📅 Original date posted:2014-01-20
📝 Original message:On Mon, Jan 20, 2014 at 04:05:14PM -0600, Brooks Boyd wrote:
> On Mon, Jan 20, 2014 at 11:42 AM, slush <slush at centrum.cz> wrote:
>
> > Hi all,
> >
> > during recent months we've reconsidered all comments which we received
> > from the community about our BIP39 proposal and we tried to meet all
> > requirements for such standard. Specifically the proposal now doesn't
> > require any specific wordlist, so every client can use its very own list of
> > preferred words. Generated mnemonic can be then applied to any other
> > BIP39-compatible client. Please follow current draft at
> > https://github.com/trezor/bips/blob/master/bip-0039.mediawiki.
>
> So, because the [mnemonic]->[bip32 root] is just hashing, you've
> effectively made your "mnemonic sentence" into a brainwallet? Since every
> mnemonic sentence can now lead to a bip32 root, and only the client that
> created the mnemonic can verify the mnemonic passes its checksum (assuming
> all clients use different wordlists, the only client that can help you if
> you fat-finger the sentence is the client that created it)?
That issue is more than enough to get a NACK from me on making the
current BIP39 draft a standard - I can easily see that leading to users
losing a lot of money.
Have any wallets implemented BIP39 this way already in released code?
--
'peter'[:-1]@petertodd.org
00000000000000009c3092c0b245722363df8b29cfbb86368f4f7303e655983a
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 490 bytes
Desc: Digital signature
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20140120/c30a540b/attachment.sig>;
Peter Todd [ARCHIVE] /
npub1m2…a2np2
2023-06-07 15:12:22
in reply to nevent1q…urhl
Author Public Key
npub1m230cem2yh3mtdzkg32qhj73uytgkyg5ylxsu083n3tpjnajxx4qqa2np2Published at
2023-06-07 15:12:22Event JSON
{
"id": "c34d79868020c042fecd27d226cc93bd45ef05e4832a21236226bab9afca2450",
"pubkey": "daa2fc676a25e3b5b45644540bcbd1e1168b111427cd0e3cf19c56194fb231aa",
"created_at": 1686150742,
"kind": 1,
"tags": [
[
"e",
"fc93117f98479f5d69e7743f0323a5e1a0e6bc3324ce5260981ec55279ad31dc",
"",
"root"
],
[
"e",
"8f927fdb2559487e17fa51f0f05ca0e34da20847baeffd8094432a32cfb7fbab",
"",
"reply"
],
[
"p",
"55c4e4dcc50ae49525ece9c1ffe1f7aaf0c153bdca59f64cbc01c4a840607abc"
]
],
"content": "📅 Original date posted:2014-01-20\n📝 Original message:On Mon, Jan 20, 2014 at 04:05:14PM -0600, Brooks Boyd wrote:\n\u003e On Mon, Jan 20, 2014 at 11:42 AM, slush \u003cslush at centrum.cz\u003e wrote:\n\u003e \n\u003e \u003e Hi all,\n\u003e \u003e\n\u003e \u003e during recent months we've reconsidered all comments which we received\n\u003e \u003e from the community about our BIP39 proposal and we tried to meet all\n\u003e \u003e requirements for such standard. Specifically the proposal now doesn't\n\u003e \u003e require any specific wordlist, so every client can use its very own list of\n\u003e \u003e preferred words. Generated mnemonic can be then applied to any other\n\u003e \u003e BIP39-compatible client. Please follow current draft at\n\u003e \u003e https://github.com/trezor/bips/blob/master/bip-0039.mediawiki.\n\u003e \n\u003e So, because the [mnemonic]-\u003e[bip32 root] is just hashing, you've\n\u003e effectively made your \"mnemonic sentence\" into a brainwallet? Since every\n\u003e mnemonic sentence can now lead to a bip32 root, and only the client that\n\u003e created the mnemonic can verify the mnemonic passes its checksum (assuming\n\u003e all clients use different wordlists, the only client that can help you if\n\u003e you fat-finger the sentence is the client that created it)?\n\nThat issue is more than enough to get a NACK from me on making the\ncurrent BIP39 draft a standard - I can easily see that leading to users\nlosing a lot of money.\n\nHave any wallets implemented BIP39 this way already in released code?\n\n-- \n'peter'[:-1]@petertodd.org\n00000000000000009c3092c0b245722363df8b29cfbb86368f4f7303e655983a\n-------------- next part --------------\nA non-text attachment was scrubbed...\nName: signature.asc\nType: application/pgp-signature\nSize: 490 bytes\nDesc: Digital signature\nURL: \u003chttp://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20140120/c30a540b/attachment.sig\u003e",
"sig": "ea6bf439b2c615441dc1e0e4ff4c9c4421e6eb24bf92a7a26aefe47cb24ac36e7f82fbcaa0189f96d5c45cdd1d4d01164006fc7de5b60408385727b99b53cfa5"
}