📅 Original date posted:2016-08-03 📝 Original message:In light of the recent ...

Why Nostr? What is Njump?

Matthew Roberts [ARCHIVE] /

npub12f…k0jt6

2023-06-07 17:52:11

in reply to nevent1q…z5e3

📅 Original date posted:2016-08-03
📝 Original message:In light of the recent hack: what does everyone think of the idea of
creating a new address type that has a reversal key and settlement layer
that can be used to revoke transactions?

You could specify so that transactions "sent" from these addresses must
receive N confirmations before they can't be revoked, after which the
transaction is "settled" and the coins become redeemable from their
destination output. A settlement phase would also mean that a transaction's
progress was publicly visible so transparent fraud prevention and auditing
would become possible by anyone.

The reason why I bring this up is existing OP codes and TX types don't seem
suitable for a secure clearing mechanism; Nlocktimed TXs won't work for
this since you can't know ahead of time when and where a withdrawal needs
to be made, plus there's still the potential for key mismanagement; Similar
problems with OP_CHECKLOCKTIMEVERIFY apply too – unless you keep a private
key around on the server which would defeat the purpose. The main use case
here, would be specifically to improve centralized exchange security by
making it impossible for a hot wallet to be raided all at once.

Thoughts?

Some existing background:

http://hackingdistributed.com/2016/08/03/how-bitfinex-heist-could-have-been-avoided/
-- Proposed the basic idea for a time-based clearing house but using
blockchains directly, this is a much better idea than my own.

roberts.pm/timechain -- My original paper written in 2015 which proposed a
similar idea for secure wallet design but implemented using time-locked
ECDSA keys. Obviously a blockchain would work better for this.

Other -- if the idea has already been brought up by other people, I
apologize.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20160804/fe4335fb/attachment.html>;

Author Public Key

npub12ftsvulestm9ztkjkgkl7cfurm6u6dau835evhcs3jwxyctn4y6qsk0jt6

Seen on

wss://relay.nostr.band

Show more details

Published at

2023-06-07 17:52:11

Kind type

1 Short Text Note

Event JSON

{ "id": "08cf76886086ed0112c116af00f88a6e38551158073666147af8de7226d67826", "pubkey": "52570673f982f6512ed2b22dff613c1ef5cd37bc3c69965f108c9c626173a934", "created_at": 1686160331, "kind": 1, "tags": [ [ "e", "b2b2d73b9e521b0559a717c4dfca7729bdd61bd780bf3a932e9f89c290f08b52", "", "reply" ], [ "p", "a23dbf6c6cc83e14cc3df4e56cc71845f611908084cfe620e83e40c06ccdd3d0" ] ], "content": "📅 Original date posted:2016-08-03\n📝 Original message:In light of the recent hack: what does everyone think of the idea of\ncreating a new address type that has a reversal key and settlement layer\nthat can be used to revoke transactions?\n\nYou could specify so that transactions \"sent\" from these addresses must\nreceive N confirmations before they can't be revoked, after which the\ntransaction is \"settled\" and the coins become redeemable from their\ndestination output. A settlement phase would also mean that a transaction's\nprogress was publicly visible so transparent fraud prevention and auditing\nwould become possible by anyone.\n\nThe reason why I bring this up is existing OP codes and TX types don't seem\nsuitable for a secure clearing mechanism; Nlocktimed TXs won't work for\nthis since you can't know ahead of time when and where a withdrawal needs\nto be made, plus there's still the potential for key mismanagement; Similar\nproblems with OP_CHECKLOCKTIMEVERIFY apply too – unless you keep a private\nkey around on the server which would defeat the purpose. The main use case\nhere, would be specifically to improve centralized exchange security by\nmaking it impossible for a hot wallet to be raided all at once.\n\nThoughts?\n\nSome existing background:\n\nhttp://hackingdistributed.com/2016/08/03/how-bitfinex-heist-could-have-been-avoided/\n-- Proposed the basic idea for a time-based clearing house but using\nblockchains directly, this is a much better idea than my own.\n\nroberts.pm/timechain -- My original paper written in 2015 which proposed a\nsimilar idea for secure wallet design but implemented using time-locked\nECDSA keys. Obviously a blockchain would work better for this.\n\nOther -- if the idea has already been brought up by other people, I\napologize.\n-------------- next part --------------\nAn HTML attachment was scrubbed...\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20160804/fe4335fb/attachment.html\u003e", "sig": "4ec780b16e0f48a7ea0d5e4ad5950d9b579aabe5f09d6ad7e9eb238274645a968150bf3c2d1cd4f7e4fe79cddec365d6f73043cc03fcc4f5946f6d2124e03e47" }