Return-Path: Received: from smtp1.linuxfoundation.org (smtp1.linux-foundation.org [172.17.192.35]) by mail.linuxfoundation.org (Postfix) with ESMTPS id 777B589B for ; Mon, 3 Sep 2018 00:05:20 +0000 (UTC) X-Greylist: from auto-whitelisted by SQLgrey-1.7.6 Received: from mail.wpsoftware.net (wpsoftware.net [96.53.77.134]) by smtp1.linuxfoundation.org (Postfix) with ESMTP id 349995E2 for ; Mon, 3 Sep 2018 00:05:20 +0000 (UTC) Received: from boulet.lan (boulot.lan [192.168.0.193]) by mail.wpsoftware.net (Postfix) with ESMTPSA id 21972400FE; Mon, 3 Sep 2018 00:05:18 +0000 (UTC) Date: Mon, 3 Sep 2018 00:05:18 +0000 From: Andrew Poelstra To: Erik Aronesty Message-ID: <20180903000518.GB18522@boulet.lan> References: <2e620d305c86f65cbff44b5fba548dc85c118f84.camel@timruffing.de> <20180812163734.GV499@boulet.lan> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="6sX45UoQRIJXqkqR" Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.7.1 (2016-10-04) X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00 autolearn=ham version=3.3.1 X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on smtp1.linux-foundation.org X-Mailman-Approved-At: Mon, 03 Sep 2018 23:25:52 +0000 Cc: Bitcoin Protocol Discussion Subject: Re: [bitcoin-dev] Schnorr signatures BIP X-BeenThere: bitcoin-dev@lists.linuxfoundation.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Bitcoin Protocol Discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 03 Sep 2018 00:05:20 -0000 --6sX45UoQRIJXqkqR Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Aug 29, 2018 at 08:09:36AM -0400, Erik Aronesty wrote: > Note: >=20 > This spec cannot be used directly with a shamir scheme to produce > single-round threshold multisigs, because shares of point R would need to > be broadcast to share participants in order to produce valid single > signatures. >=20 > (R, s) schemes can still be used "online", if share participants publish > the R(share).... but, not sure if it matter much, this choice eliminates > offline multiparty signing in exchange for batch validation. > Please stop with this FUD. No tradeoff was made. There are no non-interacti= ve Schnorr signatures. Andrew =20 --=20 Andrew Poelstra Mathematics Department, Blockstream Email: apoelstra at wpsoftware.net Web: https://www.wpsoftware.net/andrew "A goose alone, I suppose, can know the loneliness of geese who can never find their peace, whether north or south or west or east" --Joanna Newsom --6sX45UoQRIJXqkqR Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQEcBAEBCAAGBQJbjHq8AAoJEMWI1jzkG5fBp9IH+wUqZPQK7YScdU59fG7JpTO6 YcAmq70bBUEz/ro2Pnjf1AuP9zzqJKzdOytcJkihMvm4PblpSWnU5YgfLq3uGBEl etwWqq5zh85517mxTlGpUleWpYVgTfRJtJNbyn/adYbGGdTBRXdbscG96x5wMuVB Ggp15RECmse20DyOuLh3cmy8pZ6KjpxNTq3BgHXiDy/Qv3K0crqXgJvhoMUOFnsp jE++yF7xqG50jK/BHWIWim4MAasu8EOKBeXk8+5mTpJGkyiKAdlHFCY6rTQpztYq KI0ZJB1tgmXv6Ty09vr3nM4Hlu/H1oXhQp3QUYv2vk6LMxT2Y2/xrc327xn1B5M= =itzC -----END PGP SIGNATURE----- --6sX45UoQRIJXqkqR--