๐
Original date posted:2016-09-09
๐ Original message:The alert system was a centralized facility to allow trusted parties
to send messages to be displayed in wallet software (and, very early
on, actually remotely trigger the software to stop transacting).
It has been removed completely in Bitcoin Core after being disabled for a while.
While the system had some potential uses, there were a number of
problems with it.
The alert system was a frequent source of misunderstanding about the
security model and 'effective governance', for example a years ago a
BitcoinJ developer wanted it to be used to control fee levels on the
network and few months back one of Bloq's staff was pushing for a
scheme where "the developers" would use it to remotely change the
difficulty-- apparently with no idea how abhorrent others would find
it.
The system also had a problem of not being scalable to different
software vendors-- it didn't really make sense that core would have
that facility but armory had to do something different (nor would it
really make sense to constantly have to maintain some list of keys in
the node software).
It also had the problem of being unaccountable. No one can tell which
of the key holders created a message. This creates a risk of misuse
with a false origin to attack someone's reputation.
Finally, there is good reason to believe that the key has been
compromised-- It was provided to MTGox by a developer and MTGox's
systems' were compromised and later their CEO's equipment taken by the
Japanese police.
In any case, it's gone now in Core and most other current software--
and I think it's time to fully deactivate it.
I've spent some time going around the internet looking for all
software that contains this key (which included a few altcoins) and
asked them to remove it. I will continue to do that.
One of the facilities in the alert system is that you can send a
maximum sequence alert which cannot be overridden and displays only a
static key compromise text message and blocks all other alerts. I plan
to send a triggering alert in the not-distant future (exact time to be
announced well in advance) feedback on timing would be welcome.
There are likely a few production systems that automatically shut down
when there is an alert, so this risks some small one-time disruption
of those services-- but none worse than if an alert were sent to
advise about a new system upgrade.
At some point after that, I would then plan to disclose this private
key in public, eliminating any further potential of reputation attacks
and diminishing the risk of misunderstanding the key as some special
trusted source of authority.
Cheers,
Gregory Maxwell [ARCHIVE] /
npub1f2โฆcrwet
2023-06-07 17:53:17
in reply to nevent1qโฆatxl
Author Public Key
npub1f2nvlx49er5c7sqa43src6ssyp6snd4qwvtkwm5avc2l84cs84esecrwetPublished at
2023-06-07 17:53:17Event JSON
{
"id": "d1bf219518eaccf7ca8ff85043d4ec9dd9d28c8cf59eb1957c74f1c16978875e",
"pubkey": "4aa6cf9aa5c8e98f401dac603c6a10207509b6a07317676e9d6615f3d7103d73",
"created_at": 1686160397,
"kind": 1,
"tags": [
[
"e",
"ed97aecfd7231dd89e72db761c8234f2651c42cb9220c0490f6193a4323e2abb",
"",
"reply"
],
[
"p",
"a23dbf6c6cc83e14cc3df4e56cc71845f611908084cfe620e83e40c06ccdd3d0"
]
],
"content": "๐
Original date posted:2016-09-09\n๐ Original message:The alert system was a centralized facility to allow trusted parties\nto send messages to be displayed in wallet software (and, very early\non, actually remotely trigger the software to stop transacting).\n\nIt has been removed completely in Bitcoin Core after being disabled for a while.\n\nWhile the system had some potential uses, there were a number of\nproblems with it.\n\nThe alert system was a frequent source of misunderstanding about the\nsecurity model and 'effective governance', for example a years ago a\nBitcoinJ developer wanted it to be used to control fee levels on the\nnetwork and few months back one of Bloq's staff was pushing for a\nscheme where \"the developers\" would use it to remotely change the\ndifficulty-- apparently with no idea how abhorrent others would find\nit.\n\nThe system also had a problem of not being scalable to different\nsoftware vendors-- it didn't really make sense that core would have\nthat facility but armory had to do something different (nor would it\nreally make sense to constantly have to maintain some list of keys in\nthe node software).\n\nIt also had the problem of being unaccountable. No one can tell which\nof the key holders created a message. This creates a risk of misuse\nwith a false origin to attack someone's reputation.\n\nFinally, there is good reason to believe that the key has been\ncompromised-- It was provided to MTGox by a developer and MTGox's\nsystems' were compromised and later their CEO's equipment taken by the\nJapanese police.\n\nIn any case, it's gone now in Core and most other current software--\nand I think it's time to fully deactivate it.\n\nI've spent some time going around the internet looking for all\nsoftware that contains this key (which included a few altcoins) and\nasked them to remove it. I will continue to do that.\n\nOne of the facilities in the alert system is that you can send a\nmaximum sequence alert which cannot be overridden and displays only a\nstatic key compromise text message and blocks all other alerts. I plan\nto send a triggering alert in the not-distant future (exact time to be\nannounced well in advance) feedback on timing would be welcome.\n\nThere are likely a few production systems that automatically shut down\nwhen there is an alert, so this risks some small one-time disruption\nof those services-- but none worse than if an alert were sent to\nadvise about a new system upgrade.\n\nAt some point after that, I would then plan to disclose this private\nkey in public, eliminating any further potential of reputation attacks\nand diminishing the risk of misunderstanding the key as some special\ntrusted source of authority.\n\nCheers,",
"sig": "5f9a4fedaa8be087c655638af803c51d348d73f11bea25175a487f457023423f8cbd0fb937bd3ec3662c793d2ac9633f6db1cff8f245db75dba05a75a09e96e8"
}