📅 Original date posted:2012-03-02
📝 Original message:Dear all,
I am proposing a new opcode for the purposes of anonymous
transactions. This new opcode enables scripts to be given proof that
the receiver can carry out or has carried out a previous transaction.
I'm currently working on a paper that discusses using this opcode for
anonymous transactions.
Name: OP_CHECKEXPSIG
Stack before: <sig><pk><hash>
Stack after: T/F, where is true if sig is a ECDSA signature under pk
for the hash hash. (Hash is the hash of a message).
Uses: Preexisting digital cash techniques relied on keeping track of a
list of turned in notes to forbid double spending. Using
OP_CHECKEXPSIG we can instead pass the script that gives the nth note
value proof that the notes {1,...n-1} were turned in and are distinct.
This enables a coupling of the strong double spend protection of
Bitcoin with traditional digital cash's strong anonymity.
Sincerely,
Watson Ladd
Watson Ladd [ARCHIVE] /
npub108…sr4hp
2023-06-07 03:11:17
in reply to nevent1q…f83v
Author Public Key
npub108dfgewsuqzm6cvllzmxsv0xnn69rrjnyg5pa32a727k89ndh3xqmsr4hpSeen on
wss://relay.nostr.bandPublished at
2023-06-07 03:11:17Event JSON
{
"id": "3a37c808418daa9ce6da4c1969b23de1633f770bec4ab9bad12d6b27d4753c95",
"pubkey": "79da9465d0e005bd619ff8b66831e69cf4518e5322281ec55df2bd63966dbc4c",
"created_at": 1686107477,
"kind": 1,
"tags": [
[
"e",
"2cdf2fa507d39d95986d742ef4e46d8b2e15a7b31bcc17ff3c94f84f2fbe3c6e",
"",
"reply"
],
[
"p",
"a23dbf6c6cc83e14cc3df4e56cc71845f611908084cfe620e83e40c06ccdd3d0"
]
],
"content": "📅 Original date posted:2012-03-02\n📝 Original message:Dear all,\nI am proposing a new opcode for the purposes of anonymous\ntransactions. This new opcode enables scripts to be given proof that\nthe receiver can carry out or has carried out a previous transaction.\nI'm currently working on a paper that discusses using this opcode for\nanonymous transactions.\n\nName: OP_CHECKEXPSIG\nStack before: \u003csig\u003e\u003cpk\u003e\u003chash\u003e\nStack after: T/F, where is true if sig is a ECDSA signature under pk\nfor the hash hash. (Hash is the hash of a message).\nUses: Preexisting digital cash techniques relied on keeping track of a\nlist of turned in notes to forbid double spending. Using\nOP_CHECKEXPSIG we can instead pass the script that gives the nth note\nvalue proof that the notes {1,...n-1} were turned in and are distinct.\nThis enables a coupling of the strong double spend protection of\nBitcoin with traditional digital cash's strong anonymity.\n\nSincerely,\nWatson Ladd",
"sig": "8ad1ab5e4bd10041dea75fb9080613a4f233605e4f59ed5de7d10641613fd4f1de395e991f64c7a872041d892b6370bd4b2963f4593b3ec7179a898e6481bcb9"
}