--- Log opened Mon Aug 06 00:00:32 2018 00:13 -!- TheoStorm [~dnaleor@78-23-74-78.access.telenet.be] has joined #bitcoin-wizards 00:30 -!- himanshu_ [~himanshu@123.201.7.2] has quit [Quit: Konversation terminated!] 00:30 -!- himanshu_ [~himanshu@123.201.7.2] has joined #bitcoin-wizards 00:37 -!- enemabandit [bc25e3b9@gateway/web/freenode/ip.188.37.227.185] has joined #bitcoin-wizards 00:44 -!- himanshu_ [~himanshu@123.201.7.2] has quit [Quit: Konversation terminated!] 00:53 -!- himanshu_ [~himanshu@123.201.7.2] has joined #bitcoin-wizards 01:02 -!- setpill [~setpill@unaffiliated/setpill] has joined #bitcoin-wizards 01:06 -!- Krellan [~Krellan@2601:640:4000:9258:70af:fd9e:f740:bbce] has quit [Read error: Connection reset by peer] 01:07 -!- Krellan [~Krellan@2601:640:4000:9258:70af:fd9e:f740:bbce] has joined #bitcoin-wizards 01:30 -!- Krellan [~Krellan@2601:640:4000:9258:70af:fd9e:f740:bbce] has quit [Ping timeout: 265 seconds] 01:53 -!- uiuc-slack2 [~uiuc-slac@li175-104.members.linode.com] has quit [Remote host closed the connection] 01:54 -!- uiuc-slack [~uiuc-slac@li175-104.members.linode.com] has joined #bitcoin-wizards 02:03 -!- enemabandit [bc25e3b9@gateway/web/freenode/ip.188.37.227.185] has quit [Ping timeout: 252 seconds] 02:05 -!- grubles [~grubles@unaffiliated/grubles] has quit [Remote host closed the connection] 02:05 -!- grubles [~grubles@unaffiliated/grubles] has joined #bitcoin-wizards 02:07 -!- maaku [~maaku@173.234.25.100] has quit [Ping timeout: 268 seconds] 02:07 -!- maaku [~maaku@173.234.25.100] has joined #bitcoin-wizards 02:14 -!- himanshu_ [~himanshu@123.201.7.2] has quit [Remote host closed the connection] 02:14 -!- himanshu_ [~himanshu@123.201.7.2] has joined #bitcoin-wizards 02:46 -!- deusexbeer [~deusexbee@079-170-138-109-dynamic-pool-adsl.wbt.ru] has joined #bitcoin-wizards 03:10 -!- enemabandit [bc25e3b9@gateway/web/freenode/ip.188.37.227.185] has joined #bitcoin-wizards 03:17 -!- AaronvanW [~AaronvanW@unaffiliated/aaronvanw] has joined #bitcoin-wizards 03:19 -!- Aaronvan_ [~AaronvanW@unaffiliated/aaronvanw] has joined #bitcoin-wizards 03:22 -!- AaronvanW [~AaronvanW@unaffiliated/aaronvanw] has quit [Ping timeout: 264 seconds] 03:29 -!- Kaizen_ [~kaizen_@2605:a601:b021:f00:40bf:31fc:9ffb:befc] has joined #bitcoin-wizards 03:32 -!- thrmo [~thrmo@gateway/tor-sasl/thrmo] has quit [Quit: Waiting for .007] 03:33 -!- Kaizen_ [~kaizen_@2605:a601:b021:f00:40bf:31fc:9ffb:befc] has quit [Ping timeout: 260 seconds] 04:04 -!- marcoagner [~user@156.97.60.94.rev.vodafone.pt] has joined #bitcoin-wizards 04:10 -!- himanshu_ [~himanshu@123.201.7.2] has quit [Remote host closed the connection] 04:11 -!- himanshu_ [~himanshu@123.201.7.2] has joined #bitcoin-wizards 04:16 -!- Chris_Stewart_5 [~chris@unaffiliated/chris-stewart-5/x-3612383] has joined #bitcoin-wizards 04:18 -!- SopaXorzTaker [~SopaXorzT@unaffiliated/sopaxorztaker] has joined #bitcoin-wizards 04:27 -!- vcorem [~vcorem@31.154.51.166] has quit [Ping timeout: 256 seconds] 04:27 -!- vcorem [~vcorem@31.154.51.166] has joined #bitcoin-wizards 04:31 -!- d9b4bef9 [~d9b4bef9@web501.webfaction.com] has quit [Remote host closed the connection] 04:32 -!- d9b4bef9 [~d9b4bef9@web501.webfaction.com] has joined #bitcoin-wizards 04:33 -!- thrmo [~thrmo@gateway/tor-sasl/thrmo] has joined #bitcoin-wizards 04:46 -!- thrmo [~thrmo@gateway/tor-sasl/thrmo] has quit [Quit: Waiting for .007] 04:58 -!- enemabandit [bc25e3b9@gateway/web/freenode/ip.188.37.227.185] has quit [Quit: Page closed] 05:07 -!- wildermind [uid300433@gateway/web/irccloud.com/x-pwfussswgfpqjwhe] has joined #bitcoin-wizards 05:25 -!- Aaronvan_ [~AaronvanW@unaffiliated/aaronvanw] has quit [Remote host closed the connection] 05:25 -!- AaronvanW [~AaronvanW@unaffiliated/aaronvanw] has joined #bitcoin-wizards 05:30 -!- AaronvanW [~AaronvanW@unaffiliated/aaronvanw] has quit [Ping timeout: 256 seconds] 05:35 -!- laurentmt [~Thunderbi@185.94.189.190] has joined #bitcoin-wizards 05:39 -!- Chris_Stewart_5 [~chris@unaffiliated/chris-stewart-5/x-3612383] has quit [Ping timeout: 240 seconds] 06:03 -!- Guyver2 [AdiIRC@guyver2.xs4all.nl] has joined #bitcoin-wizards 06:10 -!- funnymaths [funnymaths@gateway/vpn/privateinternetaccess/funnymaths] has quit [Remote host closed the connection] 06:18 -!- RubenSomsen [uid301948@gateway/web/irccloud.com/x-airyavzezjonnmwh] has quit [Quit: Connection closed for inactivity] 06:28 -!- funnymaths [funnymaths@gateway/vpn/privateinternetaccess/funnymaths] has joined #bitcoin-wizards 06:41 -!- Chris_Stewart_5 [~chris@unaffiliated/chris-stewart-5/x-3612383] has joined #bitcoin-wizards 07:02 -!- TheoStorm [~dnaleor@78-23-74-78.access.telenet.be] has quit [Quit: Leaving] 07:09 -!- Guyver2 [AdiIRC@guyver2.xs4all.nl] has quit [Quit: Going offline, see ya! (www.adiirc.com)] 07:11 -!- himanshu_ [~himanshu@123.201.7.2] has quit [Remote host closed the connection] 07:22 -!- satwo [~textual@2602:306:378a:6fb0:7ca8:31cd:9b3e:a56c] has joined #bitcoin-wizards 07:23 -!- wbnns_ [sid105317@gateway/web/irccloud.com/x-xaiucxkqsielwmgm] has joined #bitcoin-wizards 07:23 -!- ChristopherA_ [sid152849@gateway/web/irccloud.com/x-wjozryoqbqarapem] has joined #bitcoin-wizards 07:24 -!- Lightsword_ [~Lightswor@2604:a880:1:20::1d3:9001] has joined #bitcoin-wizards 07:24 -!- BCBot_ [~BCBot@46.101.246.115] has joined #bitcoin-wizards 07:25 -!- erwounn_ [~eatounno@ubuntu1604-006.student.cs.uwaterloo.ca] has joined #bitcoin-wizards 07:26 -!- sipa_ [~pw@2001:19f0:ac01:2fb:5400:ff:fe5b:c3ff] has joined #bitcoin-wizards 07:26 -!- zxzzt_ [~prod@static-100-38-11-146.nycmny.fios.verizon.net] has joined #bitcoin-wizards 07:26 -!- ChristopherA [sid152849@gateway/web/irccloud.com/x-jjkxvdxjuicwrale] has quit [Ping timeout: 240 seconds] 07:26 -!- wallet42 [sid154231@gateway/web/irccloud.com/x-wdvwhyqeoqjlvrgz] has quit [Ping timeout: 240 seconds] 07:26 -!- sipa [~pw@unaffiliated/sipa1024] has quit [Ping timeout: 240 seconds] 07:26 -!- wbnns [sid105317@21/bitcoin/binns] has quit [Ping timeout: 240 seconds] 07:26 -!- Gurgulor [~Gurgulor@bnc.stormbit.net] has quit [Ping timeout: 240 seconds] 07:27 -!- erwounn [~eatounno@ubuntu1604-006.student.cs.uwaterloo.ca] has quit [Ping timeout: 240 seconds] 07:27 -!- dEBRUYNE [~dEBRUYNE@unaffiliated/debruyne] has quit [Ping timeout: 240 seconds] 07:27 -!- Jeremy_Rand[m] [jeremyrand@gateway/shell/matrix.org/x-brndjppmkjtpivbo] has quit [Ping timeout: 240 seconds] 07:27 -!- huseby [~huseby@unaffiliated/huseby] has quit [Ping timeout: 240 seconds] 07:27 -!- zxzzt [~prod@static-100-38-11-146.nycmny.fios.verizon.net] has quit [Ping timeout: 240 seconds] 07:27 -!- Lightsword [~Lightswor@2604:a880:1:20::1d3:9001] has quit [Ping timeout: 240 seconds] 07:27 -!- BCBot [~BCBot@46.101.246.115] has quit [Ping timeout: 240 seconds] 07:27 -!- dEBRUYNE_ [~dEBRUYNE@192.241.181.177] has joined #bitcoin-wizards 07:27 -!- Lightsword_ is now known as Lightsword 07:30 < waxwing> might be of interest (haven't read it): https://eprint.iacr.org/2018/209 Auditable Sharing of Private Data over Blockchains 07:30 -!- p0nziph0ne- [p0nziph0ne@gateway/vpn/privateinternetaccess/p0nziph0ne] has quit [Ping timeout: 264 seconds] 07:31 -!- Jeremy_Rand[m] [jeremyrand@gateway/shell/matrix.org/x-vofmuelglerkmukj] has joined #bitcoin-wizards 07:32 -!- michaelsdunn1 [~michaelsd@38.126.31.226] has joined #bitcoin-wizards 07:33 -!- huseby [~huseby@unaffiliated/huseby] has joined #bitcoin-wizards 07:35 -!- dEBRUYNE_ [~dEBRUYNE@192.241.181.177] has left #bitcoin-wizards ["Leaving"] 07:36 -!- laurentmt [~Thunderbi@185.94.189.190] has quit [Quit: laurentmt] 07:37 -!- RubenSomsen [uid301948@gateway/web/irccloud.com/x-ubtxzkdxmlkpgyca] has joined #bitcoin-wizards 07:39 -!- dEBRUYNE [~dEBRUYNE@unaffiliated/debruyne] has joined #bitcoin-wizards 07:39 -!- Gurgulor [~Gurgulor@bnc.stormbit.net] has joined #bitcoin-wizards 07:42 < kanzure> for bip32 things (or other key derivation schemes), would it make sense to ask people to sign their child keys with their master keys, to prove that the owner of the parent key actually knows about the bip32 child key derivation path? 07:43 < kanzure> otherwise someone would hand you a bip32 child key, a bip32 path, and a parent key, and show that yes it's derived from the parent, but that doesn't really mean the owner knows about the bip32 path 07:44 -!- p0nziph0ne- [p0nziph0ne@gateway/vpn/privateinternetaccess/p0nziph0ne] has joined #bitcoin-wizards 07:50 -!- bsm117532 [~mcelrath@c-24-61-245-53.hsd1.ma.comcast.net] has joined #bitcoin-wizards 07:51 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Remote host closed the connection] 07:51 -!- TheoStorm [~dnaleor@host-lzquwqj.cbn1.zeelandnet.nl] has joined #bitcoin-wizards 07:56 < bsm117532> I'm looking for kanzure's list of proposed bitcoin opcodes, if anyone has the link handy 07:57 < bsm117532> FYI I want to enumerate all the ways of implementing some kind of "covenant" for a compare/contrast project 07:57 < bsm117532> http://hackingdistributed.com/2016/02/26/how-to-implement-secure-bitcoin-vaults/ 07:59 < bsm117532> https://blog.sldx.com/re-imagining-cold-storage-with-timelocks-1f293bfe421f 08:00 < bsm117532> And then there's the Liquid OP_CHECKSIGSTACK blog post which I can't find right now. ^^ at least 3 ways I know to do it. 08:02 < bsm117532> ah there it is https://blockstream.com/2016/11/02/covenants-in-elements-alpha.html 08:05 -!- Emcy_ [~Emcy@unaffiliated/emcy] has quit [Quit: Leaving] 08:06 < bsm117532> In case anyone knows a 4th or 5th way to do it...I'm sure there are more... 08:07 < kanzure> https://blockstream.com/2016/11/02/covenants-in-elements-alpha.html 08:07 < kanzure> aaaaa you found it. blah. 08:08 -!- Emcy [~Emcy@unaffiliated/emcy] has joined #bitcoin-wizards 08:08 < kanzure> http://fc16.ifca.ai/bitcoin/papers/MES16.pdf 08:08 < kanzure> http://diyhpl.us/wiki/transcripts/scalingbitcoin/milan/covenants/ 08:08 < kanzure> https://en.bitcoin.it/wiki/User:Gmaxwell/covenant_busting 08:09 < kanzure> https://bitcointalk.org/index.php?topic=278122.0 08:09 < kanzure> for OP_CHECKSIGFROMSTACK see the following, 08:09 < kanzure> https://github.com/ElementsProject/elements/blob/df4c512ded4e76a3a6dd486761752a2c06389338/src/script/script.cpp#L29 08:09 < kanzure> http://diyhpl.us/wiki/transcripts/bitcoin-core-dev-tech/2017-09-07-merkleized-abstract-syntax-trees/ 08:09 < kanzure> http://diyhpl.us/wiki/transcripts/blockchain-protocol-analysis-security-engineering/2018/hardening-lightning/ 08:10 -!- satwo [~textual@2602:306:378a:6fb0:7ca8:31cd:9b3e:a56c] has quit [Read error: Connection reset by peer] 08:11 -!- Kaizen_ [~kaizen_@2605:a601:b021:f00:40bf:31fc:9ffb:befc] has joined #bitcoin-wizards 08:14 -!- Kaizen_ [~kaizen_@2605:a601:b021:f00:40bf:31fc:9ffb:befc] has quit [Remote host closed the connection] 08:20 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 08:22 < bsm117532> Thanks kanzure! I thought I remembered a single list of proposed opcodes...maybe I'm hallucinating... 08:25 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Ping timeout: 244 seconds] 08:27 < kanzure> i had a list of proposed exotic sighash types https://lists.linuxfoundation.org/pipermail/bitcoin-dev/2015-August/010759.html 08:29 -!- TheoStorm [~dnaleor@host-lzquwqj.cbn1.zeelandnet.nl] has quit [Ping timeout: 240 seconds] 08:31 -!- d9b4bef9 [~d9b4bef9@web501.webfaction.com] has quit [Remote host closed the connection] 08:34 -!- d9b4bef9 [~d9b4bef9@web501.webfaction.com] has joined #bitcoin-wizards 08:36 -!- Krellan [~Krellan@c-73-223-240-37.hsd1.ca.comcast.net] has joined #bitcoin-wizards 08:36 -!- nuncanada [~dude@179.235.129.226] has joined #bitcoin-wizards 08:41 -!- dvknv [~dvknv@cpe-74-140-134-27.cinci.res.rr.com] has quit [Remote host closed the connection] 08:41 -!- dvknv [~dvknv@cpe-74-140-134-27.cinci.res.rr.com] has joined #bitcoin-wizards 08:42 < kanzure> bsm117532: wow you were right, http://diyhpl.us/~bryan/irc/bitcoin/opcode-proposals.2016-04-29.txt 08:42 -!- samm__ [~samm@176-161-115-196.abo.bbox.fr] has joined #bitcoin-wizards 08:42 -!- TheoStorm [~dnaleor@host-lzquwqj.cbn1.zeelandnet.nl] has joined #bitcoin-wizards 08:44 < kanzure> it's missing OP_MERKLEBRANCHVERIFY. anything else? 08:46 < bsm117532> It's got all the ones I know about 08:46 -!- samm_ [~samm@176-161-115-196.abo.bbox.fr] has quit [Ping timeout: 244 seconds] 08:46 < bsm117532> Yeah it's that 2015 post that I'm remembering 08:47 -!- priidu [~priidu@unaffiliated/priidu] has joined #bitcoin-wizards 08:47 -!- priidu [~priidu@unaffiliated/priidu] has quit [Client Quit] 08:50 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 08:55 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Ping timeout: 248 seconds] 09:04 -!- Krellan [~Krellan@c-73-223-240-37.hsd1.ca.comcast.net] has quit [Ping timeout: 260 seconds] 09:10 -!- deusexbeer [~deusexbee@079-170-138-109-dynamic-pool-adsl.wbt.ru] has quit [Quit: Konversation terminated!] 09:18 -!- Krellan [~Krellan@2601:640:4000:9258:70af:fd9e:f740:bbce] has joined #bitcoin-wizards 09:38 < instagibbs> kanzure, why can't the prover just sign using the child key? 09:46 -!- thrmo [~thrmo@gateway/tor-sasl/thrmo] has joined #bitcoin-wizards 09:50 -!- setpill [~setpill@unaffiliated/setpill] has quit [Quit: o/] 09:55 -!- p0nziph0ne- is now known as p0nziph0ne 09:58 < kanzure> instagibbs: they could. i'm suggesting maybe it should be a recommendation that users ask for that signature before paying to some derived child key. 09:59 < kanzure> oh, you mean the child key provides the signature. ok fine. either way the recommendation is that the user should ask for at least one signature of something :-). 10:14 -!- Kaizen_ [~kaizen_@2605:a601:b021:f00:40bf:31fc:9ffb:befc] has joined #bitcoin-wizards 10:19 -!- Kaizen_ [~kaizen_@2605:a601:b021:f00:40bf:31fc:9ffb:befc] has quit [Ping timeout: 276 seconds] 10:30 -!- Krellan [~Krellan@2601:640:4000:9258:70af:fd9e:f740:bbce] has quit [Remote host closed the connection] 10:32 -!- Chris_Stewart_5 [~chris@unaffiliated/chris-stewart-5/x-3612383] has quit [Read error: Connection reset by peer] 10:33 -!- sipa_ [~pw@2001:19f0:ac01:2fb:5400:ff:fe5b:c3ff] has quit [Changing host] 10:33 -!- sipa_ [~pw@unaffiliated/sipa1024] has joined #bitcoin-wizards 10:33 -!- sipa_ is now known as sipa 10:35 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 10:37 -!- dougsland [~douglas@c-73-234-93-65.hsd1.nh.comcast.net] has joined #bitcoin-wizards 10:40 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Ping timeout: 256 seconds] 10:40 -!- CryptAxe [~CryptAxe@2400:8902::f03c:91ff:fe92:b2bd] has quit [Ping timeout: 255 seconds] 10:42 -!- dougsland [~douglas@c-73-234-93-65.hsd1.nh.comcast.net] has quit [Client Quit] 10:42 -!- dougsland [~douglas@c-73-234-93-65.hsd1.nh.comcast.net] has joined #bitcoin-wizards 10:43 -!- dougsland [~douglas@c-73-234-93-65.hsd1.nh.comcast.net] has quit [Changing host] 10:43 -!- dougsland [~douglas@tchelinux/moderator/dougsland] has joined #bitcoin-wizards 10:47 -!- CryptAxe [~CryptAxe@2400:8902::f03c:91ff:fe92:b2bd] has joined #bitcoin-wizards 10:52 -!- DougieBot5000_ [~DougieBot@unaffiliated/dougiebot5000] has joined #bitcoin-wizards 10:52 -!- shesek [~shesek@unaffiliated/shesek] has quit [Ping timeout: 240 seconds] 10:55 -!- Chris_Stewart_5 [~chris@unaffiliated/chris-stewart-5/x-3612383] has joined #bitcoin-wizards 10:55 -!- DougieBot5000 [~DougieBot@unaffiliated/dougiebot5000] has quit [Ping timeout: 264 seconds] 11:11 -!- sipa [~pw@unaffiliated/sipa1024] has quit [Quit: leaving] 11:13 -!- sipa [~pw@2001:19f0:ac01:2fb:5400:ff:fe5b:c3ff] has joined #bitcoin-wizards 11:25 -!- sipa [~pw@2001:19f0:ac01:2fb:5400:ff:fe5b:c3ff] has quit [Changing host] 11:25 -!- sipa [~pw@unaffiliated/sipa1024] has joined #bitcoin-wizards 11:29 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 11:31 -!- DougieBot5000_ is now known as DougieBot5000 11:33 -!- SopaXorzTaker [~SopaXorzT@unaffiliated/sopaxorztaker] has quit [Remote host closed the connection] 11:34 -!- SopaXorzTaker [~SopaXorzT@unaffiliated/sopaxorztaker] has joined #bitcoin-wizards 11:34 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Ping timeout: 240 seconds] 11:35 -!- SopaXorzTaker [~SopaXorzT@unaffiliated/sopaxorztaker] has quit [Remote host closed the connection] 11:37 -!- samm__ [~samm@176-161-115-196.abo.bbox.fr] has quit [Quit: Leaving] 11:47 -!- samm_ [~samm@176-161-115-196.abo.bbox.fr] has joined #bitcoin-wizards 11:56 -!- shesek [~shesek@bzq-84-110-54-115.cablep.bezeqint.net] has joined #bitcoin-wizards 11:56 -!- shesek [~shesek@bzq-84-110-54-115.cablep.bezeqint.net] has quit [Changing host] 11:56 -!- shesek [~shesek@unaffiliated/shesek] has joined #bitcoin-wizards 12:15 -!- TheoStorm [~dnaleor@host-lzquwqj.cbn1.zeelandnet.nl] has quit [Ping timeout: 240 seconds] 12:27 -!- TheoStorm [~dnaleor@host-lzquwqj.cbn1.zeelandnet.nl] has joined #bitcoin-wizards 12:36 -!- wizkid057 [~wk@unaffiliated/wizkid057] has quit [Read error: Connection reset by peer] 12:42 -!- wizkid057 [~wk@unaffiliated/wizkid057] has joined #bitcoin-wizards 12:51 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 12:56 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Ping timeout: 256 seconds] 13:02 -!- p0nziph0ne [p0nziph0ne@gateway/vpn/privateinternetaccess/p0nziph0ne] has quit [Quit: Leaving] 13:02 -!- schmidty [~schmidty@104-7-216-111.lightspeed.austtx.sbcglobal.net] has joined #bitcoin-wizards 13:02 -!- schmidty [~schmidty@104-7-216-111.lightspeed.austtx.sbcglobal.net] has quit [Changing host] 13:02 -!- schmidty [~schmidty@unaffiliated/schmidty] has joined #bitcoin-wizards 13:06 < arubi> I wonder if using the difference between (parent-child) as pubkey (the payer knows parent and child pubkeys") is enough to assert both ownership of both /and/ that one is a tweak of the other.. but yea by itself it doesn't prove bip32 explicitly without the path too 13:08 < arubi> it feels like it should prove ownership of both keys at least 13:11 < arubi> heh well you'll have to check that parent and child are not the same key, otherwise it's possible to sign any made up difference :) 13:17 -!- Krellan [~Krellan@50-242-94-241-static.hfc.comcastbusiness.net] has joined #bitcoin-wizards 13:17 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 13:21 -!- Guyver2 [AdiIRC@guyver2.xs4all.nl] has joined #bitcoin-wizards 13:26 < instagibbs> kanzure, what does this protect against? I always self-sign before handing out an address, just in case of 13:27 -!- son0p [~ff@181.137.68.184] has joined #bitcoin-wizards 13:31 -!- Krellan [~Krellan@50-242-94-241-static.hfc.comcastbusiness.net] has quit [Ping timeout: 240 seconds] 13:41 -!- otoburb [~otoburb@unaffiliated/otoburb] has quit [Quit: leaving] 13:42 -!- shesek [~shesek@unaffiliated/shesek] has quit [Ping timeout: 248 seconds] 13:45 -!- wildermind [uid300433@gateway/web/irccloud.com/x-pwfussswgfpqjwhe] has quit [Quit: Connection closed for inactivity] 13:57 < kanzure> instagibbs: er, but surely you know that most people don't self-sign. 13:58 -!- shesek [~shesek@bzq-84-110-60-110.red.bezeqint.net] has joined #bitcoin-wizards 13:58 -!- shesek [~shesek@bzq-84-110-60-110.red.bezeqint.net] has quit [Changing host] 13:58 -!- shesek [~shesek@unaffiliated/shesek] has joined #bitcoin-wizards 13:58 < kanzure> instagibbs: it's for situations where someone else is doing the derivation and handing someone else an address. they can prove it's a child key, and this can be used for later blackmail stuff. it's similar problems as ransomware. 14:02 < kanzure> .tw https://twitter.com/waxwing__/status/1026573197708275712 14:02 < yoleaux> @kanzure @n1ckler @adam3us @wintercooled Oh, your 2nd Q: the idea is to create a proof that the sighash preimage conforms to a certain structure: that it's a tx that the sender is expecting, but the input of the receiver is "blanked out"/blinded, then sender signs without learning input in advance (see previous attack) (@waxwing__, in reply to tw:1026559811931058176) 14:04 -!- Krellan [~Krellan@50-242-94-241-static.hfc.comcastbusiness.net] has joined #bitcoin-wizards 14:08 < waxwing> like, imagine proving the preimage is || || 14:14 < instagibbs> I think I'm missing the thread here. 14:17 -!- Emcy_ [~Emcy@unaffiliated/emcy] has joined #bitcoin-wizards 14:18 < kanzure> two separate threads. 14:21 -!- Emcy [~Emcy@unaffiliated/emcy] has quit [Ping timeout: 248 seconds] 14:27 -!- Xexe [~weechat@unaffiliated/xexe] has left #bitcoin-wizards [] 14:39 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Remote host closed the connection] 14:48 -!- deusexbeer [~deusexbee@079-170-138-109-dynamic-pool-adsl.wbt.ru] has joined #bitcoin-wizards 14:50 -!- Guyver2 [AdiIRC@guyver2.xs4all.nl] has quit [Quit: Going offline, see ya! (www.adiirc.com)] 14:52 -!- Chris_Stewart_5 [~chris@unaffiliated/chris-stewart-5/x-3612383] has quit [Ping timeout: 244 seconds] 14:55 -!- dougsland [~douglas@tchelinux/moderator/dougsland] has quit [Ping timeout: 264 seconds] 14:58 -!- uiuc-slack3 [~uiuc-slac@li175-104.members.linode.com] has joined #bitcoin-wizards 14:58 -!- uiuc-slack [~uiuc-slac@li175-104.members.linode.com] has quit [Read error: Connection reset by peer] 15:07 < gmaxwell> a ZKP over a sighash is a generically useful thing for many protocols. Reciever-joins use of it needs an extra round trip over the privacy-vulnerable obvious alternative, which is kinda sad. 15:07 -!- son0p [~ff@181.137.68.184] has quit [Quit: leaving] 15:10 < gmaxwell> What might be interesting is a ZKP that given sigh,althash,mask I know some tx such that H1(tx)==sigh && H2(tx | mask)==althash, and H2 can be selected to be cheap inside the ZKP at least. 15:11 < gmaxwell> as aside, this kind of structure really begs for sighash to be tree structured. 15:12 < gmaxwell> doing the current segwit sighasher inside a bulletproof is pretty painful. 15:12 < kanzure> merkle inclusion proofs for sighashes :-/ 15:12 < gmaxwell> but if the sighash just has a hashtree over inputs and outputs, you wouldn't even need a blinking zkp. 15:12 < gmaxwell> you'd just ... right, a merkle inclusion proof for the output. 15:13 < kanzure> on that note, other weird constructions too like: scriptsig/witness just specifies it's valid for any transaction of shape... oh you said as much. ok. 15:13 < arubi> I was just going to ask if a merkle tree was considered instead of the hash list for segwit in\outs 15:14 < gmaxwell> instagibbs: as for the context, some coinjoin workshop people have been revisiting the old idea that CJ txn are far more indistinguishable from ordinary txn if the participants are paying each other. In particular, the case where alice pays bob can be replaced with a bob and alice provide funds, bob takes payment, alice takes change. And this special case has a lot of nice properties. 15:14 -!- TheoStorm [~dnaleor@host-lzquwqj.cbn1.zeelandnet.nl] has quit [Ping timeout: 268 seconds] 15:15 < gmaxwell> In particular alice was already going to pay bob, so we can basically assume that bob is not a deanonymizing attacker (otherwise alice has worse problems). 15:15 < gmaxwell> It also consolidates bob's txouts, which he'll have a lot of if he's getting lots of small payments. Esp post signature aggregation this will save bob money. 15:17 < gmaxwell> main complications are: that bob's payments need to go into a hotwallet. Though (1) that already seems to be the norm, and (2) the hotwallet could be secured by a HSM signer that only signs for coinjoins. 15:17 < gmaxwell> And that alice can pretend to pay but fail, in order to enumerate bob's outputs. 15:17 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 15:17 < gmaxwell> Which is where the ZKP dreams come in. The idea is that you get alice to sign her payment before seeing which txins are bobs. 15:20 < gmaxwell> this kind of join with payee also has a nice property that failure to sign and doublespend DOS attacks are just not so interesting. 15:20 -!- dougsland [~douglas@c-73-234-93-65.hsd1.nh.comcast.net] has joined #bitcoin-wizards 15:21 < gmaxwell> e.g. bob doublespending his join would just make him not get paid! Alice doublespending it doesn't do anything to harm bob more than no-join case (other than temporarily tying up one of his otherwise idle outputs) 15:22 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Ping timeout: 264 seconds] 15:27 -!- TheoStorm [~dnaleor@host-lzquwqj.cbn1.zeelandnet.nl] has joined #bitcoin-wizards 15:44 -!- TheoStorm [~dnaleor@host-lzquwqj.cbn1.zeelandnet.nl] has quit [Ping timeout: 268 seconds] 15:57 -!- TheoStorm [~dnaleor@host-lzquwqj.cbn1.zeelandnet.nl] has joined #bitcoin-wizards 16:00 -!- michaelsdunn1 [~michaelsd@38.126.31.226] has quit [Remote host closed the connection] 16:14 -!- Emcy [~Emcy@unaffiliated/emcy] has joined #bitcoin-wizards 16:17 -!- Emcy_ [~Emcy@unaffiliated/emcy] has quit [Ping timeout: 240 seconds] 16:22 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 16:27 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Ping timeout: 256 seconds] 16:46 -!- licnep [uid4387@gateway/web/irccloud.com/x-wjddczerwgojibvz] has joined #bitcoin-wizards 17:03 -!- d9b4bef9 [~d9b4bef9@web501.webfaction.com] has quit [Remote host closed the connection] 17:04 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 17:08 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Ping timeout: 240 seconds] 17:45 -!- rusty [~rusty@pdpc/supporter/bronze/rusty] has joined #bitcoin-wizards 17:52 -!- Emcy_ [~Emcy@unaffiliated/emcy] has joined #bitcoin-wizards 17:56 -!- Emcy [~Emcy@unaffiliated/emcy] has quit [Ping timeout: 260 seconds] 18:02 -!- dougsland [~douglas@c-73-234-93-65.hsd1.nh.comcast.net] has quit [Ping timeout: 240 seconds] 18:08 -!- shesek [~shesek@unaffiliated/shesek] has quit [Ping timeout: 268 seconds] 18:18 < kanzure> "On the profitability of stubborn mining" https://arxiv.org/abs/1808.01041 18:20 -!- shesek [~shesek@bzq-84-110-232-149.cablep.bezeqint.net] has joined #bitcoin-wizards 18:20 -!- shesek [~shesek@bzq-84-110-232-149.cablep.bezeqint.net] has quit [Changing host] 18:20 -!- shesek [~shesek@unaffiliated/shesek] has joined #bitcoin-wizards 18:48 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 18:53 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Ping timeout: 244 seconds] 19:10 -!- d9b4bef9 [~d9b4bef9@web501.webfaction.com] has joined #bitcoin-wizards 19:15 -!- dougsland [~douglas@c-73-234-93-65.hsd1.nh.comcast.net] has joined #bitcoin-wizards 19:34 -!- dvknv_ [~dvknv@cpe-74-140-134-27.cinci.res.rr.com] has joined #bitcoin-wizards 19:38 -!- dvknv [~dvknv@cpe-74-140-134-27.cinci.res.rr.com] has quit [Ping timeout: 248 seconds] 19:38 -!- dvknv_ is now known as dvknv 19:40 -!- otoburb [~otoburb@unaffiliated/otoburb] has joined #bitcoin-wizards 20:06 -!- nuncanada [~dude@179.235.129.226] has quit [Ping timeout: 240 seconds] 20:34 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 20:38 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Ping timeout: 240 seconds] 20:50 -!- vicenteH [~user@54.104.135.37.dynamic.jazztel.es] has quit [Read error: Connection reset by peer] 20:50 -!- vicenteH [~user@54.104.135.37.dynamic.jazztel.es] has joined #bitcoin-wizards 21:18 -!- dougsland [~douglas@c-73-234-93-65.hsd1.nh.comcast.net] has quit [Ping timeout: 240 seconds] 21:45 -!- licnep [uid4387@gateway/web/irccloud.com/x-wjddczerwgojibvz] has quit [Quit: Connection closed for inactivity] 22:06 -!- mariorz_ is now known as mariorz 22:18 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 22:23 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Ping timeout: 264 seconds] 22:35 -!- Krellan [~Krellan@50-242-94-241-static.hfc.comcastbusiness.net] has quit [Remote host closed the connection] 22:44 < maaku> kanzure: looks like you want a real identity solution here. i don't think there's a simple silver bullet 23:12 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 23:16 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Ping timeout: 256 seconds] 23:22 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has joined #bitcoin-wizards 23:27 -!- tromp [~tromp@ip-217-103-3-94.ip.prioritytelecom.net] has quit [Ping timeout: 268 seconds] 23:38 -!- d9b4bef9 [~d9b4bef9@web501.webfaction.com] has quit [Remote host closed the connection] --- Log closed Tue Aug 07 00:00:33 2018