📅 Original date posted:2014-07-19
📝 Original message:Well, you could always create a transaction with a different signature
hash, say, by changing something trivial like nLockTime, or changing
the order of inputs or outputs. Is that what you're talking about? Or
is there some sophistry I'm ignorant of having to do with the elliptic
curve math in the signature itself?
Aaron Voisine
breadwallet.com
On Fri, Jul 18, 2014 at 6:28 PM, Gregory Maxwell <gmaxwell at gmail.com> wrote:
> On Fri, Jul 18, 2014 at 3:03 PM, Aaron Voisine <voisine at gmail.com> wrote:
>>> 9. New signatures by the sender
>>
>> I'm not suggesting it be required, but it would be possible to
>> mitigate this one by requiring that all signatures deterministically
>> generate k per RFC6979. I'm using this in breadwallet.
>
> Nope.
>
> Your homework assignment is to explain why. :)
Aaron Voisine [ARCHIVE] /
npub18g…knkzl
2023-06-07 15:24:15
in reply to nevent1q…f8f6
Author Public Key
npub18gjvug29c4yg46lmplq38e75gg6wn5mn8taytckcsr4jt8p74h3s5knkzlPublished at
2023-06-07 15:24:15Event JSON
{
"id": "8acc59d5cbf057bd420f6e1bec1395e5efeb22b2bae2b94ca548e56921a83055",
"pubkey": "3a24ce2145c5488aebfb0fc113e7d44234e9d3733afa45e2d880eb259c3eade3",
"created_at": 1686151455,
"kind": 1,
"tags": [
[
"e",
"bd724105ae316b349d93a76fd25acc857c6eaea5c338fe45ec1a0cf9e46b9c93",
"",
"root"
],
[
"e",
"a2c433180eb1810e8bc1a6cb672ec04fb65baded11db524353f1fdc7c3c5bc68",
"",
"reply"
],
[
"p",
"4aa6cf9aa5c8e98f401dac603c6a10207509b6a07317676e9d6615f3d7103d73"
]
],
"content": "📅 Original date posted:2014-07-19\n📝 Original message:Well, you could always create a transaction with a different signature\nhash, say, by changing something trivial like nLockTime, or changing\nthe order of inputs or outputs. Is that what you're talking about? Or\nis there some sophistry I'm ignorant of having to do with the elliptic\ncurve math in the signature itself?\n\nAaron Voisine\nbreadwallet.com\n\n\nOn Fri, Jul 18, 2014 at 6:28 PM, Gregory Maxwell \u003cgmaxwell at gmail.com\u003e wrote:\n\u003e On Fri, Jul 18, 2014 at 3:03 PM, Aaron Voisine \u003cvoisine at gmail.com\u003e wrote:\n\u003e\u003e\u003e 9. New signatures by the sender\n\u003e\u003e\n\u003e\u003e I'm not suggesting it be required, but it would be possible to\n\u003e\u003e mitigate this one by requiring that all signatures deterministically\n\u003e\u003e generate k per RFC6979. I'm using this in breadwallet.\n\u003e\n\u003e Nope.\n\u003e\n\u003e Your homework assignment is to explain why. :)",
"sig": "815a8a8569b6daf0ae4b128fe1b3a16119fe73004c8f082400c7aaa0a6a9e78101efc451d5ed982d98337979baef59a3f631b5ef841c2b52d91150b5d6010854"
}