1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
|
Return-Path: <pieter.wuille@gmail.com>
Received: from smtp1.linuxfoundation.org (smtp1.linux-foundation.org
[172.17.192.35])
by mail.linuxfoundation.org (Postfix) with ESMTPS id 5F9B8AF8
for <bitcoin-dev@lists.linuxfoundation.org>;
Mon, 9 Jul 2018 02:33:18 +0000 (UTC)
X-Greylist: whitelisted by SQLgrey-1.7.6
Received: from mail-oi0-f48.google.com (mail-oi0-f48.google.com
[209.85.218.48])
by smtp1.linuxfoundation.org (Postfix) with ESMTPS id 0AE9667E
for <bitcoin-dev@lists.linuxfoundation.org>;
Mon, 9 Jul 2018 02:33:17 +0000 (UTC)
Received: by mail-oi0-f48.google.com with SMTP id b15-v6so33051200oib.10
for <bitcoin-dev@lists.linuxfoundation.org>;
Sun, 08 Jul 2018 19:33:17 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025;
h=mime-version:references:in-reply-to:from:date:message-id:subject:to
:cc; bh=VYK7Gsx7jkAeT4Z3Vs8GoEjbidaoneeLuqJCYyxRyHQ=;
b=BKmO70+037XyS+CoFpy1F6h/b594gLPjkoEqAgbAmmiYJd9Vz2qybk2xYWwz1IyAhr
lKyAz3mlcLpFOvdh2rW6ZqYcnfSKWs862Tfngldv7RkRHv+Lc1gbJTLzdl8Z8mmIS02l
AETr1k4CnyM/obzmeIJzeCJQKUi5krk9VK1X9pXye9Fh6wSKJ947timgMe4MhOqBF93o
pPxkxfMDfCU6XbXr6RnAPhqfHPK5uEdwu1MkkEb6Mk12p0UCAPtogMrsDzaEvk2zt3Ak
uIO6cO7WSydakgmGtLXLq0/oGLqwrpzbAA3hBlt0UA78iA762+JyaXiuTGxJy9KAJyDp
X2sA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20161025;
h=x-gm-message-state:mime-version:references:in-reply-to:from:date
:message-id:subject:to:cc;
bh=VYK7Gsx7jkAeT4Z3Vs8GoEjbidaoneeLuqJCYyxRyHQ=;
b=bqYrsiW9NLD6ny5qZof4xlFc94T7D6CkcKRoIs5cOGz3CNc+pSCAWKJyFEwTIShsyS
E3Je7Y3h08eVDkAXNtfZrzKkYHNky4e4fShm5xxOC/5CpGlpZw3LEi2Zyw1sFtzv6wHo
Dch9f56uN/HDzxLBG9/fYRdcd2+iSDNeK8e5eB+5OiW67Dtn78XJuNTcKTJ4Q+x+FH07
zjAlkKigU3U1GD7A3D/eWYbDWYVf8DYJQ8PrJI79Ke+fryc+BPGU5XJS/Ev5Nt2AvJrq
kvvjWsEL5wMqlj5GoPKNWyaVoTveebOCoWCmiyBzky+/W7277SmeA96cEa+euDVZgG0X
Mi1g==
X-Gm-Message-State: APt69E1E0HICHXRZ06wlG/mIcEYT7sJq0EsvrJ2pOrAkKrF6gg+pjzXv
yvddcCqNAElTCpes/CQpgykiASxvapTsuPnTs+c=
X-Google-Smtp-Source: AAOMgpfsp0UUx8pV5sznMrqcJKKtRTRQwpL0LW3TTatnTx9jUTw6EPGVOwSmlQT/dRQpljYhXssViMk0W9tTmXFNBMY=
X-Received: by 2002:aca:670c:: with SMTP id
z12-v6mr21411035oix.76.1531103597290;
Sun, 08 Jul 2018 19:33:17 -0700 (PDT)
MIME-Version: 1.0
References: <CAJowKgLrSe77sqO2iB7mYboo_HW=YjO4=AFdv7L5FUi2vygMiQ@mail.gmail.com>
<08201f2292587821e6d23f6cc201d95e6e5ad2cd.camel@timruffing.de>
<CAAS2fgSPUc7xRq36rZ9BVLjUTdd152Fgho4sjJXLhfrc71vPMw@mail.gmail.com>
<CAJowKgL-nRcruXhWdGWrT4x+oV7i3jYST2Wa3bF5m6iT_mOyMw@mail.gmail.com>
In-Reply-To: <CAJowKgL-nRcruXhWdGWrT4x+oV7i3jYST2Wa3bF5m6iT_mOyMw@mail.gmail.com>
From: Pieter Wuille <pieter.wuille@gmail.com>
Date: Sun, 8 Jul 2018 19:33:06 -0700
Message-ID: <CAPg+sBjdu4mnda-P0y7Ddu-rN7a1GiUt0hY_wYGsy_bJLKOYMA@mail.gmail.com>
To: erik@q32.com, Erik Aronesty <earonesty@gmail.com>,
Bitcoin Protocol Discussion <bitcoin-dev@lists.linuxfoundation.org>
Content-Type: multipart/alternative; boundary="00000000000007e9ba057087d6a4"
X-Spam-Status: No, score=-2.0 required=5.0 tests=BAYES_00,DKIM_SIGNED,
DKIM_VALID, DKIM_VALID_AU, FREEMAIL_FROM, HTML_MESSAGE,
RCVD_IN_DNSWL_NONE autolearn=ham version=3.3.1
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
smtp1.linux-foundation.org
Subject: Re: [bitcoin-dev] Multiparty signatures
X-BeenThere: bitcoin-dev@lists.linuxfoundation.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: Bitcoin Protocol Discussion <bitcoin-dev.lists.linuxfoundation.org>
List-Unsubscribe: <https://lists.linuxfoundation.org/mailman/options/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=unsubscribe>
List-Archive: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/>
List-Post: <mailto:bitcoin-dev@lists.linuxfoundation.org>
List-Help: <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=help>
List-Subscribe: <https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=subscribe>
X-List-Received-Date: Mon, 09 Jul 2018 02:33:18 -0000
--00000000000007e9ba057087d6a4
Content-Type: text/plain; charset="UTF-8"
On Sun, Jul 8, 2018, 19:23 Erik Aronesty via bitcoin-dev <
bitcoin-dev@lists.linuxfoundation.org> wrote:
> Pretty sure these non interactive sigs are more secure.
>
Schnorr signatures are provably secure in the random oracle model assuming
the discrete logarithm problem is hard in the used group.
What does "more secure" mean? Is your construction secure with weaker
assumptions?
--
Pieter
--00000000000007e9ba057087d6a4
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
<div dir=3D"auto"><div class=3D"gmail_quote" dir=3D"auto"><div dir=3D"ltr">=
On Sun, Jul 8, 2018, 19:23 Erik Aronesty via bitcoin-dev <<a href=3D"mai=
lto:bitcoin-dev@lists.linuxfoundation.org">bitcoin-dev@lists.linuxfoundatio=
n.org</a>> wrote:<br></div><blockquote class=3D"gmail_quote" style=3D"ma=
rgin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir=3D"au=
to">Pretty sure these non interactive sigs are more secure.</div></blockquo=
te></div><div dir=3D"auto"><br></div><div dir=3D"auto">Schnorr signatures a=
re provably secure in the random oracle model assuming the discrete logarit=
hm problem is hard in the used group.</div><div dir=3D"auto"><br></div><div=
dir=3D"auto">What does "more secure" mean? Is your construction =
secure with weaker assumptions?</div><div dir=3D"auto"><br></div><div dir=
=3D"auto">--=C2=A0</div><div dir=3D"auto">Pieter</div><div dir=3D"auto"><br=
></div><div class=3D"gmail_quote" dir=3D"auto"><blockquote class=3D"gmail_q=
uote" style=3D"margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1e=
x">
</blockquote></div></div>
--00000000000007e9ba057087d6a4--
|
