger to a compatible third-party wallet like MyEtherWallet or MetaMask. Again, the third-party wallet just communicates with the active set of accounts on the device. Making transactions also requires the same diligence, where understanding network fees is essential for timely confirmation. The hidden wallet functions just like a normal wallet in this regard.
Comparing Security Features and Tools
An advanced security feature like the passphrase sets Ledger apart from some competitors. Not all hardware wallets offer this level of protection. When choosing a device, it is useful to see a full supported features battle to compare options on the market. Furthermore, securing your setup involves more than just the device. Protecting your 24-word recovery phrase is just as important. For this, many users invest in robust steel backups to protect their seed from fire, water, and physical damage.
Essential Accessories for Your Ledger Setup
Securing your recovery phrase is paramount. Paper backups can be easily lost or destroyed. Using a metal storage solution provides far greater durability and peace of mind. Here is a comparison of some popular options for backing up your 24-word recovery phrase.
| Accessory | Approximate Price | Compatibility | Use Case |
|---|---|---|---|
| Billfodl | $99 | Any 12 or 24-word seed | Fireproof, waterproof, and shockproof stainless steel seed storage. |
| Cryptosteel Capsule | $159 | Any 12 or 24-word seed | Tubular steel design that holds engraved letter tiles for seed phrase backup. |
| Ledger Cryptosteel | $109 | Any 24-word seed | A stainless steel card that securely stores the first four letters of each recovery word. |
| Faraday Bag | $20 | All electronic devices | Blocks all wireless signals, protecting the device from remote tampering or data skimming. |
Frequently Asked Questions About the 25th Word Passphrase
Many users have questions about the 25th word passphrase. It is an advanced tool, so it is natural to want more clarity. Its correct use is vital for asset security. Below are answers to some of the most common inquiries. Getting to know these details helps you decide if this feature is right for your security model. What is a Hidden Wallet (Passphrase) in Ledger? Find Out more through these common questions.
Question: How is a passphrase different from my PIN?
Answer: Your PIN is a short numeric code (4-8 digits) that unlocks your Ledger device. A passphrase is a longer, alphanumeric secret word (up to 100 characters) that creates a new set of wallets. You can even attach a passphrase to a second, alternate PIN.
Question: Is my passphrase stored on my Ledger device?
Answer: No. The passphrase is never stored on the device or anywhere else. It is used temporarily in the device's memory to generate your hidden wallet's keys and then discarded. This is a key part of the security design.
Question: What happens if I enter the wrong passphrase?
Answer: Entering an incorrect passphrase will open a valid but empty new wallet. This is because every unique passphrase generates a unique wallet. It can be alarming, but your funds are safe as long as you can remember and enter the correct passphrase.
Question: Can Ledger help me recover a lost passphrase?
Answer: No. Ledger has no knowledge of and no way to recover your passphrase. The full responsibility for remembering and securing your passphrase lies with you. Losing it means losing access to the associated funds forever.
Question: Can I create more than one hidden wallet?
Answer: Yes. You can create a virtually unlimited number of hidden wallets. Each unique 25th word passphrase will generate a completely separate wallet with its own accounts. This allows for complex asset organization.