馃搮 Original date posted:2014-08-19
馃摑 Original message:Oh, I see. I misread, thinking you wanted the dev team to have a private key and share the public key, similar to alerts. But each peer would have a public/private key pair and use something akin to ECDH for a symmetric key and transport using a block cipher?
How would you share the public key? If I were a man-in-the-middle, I could intercept the public key, generate my own and pass that along and then decouple the pipe when the other side shares their public key.
Also, you should not ignore your SSH fingerprint, as you exactly open yourself to mitm attacks.
On Aug 19, 2014, at 11:11 AM, Ra煤l Mart铆nez <rme at i-rme.es> wrote:
> Only messages between peers are encrypted, only during transit.
>
> Before sending a transaction to Node B you use his public key, so Node B has the key
>
> El 19/08/2014 17:05, "Richard Moore" <me at ricmoo.com> escribi贸:
> If you encrypt all messages with an asymmetric cipher, how would each node make use of the blockchain in an encrypted form? Each node would be able to encrypt the data, but only the Bitcoin Core Dev could decrypt it?
>
>
> On Aug 19, 2014, at 5:49 AM, Ra煤l Mart铆nez <rme at i-rme.es> wrote:
>
>> Hi,
>> I believe that all comunications should be encrypted by default, no matter that is public information (tx info), the only exception I would make would be block packets (to avoid increasing propagation time).
>>
>> I suggest that Bitcoin Core should generate a public/private key pair and share the public one with peers.
>>
>> This could provide privacy and integrity but not autentication.
>>
>> This way you can impersonate a bitcoin node (active mitm) but you cant just be passive and record all transactions send or recieved by an IP address.
>>
>> Today you can just watch for incoming/outgoing transactions to determine what tx are created in the Node, when you find one you can see the Bitcoin address inputs and outputs and track that person's bitcoins.
>> As an example, SSH provides this kind of encryption, althogh Bitcoin Core should ignore fingerprint changes (caused due to reinstalls).
>>
>> Please feel free to disqus why this is not needed or why you like this idea.
>>
>> ------------------------------------------------------------------------------
>> _______________________________________________
>> Bitcoin-development mailing list
>> Bitcoin-development at lists.sourceforge.net
>> https://lists.sourceforge.net/lists/listinfo/bitcoin-development
>
> .路麓炉`路.赂赂.路麓炉`路.赂赂.路麓炉`路.赂赂.路麓炉`路.赂赂.路麓炉`路.赂><(((潞>
>
> Richard Moore ~ Founder
> Genetic Mistakes Software inc.
> phone: (778) 882-6125
> email: ricmoo at geneticmistakes.com
> www: http://GeneticMistakes.com
>
.路麓炉`路.赂赂.路麓炉`路.赂赂.路麓炉`路.赂赂.路麓炉`路.赂赂.路麓炉`路.赂><(((潞>
Richard Moore ~ Founder
Genetic Mistakes Software inc.
phone: (778) 882-6125
email: ricmoo at geneticmistakes.com
www: http://GeneticMistakes.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/attachments/20140819/6f49bfd8/attachment.html>