📅 Original date posted:2011-08-24
🗒️ Summary of this message: Discussion on adding an RSA-like scheme for m-out-of-n signatures to Bitcoin. However, it does not solve the issue of malware on a PC. Proposed solution is to provide tools for offline wallets.
📝 Original message:On Aug 24, 2011 3:29 PM, "Gregory Maxwell" <gmaxwell at gmail.com> wrote:
>
> On Wed, Aug 24, 2011 at 3:05 PM, Christian Decker
> <decker.christian at gmail.com> wrote:
> > we could add an rsa-like scheme which allows m-out-of-n signatures. It
works
> > by distributing shares of the key which are points on a curve having the
> > actual key as 0-value. It does not require special length for the key so
if
> > ecdsa allows something similar there need not be anything changed.
>
> This works fine for ECC. But it requires that the composite key
> signer has simultaneous access to all the key-parts, so it doesn't
> solve the "my PC has malware" problem.
I don't think anything simple enough to actually be used by people in
general does. Same concept as what I proposed earlier before nanotube gave
me the context for Gavin's intent on irc.
Now that I'm understanding the use case I really think the best way to go
about this initially is like you said earlier.
Provide methods to export/import unsigned txns, provide methods to run the
GUI in a way that can track your own addresses with only pubkeys available
to the client, provide methods to sign and import/export/broadcast signed
txns.
With these tools offline wallets become feasible. Combined with wallet
crypto I think this is really the best that can be done to protect users
from themselves in a way that isn't too complicated for them to actually
use.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20110824/b20c936f/attachment.html>;
Douglas Huff [ARCHIVE] /
npub1xp…c6eq0
2023-06-07 02:18:48
in reply to nevent1q…z73l
Author Public Key
npub1xpryrka5nmn2vq9uum4qfjcvkfdne95l3ug4sxhdkcnndu4uu6eqrc6eq0Published at
2023-06-07 02:18:48Event JSON
{
"id": "9d071e9464c687585cfe0206adc1f3b5f285e6cafc1bb84ad602085fd310ad86",
"pubkey": "304641dbb49ee6a600bce6ea04cb0cb25b3c969f8f11581aedb62736f2bce6b2",
"created_at": 1686104328,
"kind": 1,
"tags": [
[
"e",
"391ebcb8eb3f9b5884cfbf66f4a99b12c015cc93baa9452c114d68f52d1168ec",
"",
"root"
],
[
"e",
"68c45b0891603a8eccc0f4b4e8d07c049d1e8c817df8bd47e3d327a706a169c2",
"",
"reply"
],
[
"p",
"4aa6cf9aa5c8e98f401dac603c6a10207509b6a07317676e9d6615f3d7103d73"
]
],
"content": "📅 Original date posted:2011-08-24\n🗒️ Summary of this message: Discussion on adding an RSA-like scheme for m-out-of-n signatures to Bitcoin. However, it does not solve the issue of malware on a PC. Proposed solution is to provide tools for offline wallets.\n📝 Original message:On Aug 24, 2011 3:29 PM, \"Gregory Maxwell\" \u003cgmaxwell at gmail.com\u003e wrote:\n\u003e\n\u003e On Wed, Aug 24, 2011 at 3:05 PM, Christian Decker\n\u003e \u003cdecker.christian at gmail.com\u003e wrote:\n\u003e \u003e we could add an rsa-like scheme which allows m-out-of-n signatures. It\nworks\n\u003e \u003e by distributing shares of the key which are points on a curve having the\n\u003e \u003e actual key as 0-value. It does not require special length for the key so\nif\n\u003e \u003e ecdsa allows something similar there need not be anything changed.\n\u003e\n\u003e This works fine for ECC. But it requires that the composite key\n\u003e signer has simultaneous access to all the key-parts, so it doesn't\n\u003e solve the \"my PC has malware\" problem.\n\nI don't think anything simple enough to actually be used by people in\ngeneral does. Same concept as what I proposed earlier before nanotube gave\nme the context for Gavin's intent on irc.\n\nNow that I'm understanding the use case I really think the best way to go\nabout this initially is like you said earlier.\n\nProvide methods to export/import unsigned txns, provide methods to run the\nGUI in a way that can track your own addresses with only pubkeys available\nto the client, provide methods to sign and import/export/broadcast signed\ntxns.\n\nWith these tools offline wallets become feasible. Combined with wallet\ncrypto I think this is really the best that can be done to protect users\nfrom themselves in a way that isn't too complicated for them to actually\nuse.\n-------------- next part --------------\nAn HTML attachment was scrubbed...\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20110824/b20c936f/attachment.html\u003e",
"sig": "bf2f8124773cd050d3121bcdce6e35c0fbb3a9b08e103be9f22eb92749a7f555e2a1b19e0df3cbe2e12fcd84192b18e241e70b721153c514028baed4b5a448cf"
}