Received: from sog-mx-1.v43.ch3.sourceforge.com ([172.29.43.191] helo=mx.sourceforge.net) by sfs-ml-3.v29.ch3.sourceforge.com with esmtp (Exim 4.76) (envelope-from ) id 1RbfhR-0005bm-L2 for bitcoin-development@lists.sourceforge.net; Fri, 16 Dec 2011 21:52:17 +0000 Received-SPF: pass (sog-mx-1.v43.ch3.sourceforge.com: domain of dot-bit.org designates 178.32.102.200 as permitted sender) client-ip=178.32.102.200; envelope-from=khal@dot-bit.org; helo=srv01.web-sweet-web.net; Received: from srv01.web-sweet-web.net ([178.32.102.200]) by sog-mx-1.v43.ch3.sourceforge.com with esmtps (TLSv1:AES256-SHA:256) (Exim 4.76) id 1RbfhQ-000846-3a for bitcoin-development@lists.sourceforge.net; Fri, 16 Dec 2011 21:52:17 +0000 Received: by srv01.web-sweet-web.net (Postfix, from userid 1000) id 43ABB165E00A; Fri, 16 Dec 2011 22:52:09 +0100 (CET) X-Spam-Checker-Version: SpamAssassin 3.2.5 (2008-06-10) on srv01.web-sweet-web.net X-Spam-Level: X-Spam-Status: No, score=-1.5 required=5.0 tests=ALL_TRUSTED, AWL, HTML_MESSAGE autolearn=ham version=3.2.5 Received: from [10.0.0.2] (sal69-2-82-241-217-146.fbx.proxad.net [82.241.217.146]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by srv01.web-sweet-web.net (Postfix) with ESMTPSA id AF94D165E007 for ; Fri, 16 Dec 2011 22:52:05 +0100 (CET) Message-ID: <4EEBBD84.6020907@dot-bit.org> Date: Fri, 16 Dec 2011 22:52:04 +0100 From: Khalahan User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.24) Gecko/20111114 Icedove/3.1.16 MIME-Version: 1.0 To: bitcoin-development@lists.sourceforge.net References: <1323728469.78044.YahooMailNeo@web121012.mail.ne1.yahoo.com> <1323979147.27319.140661012141129@webmail.messagingengine.com> <4EEB7E98.8030006@dot-bit.org> In-Reply-To: X-Enigmail-Version: 1.1.2 Content-Type: multipart/alternative; boundary="------------040408060708060107090801" X-Spam-Score: -0.7 (/) X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. See http://spamassassin.org/tag/ for more details. -1.5 SPF_CHECK_PASS SPF reports sender host as permitted sender for sender-domain -0.0 SPF_PASS SPF: sender matches SPF record 1.0 HTML_MESSAGE BODY: HTML included in message -0.2 AWL AWL: From: address is in the auto white-list X-Headers-End: 1RbfhQ-000846-3a Subject: Re: [Bitcoin-development] [BIP 15] Aliases X-BeenThere: bitcoin-development@lists.sourceforge.net X-Mailman-Version: 2.1.9 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 16 Dec 2011 21:52:17 -0000 This is a multi-part message in MIME format. --------------040408060708060107090801 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable The number of proposals is not infinite, here are their problems : - FirstBits : centralized - DNS TXT Records : DNSSEC is required to have a minimum of security, limits usage to engineers, limits usage to some domain names (i won't be able to use a gmail address for example, because i don't control the gmail.com domain) - Server Service (DNS + a daemon) : Same as DNS TXT records - HTTPS Web service : relies on HTTPS and CA, bitcoin needs to be able to check the full certificate chain and access a list of up-to-date certificate authorities (installed on the OS or provided with bitcoin). And don't forget the CA model is not 100% reliable (several CA hacked this year + possible government control...). - IP Transactions : /This proposal seeks to enable DNS lookups for IP transactions/ =3D> same as above I know that providing a namecoin daemon with bitcoin is not the lighter solution, but, if a better one existed i guess it would have already been integrated into bitcoin... (see in what state is my first attempt with the HTTPS proposal : Send payments to emails, urls and domains in GUI - /khalahan opened this pull request April 20, 2011/) So, what's next ? Le 16/12/2011 20:54, slush a =E9crit : > Khalahan, honestly, using namecoin for aliases is (for me) clean > example of over-engineering. I mean - it will definitely work if > implemented properly. I played with a namecoin a bit (as my pool was > the first 'big' pool supporting merged mining), but I think there's > really long way to provide such alias system in namecoin and *cleanly > integrate it with bitcoin*. Don't forget that people who want to do > lookup need to maintain also namecoin blockchain with their bitcoin > client. It goes against my instinct of keeping stuff easy. > > For example, yesterday I implemented HTTPS lookup for addresses into > my fork of Electrum client. I did it in 15 minutes, it works as > expected, it does the job and the implementation is really > transparent, becuase implementation is 20 lines of code. There's no > magic transformation, no forced "?handle=3D" parameters or whatever. An= d > I don't care if somebody provide URL > https://some.strange.domain/name-of-my-dog?myhandle=3D5678iop&anything_= else=3DTrue > > > And everybody can do the same in their clients, in their merchant > solutions, websites or whatever. Everybody can do HTTPS lookup. But > try to explain DNS, Namecoin, IIBAN, email aliases to other programmers= ... > > Those IIBAN - well, why not. At least I see the potential in PR. So > far I understand it as some teoretic concept which is not supported by > anything else right now. Give it few years until it matures and then > add IIBAN alias to Bitcoin client too. > > Maybe I'm repeating myself already, but the way to go is to make > aliases as easy as possible, so everybody can implement it in their > own solution and thus practially remove the need of using standard > bitcoin addresses for normal users. Using some superior technology, > which is hard to implement or even understand won't solve the > situation, because it will ends up with some reference implementation > in standard client only and nobody else will use it. > > slush --=20 Best Regards, Khalahan http://dot-bit.org/ --------------040408060708060107090801 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit The number of proposals is not infinite, here are their problems :

- FirstBits : centralized
- DNS TXT Records : DNSSEC is required to have a minimum of security, limits usage to engineers, limits usage to some domain names (i won't be able to use a gmail address for example, because i don't control the gmail.com domain)
- Server Service (DNS + a daemon) : Same as DNS TXT records
- HTTPS Web service : relies on HTTPS and CA, bitcoin needs to be able to check the full certificate chain and access a list of up-to-date certificate authorities (installed on the OS or provided with bitcoin). And don't forget the CA model is not 100% reliable (several CA hacked this year + possible government control...).
- IP Transactions : This proposal seeks to enable DNS lookups for IP transactions => same as above

I know that providing a namecoin daemon with bitcoin is not the lighter solution, but, if a better one existed i guess it would have already been integrated into bitcoin... (see in what state is my first attempt with the HTTPS proposal : Send payments to emails, urls and domains in GUI - khalahan opened this pull request April 20, 2011)

So, what's next ?

Le 16/12/2011 20:54, slush a écrit :
Khalahan, honestly, using namecoin for aliases is (for me) clean example of over-engineering. I mean - it will definitely work if implemented properly. I played with a namecoin a bit (as my pool was the first 'big' pool supporting merged mining), but I think there's really long way to provide such alias system in namecoin and *cleanly integrate it with bitcoin*. Don't forget that people who want to do lookup need to maintain also namecoin blockchain with their bitcoin client. It goes against my instinct of keeping stuff easy.

For example, yesterday I implemented HTTPS lookup for addresses into my fork of Electrum client. I did it in 15 minutes, it works as expected, it does the job and the implementation is really transparent, becuase implementation is 20 lines of code. There's no magic transformation, no forced "?handle=" parameters or whatever. And I don't care if somebody provide URL https://some.strange.domain/name-of-my-dog?myhandle=5678iop&anything_else=True

And everybody can do the same in their clients, in their merchant solutions, websites or whatever. Everybody can do HTTPS lookup. But try to explain DNS, Namecoin, IIBAN, email aliases to other programmers...

Those IIBAN - well, why not. At least I see the potential in PR. So far I understand it as some teoretic concept which is not supported by anything else right now. Give it few years until it matures and then add IIBAN alias to Bitcoin client too.

Maybe I'm repeating myself already, but the way to go is to make aliases as easy as possible, so everybody can implement it in their own solution and thus practially remove the need of using standard bitcoin addresses for normal users. Using some superior technology, which is hard to implement or even understand won't solve the situation, because it will ends up with some reference implementation in standard client only and nobody else will use it.

slush

-- 
Best Regards,
Khalahan
http://dot-bit.org/
--------------040408060708060107090801--