Pavol Rusnak [ARCHIVE] on Nostr: 📅 Original date posted:2016-04-21 📝 Original message:On 21/04/16 17:28, Eric ...
📅 Original date posted:2016-04-21
📝 Original message:On 21/04/16 17:28, Eric Lombrozo via bitcoin-dev wrote:
> I don't think we've ever had to handle this case.
This is the main problem: we are not sure, because not a lot of software
does this checks. Also even if you do check, it's hard to handle an
exception (you can't always skip - what if the problematic node is m/44'?).
One of the motivations is to fix BIP-32 so it can be used for
non-secp256k1 curves as well. For NIST P-256 curve this chance is 2^-32.
Jochen even managed to find an example[1]:
m/28578'/33941 where m is derived from
"000102030405060708090a0b0c0d0e0f" seed.
[1]
https://github.com/trezor/trezor-crypto/commit/16ff4387ae79429e629a5454708abf7385b3a9a3--
Best Regards / S pozdravom,
Pavol "stick" Rusnak
SatoshiLabs.com
Published at
2023-06-07 17:50:10Event JSON
{
"id": "2c59c47f567f475dd4d6c0af52cab40faa3ecda15fcd59d9fd39ececc71a8622",
"pubkey": "7631397e469f47f3535567311f5f7c17129e0ff2cb253df015e3d92ddfd92c63",
"created_at": 1686160210,
"kind": 1,
"tags": [
[
"e",
"7a09f5b1650d8bf91dee85a09eb46eb6358130e456757f2a5ef707d77b99ebe5",
"",
"root"
],
[
"e",
"4547ae1ebd488800511259f965120012730fe59e92491d97aa7e62e8f9a18edf",
"",
"reply"
],
[
"p",
"e899768d254f3537af7e26455968583632d0ab0bd4c780445eacfa087ac80d8f"
]
],
"content": "📅 Original date posted:2016-04-21\n📝 Original message:On 21/04/16 17:28, Eric Lombrozo via bitcoin-dev wrote:\n\u003e I don't think we've ever had to handle this case. \n\nThis is the main problem: we are not sure, because not a lot of software\ndoes this checks. Also even if you do check, it's hard to handle an\nexception (you can't always skip - what if the problematic node is m/44'?).\n\nOne of the motivations is to fix BIP-32 so it can be used for\nnon-secp256k1 curves as well. For NIST P-256 curve this chance is 2^-32.\n\nJochen even managed to find an example[1]:\n\nm/28578'/33941 where m is derived from\n\"000102030405060708090a0b0c0d0e0f\" seed.\n\n[1]\nhttps://github.com/trezor/trezor-crypto/commit/16ff4387ae79429e629a5454708abf7385b3a9a3\n\n-- \nBest Regards / S pozdravom,\n\nPavol \"stick\" Rusnak\nSatoshiLabs.com",
"sig": "1d0f394f3c04b5030838fb03a84e3ee1883de23e62fdf124db147f2db2b2bb0308f61099b7bf22e8f6e9596493fd96a67ded7e8bf101089c8ea84036b1b029e2"
}