Protecting your account starts with two things: Your password and two-step verification (2FA).
Protection through security preferences
Your password is never shared with Blockchain or stored on our servers. We cannot access or reset your password.
The only way to restore your wallet is through your backup phrase. Make sure you write down your backup phrase which is the only way to restore access to your wallet in the event of a lost password.
Change your password by clicking Change.
If you have this enabled, your browser will be remembered for a short period of time, allowing you to login again without having to re-authenticate.
Disable this for complete security to require full authentication every time you login. This will not affect your current browser until you delete all cookies.
Protection through advanced settings
This section contains security preferences and information about the advanced security settings in your wallet. Do not modify the advanced settings unless you fully understand them and are an experienced cryptocurrency user.
This will allow a login without email verification from the following list of comma-separated IP addresses. Use % as a wildcard. To use this option, you'll need to have a verified email address.
Login IP Restriction
Only allow a login from IP addresses in the whitelist. If you do not have a static IP address, enabling this may lock you out of your wallet.
Wallet Access via Tor
If you are not familiar with Tor and have no interest in using it, we strongly encourage you to enable this option by clicking on Block to the right. This will prevent Tor network IP addresses from trying to access your wallet.
Password stretching (PBKDF2)
This increases the difficulty of discovering your password using a brute-force attack. Keep in mind that increasing the default number (5000) will slow down the loading and saving of your wallet.
To use our API and enable API access with your wallet, you can read over our documentation and request a key here.