๐
Original date posted:2021-03-19
๐ Original message:I recently found some interesting and simple HD wallet design here: https://bitcointalk.org/index.php?topic=5321992.0
Could anyone see any flaws in such design or is it safe enough to implement it and use in practice?
If I understand it correctly, it is just pure ECDSA and SHA-256, nothing else:
masterPublicKey = masterPrivateKey * G
masterChildPublicKey = masterPublicKey + ( SHA-256( masterPublicKey || nonce ) mod n ) * G
masterChildPrivateKey = masterPrivateKey + ( SHA-256( masterPublicKey || nonce ) mod n )
Also, it has some nice properties, like all keys starting with 02 prefix and allows potentially unlimited custom derivation path by using 256-bit nonce.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20210319/84226cbf/attachment.html>;
vjudeu [ARCHIVE] /
npub1mxโฆnqexn
2023-06-07 18:30:58
in reply to nevent1qโฆle4c
Author Public Key
npub1mxz2kkpp4z07x65rxwr6gsksd9cnwn0q22lx874t63dh6uulsy7qxnqexnPublished at
2023-06-07 18:30:58Event JSON
{
"id": "f5cb399da17b6aef27fb8b7ab11a8cd59afa750b4ca34b708182299ecb3fea06",
"pubkey": "d984ab5821a89fe36a833387a442d06971374de052be63faabd45b7d739f813c",
"created_at": 1686162658,
"kind": 1,
"tags": [
[
"e",
"69708790841c33eb579cf900d3977a71d1f4f272db7c13d1670b70f61a12c1cb",
"",
"reply"
],
[
"p",
"a23dbf6c6cc83e14cc3df4e56cc71845f611908084cfe620e83e40c06ccdd3d0"
]
],
"content": "๐
Original date posted:2021-03-19\n๐ Original message:I recently found some interesting and simple HD wallet design here: https://bitcointalk.org/index.php?topic=5321992.0\nCould anyone see any flaws in such design or is it safe enough to implement it and use in practice?\nIf I understand it correctly, it is just pure ECDSA and SHA-256, nothing else:\nmasterPublicKey = masterPrivateKey * G\nmasterChildPublicKey = masterPublicKey + ( SHA-256( masterPublicKey || nonce ) mod n ) * G\nmasterChildPrivateKey = masterPrivateKey + ( SHA-256( masterPublicKey || nonce ) mod n )\nAlso, it has some nice properties, like all keys starting with 02 prefix and allows potentially unlimited custom derivation path by using 256-bit nonce.\n-------------- next part --------------\nAn HTML attachment was scrubbed...\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20210319/84226cbf/attachment.html\u003e",
"sig": "66d759b59c81a264d4001764f5d46477cb5aae2c789865da8dee340d620a25fca3006273c7679e5b3d9b8eb69e2acda4a86e8ca912e1e42fb3e4c15272c58216"
}