Received: from sog-mx-2.v43.ch3.sourceforge.com ([172.29.43.192] helo=mx.sourceforge.net) by sfs-ml-4.v29.ch3.sourceforge.com with esmtp (Exim 4.76) (envelope-from ) id 1Vhph8-0004sb-NH for bitcoin-development@lists.sourceforge.net; Sat, 16 Nov 2013 23:54:30 +0000 X-ACL-Warn: Received: from mail-ee0-f52.google.com ([74.125.83.52]) by sog-mx-2.v43.ch3.sourceforge.com with esmtps (TLSv1:RC4-SHA:128) (Exim 4.76) id 1Vhph5-0004q4-Ul for bitcoin-development@lists.sourceforge.net; Sat, 16 Nov 2013 23:54:30 +0000 Received: by mail-ee0-f52.google.com with SMTP id l10so1781213eei.11 for ; Sat, 16 Nov 2013 15:54:21 -0800 (PST) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :cc:subject:references:in-reply-to:content-type :content-transfer-encoding; bh=v2sHv87ipk64vASVzofwyf7DvGgIiM0n0oDDpqLohB0=; b=a+VkW/h28YgcGcETR0ZyKZiLFGhRLmpAbetrqSPtm/kWbqu/4/ICgLRl8Aw18/yBTb WZkXpbAFpCrHaX7dphoisMxAR2qxSffBDR3qLP0IF+Erozuy55qJEuqsf804ooHNguh/ KRIzpw5r0U+UrF+CwvEaAReArioVavCpWAe14ZVufobfOMEvQQ0HBW/2zRtrJ3em7cxx TGERDAeQHQYOmz8kRR7RhC3QgaKxfzcEyJrlnC9hblPvUi5S3SJ3JIfUpNW1zHQKjkjF r52dBOwxPzqTOrczVmtsagNWhXslu5o+DtgrmgZKc+YXQLMJxkrvkMhiPKxMiKWSb2Zb Zd3g== X-Gm-Message-State: ALoCoQlE8xXVQ2nzCMZHpZ7zOZ1k4VUAPBMxC/ChrXUXqFxfo6vMV+1u8O/mk16xdwA1EE7jG69T X-Received: by 10.14.95.69 with SMTP id o45mr576121eef.107.1384645747011; Sat, 16 Nov 2013 15:49:07 -0800 (PST) Received: from tetra.site ([91.239.236.39]) by mx.google.com with ESMTPSA id x4sm21480206eef.1.2013.11.16.15.49.05 for (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Sat, 16 Nov 2013 15:49:06 -0800 (PST) Message-ID: <52880470.2060206@gk2.sk> Date: Sun, 17 Nov 2013 00:49:04 +0100 From: Pavol Rusnak User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.0 MIME-Version: 1.0 To: timo.hanke@web.de, Thomas Voegtlin References: <526BDEC2.2090709@gmx.de> <52721F47.30206@gmx.de> <5274C99A.8060304@gmx.de> <20131103064111.GI16611@crunch> <5275F55A.1030805@gmx.de> <20131103074052.GJ16611@crunch> In-Reply-To: <20131103074052.GJ16611@crunch> X-Enigmail-Version: 1.5.2 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Spam-Score: 0.0 (/) X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. See http://spamassassin.org/tag/ for more details. 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: gk2.sk] X-Headers-End: 1Vhph5-0004q4-Ul Cc: bitcoin-development@lists.sourceforge.net Subject: Re: [Bitcoin-development] Proposal to replace BIP0039 X-BeenThere: bitcoin-development@lists.sourceforge.net X-Mailman-Version: 2.1.9 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 16 Nov 2013 23:54:30 -0000 On 03/11/13 08:40, Timo Hanke wrote: > Trezor picks random s and sends S=s*G to computer, keeping s secret. That's a really neat trick! > One question remains: if you only write down the mnemonic how can you be > sure that it is correct and corresponds to the secret in Trezor? Right. That's a problem. I'm not sure if this whole cryptomagic is benefitial at all. I'd suggest to go the easy way for now, i.e. prove that external entropy was used while generating the master seed. If the user does not trust our firmware, he can use his own built one. -- Best Regards / S pozdravom, Pavol Rusnak