wow, with all the feature requests and bug fixing that needs to be done you want to go off on a tangent.<div><br></div><div>Vision my friend, once centered on robust architecture, may then be directed on a hard left turn. <br>
<br></div><div>Lets get a feature road map done, bug fix and testing framework set up </div><div><br></div><div>... or fork this puppy to folks that can execute the above.</div><div><br></div><div>-rick</div><div><br><div class="gmail_quote">
On Wed, Aug 24, 2011 at 8:12 AM, Gavin Andresen <span dir="ltr">&lt;<a href="mailto:gavinandresen@gmail.com">gavinandresen@gmail.com</a>&gt;</span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
It seems to me the fastest path to very secure, very-hard-to-lose<br>
bitcoin wallets is multi-signature transactions.<br>
<br>
To organize this discussion: first, does everybody agree?<br>
<br>
ByteCoin pointed to a research paper that gives a scheme for splitting<br>
a private key between two people, neither of which every knows the<br>
full key, but, together, both can DSA-sign transactions.  That&#39;s very<br>
cool, but it involves high-end cutting-edge crypto like zero-knowledge<br>
proofs that I know very little about (are implementations available?<br>
are they patented?  have they been thoroughly vetted/tested?  etc).<br>
So I&#39;m assuming that is NOT the fastest way to solving the problem.<br>
<br>
If anybody has some open-source, patent-free, thoroughly-tested code<br>
that already does DSA-key-splitting, speak up please.<br>
<br>
<br>
I&#39;ve been trying to get consensus on low-level &#39;standard&#39; transactions<br>
for transactions that must be signed by 2 or 3 keys; current draft<br>
proposal is here:<br>
 <a href="https://gist.github.com/39158239e36f6af69d6f" target="_blank">https://gist.github.com/39158239e36f6af69d6f</a><br>
and discussion on the forums here:<br>
 <a href="https://bitcointalk.org/index.php?topic=38928.0" target="_blank">https://bitcointalk.org/index.php?topic=38928.0</a><br>
... and there is a pull request that is relevant here:<br>
 <a href="https://github.com/bitcoin/bitcoin/pull/319" target="_blank">https://github.com/bitcoin/bitcoin/pull/319</a><br>
<br>
<br>
I still think it is a good idea to enable a set of new &#39;standard&#39;<br>
multisignature transactions, so they get relayed and included into<br>
blocks.  I don&#39;t want to let &quot;the perfect become the enemy of the<br>
good&quot; -- does anybody disagree?<br>
<br>
The arguments against are that if the proposed standard transactions<br>
are accepted, then the next step is to define a new kind of bitcoin<br>
address that lets coins be deposited into a multisignature-protected<br>
wallet.<br>
<br>
And those new as-yet-undefined bitcoin addresses will have to be 2 or<br>
3 times as big as current bitcoin addresses, and will be incompatible<br>
with old clients.<br>
<br>
So, if we are going to have new releases that are incompatible with<br>
old clients why not do things right in the first place, implement or<br>
enable opcodes so the new bitcoin addresses can be small, and schedule<br>
a block chain split for N months from now.<br>
<br>
My biggest worry is we&#39;ll say &quot;Sure, it&#39;ll only take a couple days to<br>
agree on how to do it right&quot; and six months from now there is still no<br>
consensus on exactly which digest function should be used, or whether<br>
or not there should be a new opcode for arbitrary boolean expressions<br>
involving keypairs.  And people&#39;s wallets continue to get lost or<br>
stolen.<br>
<br>
<br>
<br>
--<br>
--<br>
Gavin Andresen<br>
<br>
------------------------------------------------------------------------------<br>
EMC VNX: the world&#39;s simplest storage, starting under $10K<br>
The only unified storage solution that offers unified management<br>
Up to 160% more powerful than alternatives and 25% more efficient.<br>
Guaranteed. <a href="http://p.sf.net/sfu/emc-vnx-dev2dev" target="_blank">http://p.sf.net/sfu/emc-vnx-dev2dev</a><br>
_______________________________________________<br>
Bitcoin-development mailing list<br>
<a href="mailto:Bitcoin-development@lists.sourceforge.net">Bitcoin-development@lists.sourceforge.net</a><br>
<a href="https://lists.sourceforge.net/lists/listinfo/bitcoin-development" target="_blank">https://lists.sourceforge.net/lists/listinfo/bitcoin-development</a><br>
</blockquote></div><br></div>