📅 Original date posted:2018-01-23
📝 Original message:On Tue, Jan 23, 2018 at 10:22 PM, Anthony Towns <aj at erisian.com.au> wrote:
> Hmm, at least people can choose not to reuse addresses currently --
> if everyone were using taproot and that didn't involve hashing the key,
Can you show me a model of quantum computation that is conjectured to
be able to solve the discrete log problem but which would take longer
than fractions of a second to do so? Quantum computation has to occur
within the coherence lifetime of the system.
> way for individuals to hedge against quantum attacks in case they're ever feasible, at least that I can see (well, without moving their funds out of bitcoin anyway)?
By using scriptpubkeys with actual security against quantum computers
instead of snake-oil.
> (It seems like using the point at infinity wouldn't work because
Indeed, that doesn't work.
> that when quantum attacks start approaching feasibility. If funds are
> being held in reused addresses over the long term, that would be more
They are. But I don't believe that is relevant; the attacker would
simply steal the coins on spend.
Gregory Maxwell [ARCHIVE] /
npub1f2…crwet
2023-06-07 18:10:08
in reply to nevent1q…rkct
Author Public Key
npub1f2nvlx49er5c7sqa43src6ssyp6snd4qwvtkwm5avc2l84cs84esecrwetPublished at
2023-06-07 18:10:08Event JSON
{
"id": "084149e7bc365bee0e96568a604c1f828c1a634305b23c71089b0bb46dbd6f25",
"pubkey": "4aa6cf9aa5c8e98f401dac603c6a10207509b6a07317676e9d6615f3d7103d73",
"created_at": 1686161408,
"kind": 1,
"tags": [
[
"e",
"3098b6cd22aeee78f0db7c45c94594dc578b6094452b2f8e3129789af2cd6fd4",
"",
"root"
],
[
"e",
"2017676df761080c9ffd644487d7f15a8f4b94bb0b83d6744919bf49117c2d7a",
"",
"reply"
],
[
"p",
"f0feda6ad58ea9f486e469f87b3b9996494363a26982b864667c5d8acb0542ab"
]
],
"content": "📅 Original date posted:2018-01-23\n📝 Original message:On Tue, Jan 23, 2018 at 10:22 PM, Anthony Towns \u003caj at erisian.com.au\u003e wrote:\n\u003e Hmm, at least people can choose not to reuse addresses currently --\n\u003e if everyone were using taproot and that didn't involve hashing the key,\n\nCan you show me a model of quantum computation that is conjectured to\nbe able to solve the discrete log problem but which would take longer\nthan fractions of a second to do so? Quantum computation has to occur\nwithin the coherence lifetime of the system.\n\n\u003e way for individuals to hedge against quantum attacks in case they're ever feasible, at least that I can see (well, without moving their funds out of bitcoin anyway)?\n\nBy using scriptpubkeys with actual security against quantum computers\ninstead of snake-oil.\n\n\u003e (It seems like using the point at infinity wouldn't work because\n\nIndeed, that doesn't work.\n\n\u003e that when quantum attacks start approaching feasibility. If funds are\n\u003e being held in reused addresses over the long term, that would be more\n\nThey are. But I don't believe that is relevant; the attacker would\nsimply steal the coins on spend.",
"sig": "9479fc2db2bf896b3053a2bc0c558fa0c40e751a8a81dd4a24fed28552beee34052a7a0cd81a4cb913394f66fbf5d281b7a7d97c94c5ff6201e3895ef514a0b1"
}