Return-Path: Received: from smtp1.linuxfoundation.org (smtp1.linux-foundation.org [172.17.192.35]) by mail.linuxfoundation.org (Postfix) with ESMTPS id 5FBB1267 for ; Mon, 5 Oct 2015 06:57:37 +0000 (UTC) X-Greylist: whitelisted by SQLgrey-1.7.6 Received: from mail-io0-f177.google.com (mail-io0-f177.google.com [209.85.223.177]) by smtp1.linuxfoundation.org (Postfix) with ESMTPS id A994C90 for ; Mon, 5 Oct 2015 06:57:36 +0000 (UTC) Received: by iofh134 with SMTP id h134so175902058iof.0 for ; Sun, 04 Oct 2015 23:57:36 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc:content-type; bh=EN34d9WQSWsODKwysg2gVJq6jui8O7mTaEFtnUpWfv8=; b=FEtBCZHLQAM36L2eRtl4rrNHFcNbG69zh0Z3WnBxQEsKEs2dzAVSETcSDERldYkjNs fRVSZRre9TxD6lXLRyK+4i9rY9uERuYAeRwHn7UUPaJ/4zryoaERyrDGvVjzMPnWaszK 2iM2wL14m96MaCLWUcqToLDAaL+FtCh5+yc6TTv/FCkOdZKDd5+csc7SkxF6RCdMjjze cXiVxqA4HjJcZ4ArDzyXt3g++epkYZoTDlAfWfCkhV47k0P+0W04Dz4FbC+MGVU9bOI6 yCexU0DIFH9JQxq9rJKhov6+nN9DI6+lUQue0mXinQbjSAneRmts5DgWJDiKXb/JUvkW ADJw== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=bitpay.com; s=google; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to:cc:content-type; bh=EN34d9WQSWsODKwysg2gVJq6jui8O7mTaEFtnUpWfv8=; b=dCN69nO+pZ1/ukgoNgjVZchzpxcagxeDFckM/pTXupv5AUKpj3lqkwJmhmS2ss3XNg c1SD+CFX/6J+ev/WB9ljMvV22LQM4oqpnKagESnEPOAqYeFI4VQO568t8uWu9avtz9yX n2aTWpZ54UGJibDU1pICbj2UkZSSbJgXQ7+5I= X-Received: by 10.107.34.11 with SMTP id i11mr27604121ioi.6.1444028256077; Sun, 04 Oct 2015 23:57:36 -0700 (PDT) MIME-Version: 1.0 Sender: ematiu@gmail.com Received: by 10.50.230.19 with HTTP; Sun, 4 Oct 2015 23:57:16 -0700 (PDT) In-Reply-To: <561160EB.30505@gmail.com> References: <560FCD30.9020902@haskoin.com> <5611432F.5070209@haskoin.com> <561160EB.30505@gmail.com> From: Matias Alejo Garcia Date: Mon, 5 Oct 2015 03:57:16 -0300 X-Google-Sender-Auth: ewVnrtdJsVaER5AhOgq13Ai06-o Message-ID: To: Thomas Kerin Content-Type: multipart/alternative; boundary=001a1140c1c43fd32c0521560717 X-Spam-Status: No, score=-2.7 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,FREEMAIL_FROM,HTML_MESSAGE,RCVD_IN_DNSWL_LOW autolearn=ham version=3.3.1 X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on smtp1.linux-foundation.org Cc: bitcoin-dev@lists.linuxfoundation.org Subject: Re: [bitcoin-dev] [Bitcoin-development] New BIP32 structure for P2SH multisig wallets [BIP-45] X-BeenThere: bitcoin-dev@lists.linuxfoundation.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Bitcoin Development Discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 05 Oct 2015 06:57:37 -0000 --001a1140c1c43fd32c0521560717 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Hi, Sorry the late response. Going back to the original message: > > On 03/10/15 13:42, Jean-Pierre Rupp via bitcoin-dev wrote: > >> I have been reviewing BIP-45 today. There is a privacy problem with i= t > >> that should at least be mentioned in the document. > >> > >> When using the same extended public key for all multisig activity, and > >> dealing with different cosigners in separate multisig accounts, reuse = of > >> the same set of public keys means that all cosigners from all accounts > >> will be able to monitor multisig activity from every other cosigner, i= n > >> every other account. > I am not completely sure what you mean by 'account' and 'mutisig activity'. You seem to imply that the same set of extended public keys will be used in more that one wallet, which it is not required (and certainly not recommended) by BIP45. According to BIP45, a singing party, in order to generate a wallet address, needs the extended public keys of all the other parties, so each party will be able to see the transaction history of the wallet they are sharing, but if the party has other wallets with other copayers the xpub should be completely different. mat=C3=ADas --=20 BitPay.com --001a1140c1c43fd32c0521560717 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable

Hi,

Sorry the late response. Going= back to the original message:
=C2=A0
> On 03/10/15 13:42, Jean-Pierre Rupp via bitcoin-dev wrote: >> I have been reviewing BIP-45 today.=C2=A0 There is a privacy probl= em with it
>> that should at least be mentioned in the document.
>>
>> When using the same extended public key for all multisig activity,= and
>> dealing with different cosigners in separate multisig accounts, re= use of
>> the same set of public keys means that all cosigners from all acco= unts
>> will be able to monitor multisig activity from every other cosigne= r, in
>> every other account.

I am not = completely sure what you mean by 'account' and 'mutisig activit= y'. You seem to imply
that the same set of extended public ke= ys will be used in more that one wallet, which it is=C2=A0
not re= quired (and certainly not recommended) by BIP45.

A= ccording to BIP45, a singing party, in order to generate a wallet address, = needs the extended public keys of all the other parties, so each party will= be able to see the transaction history of the wallet they are sharing, but= if the party has other wallets with other copayers the xpub should be comp= letely different.

mat=C3=ADas

=


--
<= div dir=3D"ltr">
BitPay.com
--001a1140c1c43fd32c0521560717--