Received: from sog-mx-4.v43.ch3.sourceforge.com ([172.29.43.194] helo=mx.sourceforge.net) by sfs-ml-4.v29.ch3.sourceforge.com with esmtp (Exim 4.76) (envelope-from ) id 1W7r1S-0005w9-Fb for bitcoin-development@lists.sourceforge.net; Mon, 27 Jan 2014 18:35:02 +0000 Received-SPF: pass (sog-mx-4.v43.ch3.sourceforge.com: domain of gmail.com designates 209.85.214.182 as permitted sender) client-ip=209.85.214.182; envelope-from=mh.in.england@gmail.com; helo=mail-ob0-f182.google.com; Received: from mail-ob0-f182.google.com ([209.85.214.182]) by sog-mx-4.v43.ch3.sourceforge.com with esmtps (TLSv1:RC4-SHA:128) (Exim 4.76) id 1W7r1Q-0008CB-M0 for bitcoin-development@lists.sourceforge.net; Mon, 27 Jan 2014 18:35:01 +0000 Received: by mail-ob0-f182.google.com with SMTP id wm4so6844711obc.41 for ; Mon, 27 Jan 2014 10:34:55 -0800 (PST) MIME-Version: 1.0 X-Received: by 10.182.22.33 with SMTP id a1mr1374693obf.60.1390847695155; Mon, 27 Jan 2014 10:34:55 -0800 (PST) Sender: mh.in.england@gmail.com Received: by 10.76.99.112 with HTTP; Mon, 27 Jan 2014 10:34:55 -0800 (PST) In-Reply-To: References: Date: Mon, 27 Jan 2014 19:34:55 +0100 X-Google-Sender-Auth: fGZBJJpbiJTN4_CPlvk6id_xgf0 Message-ID: From: Mike Hearn To: Andreas Schildbach Content-Type: multipart/alternative; boundary=001a1133177cce854f04f0f7f6ec X-Spam-Score: -0.5 (/) X-Spam-Report: Spam Filtering performed by mx.sourceforge.net. See http://spamassassin.org/tag/ for more details. -1.5 SPF_CHECK_PASS SPF reports sender host as permitted sender for sender-domain 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail provider (mh.in.england[at]gmail.com) -0.0 SPF_PASS SPF: sender matches SPF record 1.0 HTML_MESSAGE BODY: HTML included in message 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature X-Headers-End: 1W7r1Q-0008CB-M0 Cc: Bitcoin Dev Subject: Re: [Bitcoin-development] Payment Protocol for Face-to-face Payments X-BeenThere: bitcoin-development@lists.sourceforge.net X-Mailman-Version: 2.1.9 Precedence: list List-Id: List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Jan 2014 18:35:02 -0000 --001a1133177cce854f04f0f7f6ec Content-Type: text/plain; charset=UTF-8 On Mon, Jan 27, 2014 at 7:18 PM, Andreas Schildbach wrote: > I'm not saying I'm against signed payment requests, but unfortunately > they are just too big for QR-codes. Then again, QR-codes *can* take up > to 2 KB. How big would a very basic trust chain plus signature be? > As I said, the test requests generated by Gavin's generator end up being about 4kb. Unfortunately most certs are using RSA keys which aren't very compact. You can get ECC certs, but for whatever reason, the test requests aren't using one. > I was under the impression that addresses will go away. Can you > elaborate on the mechanism? > There's still an address in the URI for backwards compatibility, right? In theory if everyone some day uses wallets that support BIP70 it'd be superfluous and could be removed, but whilst it's there, we could find alternative uses for it ... > Ok, that's good news (to me). However, you are going to manage trust > stores (adding and revoking) without TCP? > Trust store is just a local database. Why would it involve TCP? > Well I'm thinking the other way round. Use Bitcoin where its already > used today -- face to face. > Maybe in Berlin :-) Most of my transactions are sadly with online shops, still. > > you probably still would like a receipt if you buy > > something from a local market trader. > > Yes, but where is the problem? > A receipt is a proof of purchase. If the payment request isn't signed then it proves nothing as you could have made it yourself. Of course paper receipts are forgeable too - we sort of pretend receipt frauddoes not exist, but it does. Nobody would ever be forced to sign to receive money, obviously, but it's better if people do as it leads to herd immunity. If people expect to see it then they will be suspicious if an attacker strips the signing data. If it's randomly hit/miss then the signing data can just be deleted by a MITM and you'd never think anything was amiss. And again, how is he going to provide the payment request to the payer > without TCP? > Over Bluetooth, perhaps. That's what we're talking about, right? > Interesting, did not know about this BIP. However I don't understand the > usecase. It was proposed by the BitPay guys. I think they feel that scanning a QR code should always make something intelligent happen, even if you don't (for instance) have a wallet app installed at all. Overloading the URL so it works for both web browsers and wallet apps is easy, so I can see why they suggested it. Doesn't seem like a big deal either way. --001a1133177cce854f04f0f7f6ec Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: quoted-printable
On M= on, Jan 27, 2014 at 7:18 PM, Andreas Schildbach <andreas@schildbach.de= > wrote:
I= 9;m not saying I'm against signed payment requests, but unfortunately
they are just too big for QR-codes. Then again, QR-codes *can* take up
to 2 KB. How big would a very basic trust chain plus signature be?

As I said, the test requests generated by Gavin= 's generator end up being about 4kb.

Unfortuna= tely most certs are using RSA keys which aren't very compact. You can g= et ECC certs, but for whatever reason, the test requests aren't using o= ne.
=C2=A0
I was under the impre= ssion that addresses will go away. Can you
elaborate on the mechanism?

There's= still an address in the URI for backwards compatibility, right? In theory = if everyone some day uses wallets that support BIP70 it'd be superfluou= s and could be removed, but whilst it's there, we could find alternativ= e uses for it ...
=C2=A0
Ok, that's good n= ews (to me). However, you are going to manage trust
stores (adding and revoking) without TCP?

Trust store is just a local database. Why would it involve TCP?
=C2=A0
Well I'm thinking= the other way round. Use Bitcoin where its already
used today -- face to face.

Maybe in Be= rlin :-) Most of my transactions are sadly with online shops, still.
<= div>=C2=A0
> you probably still would like a receipt if you buy > something from a local market trader.

Yes, but where is the problem?

A = receipt is a proof of purchase. If the payment request isn't signed the= n it proves nothing as you could have made it yourself. Of course paper rec= eipts are forgeable too - we sort of pretend receipt fraud does not exist, but it does.

Nobody would ever be forced to sign to receive mon= ey, obviously, but it's better if people do as it leads to herd immunit= y. If people expect to see it then they will be suspicious if an attacker s= trips the signing data. If it's randomly hit/miss then the signing data= can just be deleted by a MITM and you'd never think anything was amiss= .

And again, how is he = going to provide the payment request to the payer
without TCP?

Over Bluetooth, perhaps. T= hat's what we're talking about, right?
=C2=A0
Interesting, did not = know about this BIP. However I don't understand the
usecase.

It was proposed by the BitPay guys= . I think they feel that scanning a QR code should always make something in= telligent happen, even if you don't (for instance) have a wallet app in= stalled at all. Overloading the URL so it works for both web browsers and w= allet apps is easy, so I can see why they suggested it. Doesn't seem li= ke a big deal either way.=C2=A0
=C2=A0
--001a1133177cce854f04f0f7f6ec--