diff options
| author | Ryan X. Charles <ryan@bitpay.com> | 2014-02-18 14:14:24 -0500 |
|---|---|---|
| committer | bitcoindev <bitcoindev@gnusha.org> | 2014-02-18 19:37:56 +0000 |
| commit | 3406dd393bdb4d94416b42507f36856d9fc84a03 (patch) | |
| tree | 38fdac908829097014acc6df685cf3a60c59bf9f /27 | |
| parent | dbd031130c0b0fd32b3e33a26e0535b17a8ab553 (diff) | |
| download | pi-bitcoindev-3406dd393bdb4d94416b42507f36856d9fc84a03.tar.gz pi-bitcoindev-3406dd393bdb4d94416b42507f36856d9fc84a03.zip | |
Re: [Bitcoin-development] BIP70 proposed changes
Diffstat (limited to '27')
| -rw-r--r-- | 27/45f407b9445dc7fc77c0752de9444019ea4ee6 | 274 |
1 files changed, 274 insertions, 0 deletions
diff --git a/27/45f407b9445dc7fc77c0752de9444019ea4ee6 b/27/45f407b9445dc7fc77c0752de9444019ea4ee6 new file mode 100644 index 000000000..b5679f2d1 --- /dev/null +++ b/27/45f407b9445dc7fc77c0752de9444019ea4ee6 @@ -0,0 +1,274 @@ +Received: from sog-mx-2.v43.ch3.sourceforge.com ([172.29.43.192] + helo=mx.sourceforge.net) + by sfs-ml-1.v29.ch3.sourceforge.com with esmtp (Exim 4.76) + (envelope-from <ryan@bitpay.com>) id 1WFqUO-0000zr-T3 + for bitcoin-development@lists.sourceforge.net; + Tue, 18 Feb 2014 19:37:56 +0000 +Received-SPF: pass (sog-mx-2.v43.ch3.sourceforge.com: domain of bitpay.com + designates 209.85.216.182 as permitted sender) + client-ip=209.85.216.182; envelope-from=ryan@bitpay.com; + helo=mail-qc0-f182.google.com; +Received: from mail-qc0-f182.google.com ([209.85.216.182]) + by sog-mx-2.v43.ch3.sourceforge.com with esmtps (TLSv1:RC4-SHA:128) + (Exim 4.76) id 1WFqUN-0007HP-UI + for bitcoin-development@lists.sourceforge.net; + Tue, 18 Feb 2014 19:37:56 +0000 +Received: by mail-qc0-f182.google.com with SMTP id c9so26479545qcz.13 + for <bitcoin-development@lists.sourceforge.net>; + Tue, 18 Feb 2014 11:37:50 -0800 (PST) +X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; + d=1e100.net; s=20130820; + h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to + :subject:references:in-reply-to:content-type; + bh=+dSBqKMHphL4xxj5igUYxviE/4M2Gs7BjTXe1HSb6yI=; + b=XECoX/JxZPZOLpPQ/wbuse1O7oNHe2aVyC9clG9LprhTbVqUwCvIJnqyTmcSgAmOQM + RHivyDq+UST1QGjPhw84vcA6DXLOnbJYbzh0sWfpoCPsuyTMo0PGuOIcMfZmdF041xAG + 7sxwNZJ621aW9E1VJZYT8yaHB9/MVOYohC9PJ7kK14urZ7kSRFKaUVuAnhIb4iSig99k + NCP6OLvjDylbjGSYwc4EqP9kGBCYthu6DcrWvcZtrKK1curZc60u/3TfYlLEkr+0d6GC + iD1hsw45Ze0RiLvgZj8Ww+5pkuxW2Cd3lTI2jf7VooGm88405QBp+ELH28xbWk1H892w + wjdw== +X-Gm-Message-State: ALoCoQlHDbAEalU/Y3tM86OF7DyGN8HDvOvp2fVANeOEwUdasARpp6Agnir6EiQ8N0yywTQm8fGS +X-Received: by 10.140.88.180 with SMTP id t49mr4721001qgd.97.1392750865252; + Tue, 18 Feb 2014 11:14:25 -0800 (PST) +Received: from rxc-h.local ([72.16.218.22]) + by mx.google.com with ESMTPSA id z9sm28427299qgz.20.2014.02.18.11.14.24 + for <bitcoin-development@lists.sourceforge.net> + (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); + Tue, 18 Feb 2014 11:14:24 -0800 (PST) +Message-ID: <5303B110.70603@bitpay.com> +Date: Tue, 18 Feb 2014 14:14:24 -0500 +From: "Ryan X. Charles" <ryan@bitpay.com> +User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; + rv:24.0) Gecko/20100101 Thunderbird/24.3.0 +MIME-Version: 1.0 +To: bitcoin-development@lists.sourceforge.net +References: <le05ca$qn5$1@ger.gmane.org> +In-Reply-To: <le05ca$qn5$1@ger.gmane.org> +X-Enigmail-Version: 1.6 +Content-Type: multipart/mixed; boundary="------------040800000200080903040500" +X-Spam-Score: -1.6 (-) +X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. + See http://spamassassin.org/tag/ for more details. + -1.5 SPF_CHECK_PASS SPF reports sender host as permitted sender for + sender-domain + -0.0 SPF_PASS SPF: sender matches SPF record + -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from + author's domain + 0.1 DKIM_SIGNED Message has a DKIM or DK signature, + not necessarily valid + -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature +X-Headers-End: 1WFqUN-0007HP-UI +Subject: Re: [Bitcoin-development] BIP70 proposed changes +X-BeenThere: bitcoin-development@lists.sourceforge.net +X-Mailman-Version: 2.1.9 +Precedence: list +List-Id: <bitcoin-development.lists.sourceforge.net> +List-Unsubscribe: <https://lists.sourceforge.net/lists/listinfo/bitcoin-development>, + <mailto:bitcoin-development-request@lists.sourceforge.net?subject=unsubscribe> +List-Archive: <http://sourceforge.net/mailarchive/forum.php?forum_name=bitcoin-development> +List-Post: <mailto:bitcoin-development@lists.sourceforge.net> +List-Help: <mailto:bitcoin-development-request@lists.sourceforge.net?subject=help> +List-Subscribe: <https://lists.sourceforge.net/lists/listinfo/bitcoin-development>, + <mailto:bitcoin-development-request@lists.sourceforge.net?subject=subscribe> +X-List-Received-Date: Tue, 18 Feb 2014 19:37:57 -0000 + +This is a multi-part message in MIME format. +--------------040800000200080903040500 +Content-Type: text/plain; charset=ISO-8859-1 +Content-Transfer-Encoding: 8bit + +Here are my complementary thoughts after working on the payment protocol +on the merchant side at BitPay. + +The most important missing piece of the payment protocol is that is has +no concept of the status of a payment after it has been made. What if +the payment is too little? Too much? What if it is never confirmed? What +if it is confirmed, but very late? These are regular occurrences at +BitPay (although hopefully they will be a lot fewer after the payment +protocol is widely adopted). + +One way to handle this would be to add another type of message, say with +content-type bitcoin-paymentstatus, that can return the merchant's view +of the status of the transaction(s). Are the transactions under or +overpaid? Are they confirmed? How many confirmations? Is the payment +"accepted" even if the transactions aren't confirmed? + +I think it would be great if wallets could check the status of a +payment, and if anything goes wrong, request a refund, all within the +payment protocol. + +The payment protocol is also the perfect opportunity to implement merge +avoidance to increase customer and merchant privacy. The merchant can +simply deliver multiple outputs in the payment details, say 10 or so, +and the customer can spend multiple outputs to those outputs in separate +transactions. It would be great if BitPay could work with wallet authors +to make merge avoidance a reality in the near-term. + +Merge avoidance would increase the need to have a bitcoin-paymentstatus +message since it's possible that some, but not all, of the transactions +would confirm, and so knowing the status of payment would be a complex +question that should be handled automatically by the software. + +On an unrelated note, X.509 is a terrible standard that should be +abandoned as quickly as possible. BitPay is working on a new standard +based on bitcoin-like addresses for authentication. It would be great if +we could work with the community to establish a complete, decentralized +authentication protocol. The sooner we can evolve beyond X.509 the better. + +One more thing. The new bitcoin URI in BIP 72 is extremely long and +makes for very dense QR codes. BitPay has proposed a new standard, BIP +73, for shorter URIs and less dense QR codes. We hope wallet authors +will implement this better standard. + +My response to Andreas' thoughts: + +On 2/18/14, 12:31 PM, Andreas Schildbach wrote: +> I'm starting a thread on proposed changes on BIP70 based on my +> experience in implementing the payment protocol in Bitcoin Wallet: +> +> - certificate chain in pki_data: I think it should be required that is +> most contain the first certificate PLUS all intermediate certificates +> (if any), but NOT the root certificate. Reason: We want to be able to +> verify offline. + +So long as the root certificate remains an optional addition, this seems +like a good idea. My experience with tls in node is that it is required +for the root certificate to be present, so we don't want to require that +the root certificate be absent, since that would make it painful to make +code that is interoperable between the two. IIRC setting +rejectUnauthorized=true will reject connections that do not deliver the +root certificate, so allowing the root certificate to be present would +be compatible with this and presumably other tls code. + +Would be great if someone with more experience with tls weighed in on +whether the root certificate can/should be present. + +> +> - definition of timezone: Its not clear if times (e.g. expires) are in +> UTC or local. I suggest to require UTC. If if we can't agree on this, +> there should be a sentence about timezones in the spec. + +The world needs to abandon timezones altogether for everything and only +use UTC. So, agreed. Require UTC. + +> +> (probably more to be added...) +> +> +> ------------------------------------------------------------------------------ +> Managing the Performance of Cloud-Based Applications +> Take advantage of what the Cloud has to offer - Avoid Common Pitfalls. +> Read the Whitepaper. +> http://pubads.g.doubleclick.net/gampad/clk?id=121054471&iu=/4140/ostg.clktrk +> _______________________________________________ +> Bitcoin-development mailing list +> Bitcoin-development@lists.sourceforge.net +> https://lists.sourceforge.net/lists/listinfo/bitcoin-development +> + +-- +Ryan X. Charles +Software Engineer, BitPay + +--------------040800000200080903040500 +Content-Type: application/pgp-keys; + name="0xA11B4DDE.asc" +Content-Transfer-Encoding: quoted-printable +Content-Disposition: attachment; + filename="0xA11B4DDE.asc" + +-----BEGIN PGP PUBLIC KEY BLOCK----- +Version: GnuPG v1 + +mQINBE3TEX0BEAC9RBUQXyHkqa7vZeRdKJp055NrQf90WMwYPSkVid+070kbGUDG +u1enIhRvTK/N89YFMQmReeDoWlYbnNA3/c1ohpOF7xbHt/+zI/EsyhRLO8FdRQY8 +Z99+O8lgSMhBKSPa2zKXe7k4D80blrlkVLSsWDyHxpUaI8chzc3oOi8DucJyhjv5 +VM6yvwxVcdG/YZAclgl+2H4pp6q6aa0VWygzbOVjbGnrzIBJ+yt8k14n44tOpH2m +My4xRAwa5XI5yqcH8ausSbE8Vyu4IUX04+U3q94TeLCBOneONFYZ1nfXmiY8/A9h +raDwmaZiHUppW/kBrqT6JkD2VXK43K+wlHW+XgCYcpec83PgNrotIXophoPaCyBi +pHBhIp17WOeIJt06d5isuTy09darvyPPNkkMX1RqH9U2/qvTjTP4cRgzTqQXvTae +YqIP96gnjQgMZNqKdBkVv/fN3KyuJJ7FYBNvdqyUpHf3xwV8uz/0XuUY3DcmpSRy +wb5DUa981xNnd/1rcAfO9arLq7jBl0qRpEe36ooJjfvZvS+WGiglBbtyOdK4O5N6 +7c7kJxcJbowcatcCBdzZKK9DiuIc6w9lmuH1/QLwBqhSpyYdtI8wI/XssK3JLAGn +iwvzm8/18h18Ti0NpaedGzXQwcMcNOCi3MZ4HaANFlJiOEXops8XQzM0lwARAQAB +tChSeWFuIFguIENoYXJsZXMgPHJ5YW54Y2hhcmxlc0BnbWFpbC5jb20+iQI4BBMB +AgAiBQJRz3afAhsDBgsJCAcDAgYVCAIJCgsEFgIDAQIeAQIXgAAKCRAfqZTioRtN +3p3pD/9HsakeXS+A8vHSExrETTNsWOu2ImFOvecMOiMGCJ1muOkEaNNXenykbTkY +S5uoPkr65W/VNIAzRJaJRK/3eCHaruOr6y2hZg1WOK8YQOOgjuX9TrEuWv9HzH4r +tzbukywidc36UJ5s/hz378s8FvmTeZ1vKfi2NWU95zb2oc9KJ6PgWdWDfstuLuF/ +noU+0YzezhGQyC5zDL811G4fTyJlRX9VCILeoMJGHlsurPA+n41PU3zWIZncQewF +e5+qXFuIIxLQL61v8O3mu0Uam1pyfUGalBWl/o8lIZpOmbiWpajvOBWXs4OJTA6F +9F0l55vvJkG+CFeyTen5OKH2BNuUHivFUHtzaZUtmYolziFC7OtIcV+wDdVNALyq +GSUDsqLxgPJ9Ptpo8eH5Pxei/kYTeRvFZIL5SsGFuKA9JCF3aXP8d1sT+/5aDRkv +JHkj6tnFeneuRKdkPexDPiAy7J178DsfU+GqstSwuSIzSr6ejZSz9hF5JoXhqD8o +QzNszjeGeY8+1/ERCZp1gv9q/NHk/qn/V1BEjXWr42N23jEL0YIGUHU2OSY8lDKY +mT9XrGZd3MbN/1EIu3rd9bnrnEZ/qJMPsbkcjxGO8m5Ku0dc1CouSfxbap6OvtmJ +iaYkw22lkakPbJj6j1Xi05+kLZs+njmgvbw5Rwt/4MHagHN8GbQ8UnlhbiBEaWNr +aGVyYmVyIChSeWFuIERpY2toZXJiZXIpIDxyeWFuZGlja2hlcmJlckBnbWFpbC5j +b20+iQI4BBMBAgAiBQJRotpTAhsDBgsJCAcDAgYVCAIJCgsEFgIDAQIeAQIXgAAK +CRAfqZTioRtN3iFCD/9CDsvFhWbPbBXqTLq06K7TtZohsQTVeZboJajdcS+JQY7Q +BPZgLF0QJCaUO6YPxgydI2oHRftqheqPT15U/fGkKMutDqic+SwoTxQZQqafj6fe +qic6ZcZHeXe4wR+hai+UQZDTuHiImQ6sSlEE+0rcQF2hsXmKnlhGySpOFIQYCx9t +tRfFxrMlhoFbx+AuzGPTk8dDIxmWq5iVseVDGhBvYtVlW0PfiOls2fK1Fl1vf5Uc +vS8TPe4Hc/HXOvVprj1uxdAEHzPlk0vMYquDm5pkEIjxSvBG+p70tucvuQzIS/s/ +bS90zWgTA0J/KCsIukfqrxWMfzuJK5px5FvOZaATHIxT1ePh7J5n4TfqGwbh2Z6d +tnDrti+WpZy/NKNZoGb7jsJK+E+DKTGTXYOEgVY+v9IiV3G1XEAG6gXNlWl59Czb +RP7d5AqquXeB85RQ3frlD2Ne12B13M+UPy5kc34y9ue3Ud4n2tlRkjw+QS3FhDfh +XNtIvQ3uX772ysQuedpn24wsNVzoc1ynonW3VEFumxErfJdfdU7Kq0Br0N6C5hT0 +XE4yIG9VSUxvOlxubBRyqjnXHIcowheKkp6qsjVmh90tqE9ClqVv0amk7gdflaY0 +/xbQdNqV7ke8Y/Yo/aGsubVEqQyPiilCtTkrRnQX9zL+HszLS1/zLQXwqfqo7LQ3 +QXN0cm9oYWNrZXIgKEFzdHJvaGFja2VyKSA8YXN0cm9oYWNrZXJAYXN0cm9oYWNr +ZXIuY29tPokCOAQTAQIAIgUCTgwEpgIbAwYLCQgHAwIGFQgCCQoLBBYCAwECHgEC +F4AACgkQH6mU4qEbTd6hZhAAirI33FsNa4cXysp6RKhvwUMK3hFRxS0C1kH13h6H +X28gEFTGsi8VfaLGA4O1DaktHzj7oox95SSbMckBqgjCA4ImVFjiKAcA9I4gvFl+ +QkCq+oxZ49JlSJ+jnJ+dfIY2thUpw5ZlWv3mguJbCfRGSs2XKTxcKPHAwZUJOa08 +10wMbkJdJPh9Avpr0YKc2gDId+RXRHplQOwdMgK7Re9QJwjcrsvPOb9I/YI001QH +EZyJ4x+oQgSDieUP2KQcK0Z4tCrIoomIDt9izRC3Cr1cpFGjY+mRIyQov8mvzhqG +ElDAuyh4uA9OId57VnjSpEfrFfIqqZTslnPwH5RtkRzWAModJ2PbECfBqvSLPpXQ +ZYJvUQcg5avORINuEvapbbJIPKpDCj4axXPiNsMd7U9pMz/e/9iSxgPMH1/QMebY +AW9G1rwhaYT3VXDH2/7X5JhyyRMd+/bT01jhGoarJVWJZQ9bdJ9acpSQPyhr64an +1+x4gKEBtoAJGrwCmZaaEj7f8OPYPehC8QYHTnHvTxKZw38AthyMn43F02iTMpDW +J1ZJc+wFhf/xnFUcGwXcur0k17AimKe91aQJQreEOQxzJlPVBimS8nD9ySq9KA/Y +rdWisv4aaNQUe4+VQyE9wqygTCCU30VmsrGQsZep+kDqSMboWS4kH86HzX5W3z/d +a9G0IVJ5YW4gWC4gQ2hhcmxlcyA8cnlhbkBiaXRwYXkuY29tPokCOAQTAQIAIgUC +UkRKJgIbAwYLCQgHAwIGFQgCCQoLBBYCAwECHgECF4AACgkQH6mU4qEbTd5x8w// +Zy++sbaRB9MWF2RP1rPEb31CdOMFgQxK6hUZ28O+0/8LPR7CFOVlhXS6Q512hoNB +P2pG55h5JONblUQ9WmW3ENWCesCsXBKcqOHhJYMyoyNQw1QkH4qw178rWTCKL9UY +L8qq907QNL1GLuZZL1S3xluRh1hsHTkW90Lb1xl6sGHKFZzEqf/yOInIuIXi9XvI +q+O7nb9/TpHSfnyokm2eF1DqOhBo8NtObVOrO3tNcNtn4vYEKfj3O41ls0N+BpgV +fAQYNZJpAa6k8hNyWqbc+9PwSE01NaHuh28ZahPZisfghb8ikaMpWx6WvrlHUDRX +aZloeX90bkPyjo3fZE+o55qxcC5s61QCRAt2qDNgmA0vAM8Xbjnl0VpTTHFEJOun +PqrTz8zrNndNWfFHJmpuBBlWfKKzgTV0e1NbSJkdI/VdSdSLWP+41ChP1DlDRdFC +0gzzBT8ykCTqHLEwI0PVQ/IBqNi+VYkUktXl3q4MzRrpJB2N4GAwHbJJiP5csHXo +EvYho6BvpvJieQdk2rXuQd6FtpE+TuoPxXEkEMPO/UXMx4Lz5HQZOyymhGOv0Ynz +yMNfVAFQ0UmbGer1b6CJqJGNcdxW1p0YmJX9n5wJSzkzra2GnuNbTH+yTBJxJ18p +9M76MhumAtrnC5Y9lB6ryim+TJrK2M3VQ0iY81R2DX65Ag0ETdMRfQEQAMrDwN6w +MloVYPzREi69vWdLYeDSNarrJ6dgWHiC2Pxp/t8A1mv9POqx1fFzQZyyTqD+ZiJi +ERUUjgGgpTkL/vxjdbqN4d6dAvKciCL0K4+lpsOSN3KEQSjY3LcjtR1mVCMKiMlQ +enxNghxPq09jhZIrS7jT9Eyzj5JLAE2IwanBDGyFHoAi4ACy5G5UHsbNKY/QQIWT +Likd7dwFmaoUR6HYjoiWdqee7MSbpAQJtJptLhsVbj5T4bYg9ETe7b+y0/A9pjIf +yCkjOTcsTlNLkUP728GI4dp42U1hyxW6z2SblAEZvF8kL6RAFcn6zImqy+DYk37L +Rbnrecf39V+rrS2HCFwxQYDDeaaYIgYsrlD1JJs+tQPHmrO/9lj5rrPhAq04/QVX +kqtFTQbK+N60TWStbT5ly1t7fsFzNUxgNEqXwwPr74hAnBhJaboL+ad4x2s2H1+P +2TAIJMWfIOvcS7lJouYO9c1g3nPp4LrQvECEPNAj1ukEqhGeRQxAls8wDPZD7f+u +SDTUSpo78aDa+YBK14CIWU3WX8itpEUJyPOIJCYt0vOpadejDWF2gbLAYdkyiwr4 +Bw4MGqu4kjdd8kjZzt77anbezzzJ46inM/uX+3m7LnqnksUFAFU+ZDCUOolExVbC +tlvrZsHdM1dKibqimKE79X4d1bhtROoz2ILdABEBAAGJAh8EGAECAAkFAk3TEX0C +GwwACgkQH6mU4qEbTd7C5BAAqWClD0nUhptpQd0gPxrcOk3yg0K2b1LUKvRIggU0 +cK6xXSWopVc4DtMLvQCEJ3CEIKya17vD1dYtD2QceUby0fQRBh0mCBT5kKy3nVQe +VDGENSE9+V6KU8UCWul+ah5tYmLvbQX+p+7HHiGXQ6lF0Q8ynriy07kWTzPPXip0 +Cm0nHorf2WsUrVX33UWDVvowl32zW895eTzd7ycPp9OBufR7usCG853A5yiDSvvN +lLJUkw5rTpgL5sMn+oLj1rou5rC1WrWBcBvBnBlsNZe1hU+4AuVTOghqAaGxKNzA +MbQpbScHlKoU8FVZHL9mkUUOKzQr5wM30Zpsq4MGs8yE5pHxg34Ap6B5fgEbd7L+ +JLJUSK1hnr8mYAWuF3Oe/uRlkDyrdkeIwSPewOwgu2KSUdqpy9CK1ekGs6hhemV+ +OUYHiAg7AI511GHYSuGhncXi712XYyXl+UOgOaj42/++lypy/pN47GW/eQ3jymSG +Gkfba/G7grnRZkzKAovAtXa3cN03DhIS9k4ot9700CCZHPjiEf1oEcOf1cx6i+FI +zSJe6/Z4LBXfIsptQqPRmxPqXFfsGlpnrCEalqfEnaJimAQ6JgVyWAooYHEjx2Hg +1rJRxRN7n4XiVLW1mEmOfKwR7zHs1tlKSitGOawA250zLplUE/s9IJSqB3jXH/SH +afQ=3D +=3DcB+0 +-----END PGP PUBLIC KEY BLOCK----- + +--------------040800000200080903040500-- + + |