MIME-Version: 1.0
Sender: marek@palatinus.cz
In-Reply-To: <CANOOu=_pVCPiDtbqc3EwToZWzjLw4UqOvpsu2Wrt4eDKC7g_2g@mail.gmail.com>
References: <CAJna-HjGHpru6Lpv_tXUkWR2mX-=fobzojtHYvSRJy6+CMesOA@mail.gmail.com>
	<CANg-TZCrpT-YJ0WV9VY6w-PtCiz2YRMBCMvmjneDz13j2namkw@mail.gmail.com>
	<20140120223502.GA1055@petertodd.org>
	<CANOOu=_pVCPiDtbqc3EwToZWzjLw4UqOvpsu2Wrt4eDKC7g_2g@mail.gmail.com>
From: slush <slush@centrum.cz>
Date: Tue, 21 Jan 2014 00:18:16 +0100
Message-ID: <CAJna-HgStwQQUiNZfJrFS1SduuzEEVrF=qmVe23uqZUNhHkOHA@mail.gmail.com>
To: Christophe Biocca <christophe.biocca@gmail.com>
Content-Type: multipart/alternative; boundary=047d7b8738101a0d1204f06f1d48
Cc: "bitcoin-development@lists.sourceforge.net"
	<bitcoin-development@lists.sourceforge.net>
Subject: Re: [Bitcoin-development] BIP0039: Final call
Precedence: list

--047d7b8738101a0d1204f06f1d48
Content-Type: text/plain; charset=ISO-8859-1

On Tue, Jan 21, 2014 at 12:06 AM, Christophe Biocca <
christophe.biocca@gmail.com> wrote:

> I remember the wordlist choice getting bikeshedded to death a month ago.
>
> I would just include the wordlist as part of the standard (as a
> recommendation) so that fully compliant implementations can correct a
> user's typos regardless of the original generator.
>
>
That's exactly our attitude. We realized that have a community-wide
agreement on the wordlist itself is simply imposible, so to reach at least
some consensus we split the proposal to two parts - one what is essential
to call itself a "bip39 compatible", i.e. converting the mnemonic to bip32
node and second which is optional, including our proposed wordlist, which
has some advanced features like checksums etc. Now it is up to client
developers to decide if they really insist on their superior wordlist or if
they'll implement checksums following the full specification.


> Those who don't like it will have to deal with the compatibility
> concerns themselves, or get an alternate wordlist approved as a BIP.

Odds are no one will go that route.
>
>
At least Trezor and bitcoinj (Multibit) seems to be going in this way,
which is 100% of clients which expressed interest in bip39 :-).

slush


> On Mon, Jan 20, 2014 at 5:35 PM, Peter Todd <pete@petertodd.org> wrote:
> > On Mon, Jan 20, 2014 at 04:05:14PM -0600, Brooks Boyd wrote:
> >> On Mon, Jan 20, 2014 at 11:42 AM, slush <slush@centrum.cz> wrote:
> >>
> >> > Hi all,
> >> >
> >> > during recent months we've reconsidered all comments which we received
> >> > from the community about our BIP39 proposal and we tried to meet all
> >> > requirements for such standard. Specifically the proposal now doesn't
> >> > require any specific wordlist, so every client can use its very own
> list of
> >> > preferred words. Generated mnemonic can be then applied to any other
> >> > BIP39-compatible client. Please follow current draft at
> >> > https://github.com/trezor/bips/blob/master/bip-0039.mediawiki.
> >>
> >> So, because the [mnemonic]->[bip32 root] is just hashing, you've
> >> effectively made your "mnemonic sentence" into a brainwallet? Since
> every
> >> mnemonic sentence can now lead to a bip32 root, and only the client that
> >> created the mnemonic can verify the mnemonic passes its checksum
> (assuming
> >> all clients use different wordlists, the only client that can help you
> if
> >> you fat-finger the sentence is the client that created it)?
> >
> > That issue is more than enough to get a NACK from me on making the
> > current BIP39 draft a standard - I can easily see that leading to users
> > losing a lot of money.
> >
> > Have any wallets implemented BIP39 this way already in released code?
> >
> > --
> > 'peter'[:-1]@petertodd.org
> > 00000000000000009c3092c0b245722363df8b29cfbb86368f4f7303e655983a
> >
> >
> ------------------------------------------------------------------------------
> > CenturyLink Cloud: The Leader in Enterprise Cloud Services.
> > Learn Why More Businesses Are Choosing CenturyLink Cloud For
> > Critical Workloads, Development Environments & Everything In Between.
> > Get a Quote or Start a Free Trial Today.
> >
> http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk
> > _______________________________________________
> > Bitcoin-development mailing list
> > Bitcoin-development@lists.sourceforge.net
> > https://lists.sourceforge.net/lists/listinfo/bitcoin-development
> >
>
>
> ------------------------------------------------------------------------------
> CenturyLink Cloud: The Leader in Enterprise Cloud Services.
> Learn Why More Businesses Are Choosing CenturyLink Cloud For
> Critical Workloads, Development Environments & Everything In Between.
> Get a Quote or Start a Free Trial Today.
>
> http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk
> _______________________________________________
> Bitcoin-development mailing list
> Bitcoin-development@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/bitcoin-development
>

--047d7b8738101a0d1204f06f1d48
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div class=3D"gmail_extra"><br><div class=3D"gmail_quote">=
On Tue, Jan 21, 2014 at 12:06 AM, Christophe Biocca <span dir=3D"ltr">&lt;<=
a href=3D"mailto:christophe.biocca@gmail.com" target=3D"_blank">christophe.=
biocca@gmail.com</a>&gt;</span> wrote:<br>

<blockquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-=
left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;p=
adding-left:1ex">I remember the wordlist choice getting bikeshedded to deat=
h a month ago.<br>


<br>
I would just include the wordlist as part of the standard (as a<br>
recommendation) so that fully compliant implementations can correct a<br>
user&#39;s typos regardless of the original generator.<br>
<br></blockquote><div><br></div><div>That&#39;s exactly our attitude. We re=
alized that have a community-wide agreement on the wordlist itself is simpl=
y imposible, so to reach at least some consensus we split the proposal to t=
wo parts - one what is essential to call itself a &quot;bip39 compatible&qu=
ot;, i.e. converting the mnemonic to bip32 node and second which is optiona=
l, including our proposed wordlist, which has some advanced features like c=
hecksums etc. Now it is up to client developers to decide if they really in=
sist on their superior wordlist or if they&#39;ll implement checksums follo=
wing the full specification.</div>

<div><br></div><div>=A0</div><blockquote class=3D"gmail_quote" style=3D"mar=
gin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,2=
04);border-left-style:solid;padding-left:1ex">
Those who don&#39;t like it will have to deal with the compatibility<br>
concerns themselves, or get an alternate wordlist approved as a BIP.=A0</bl=
ockquote><blockquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8e=
x;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-styl=
e:solid;padding-left:1ex">


Odds are no one will go that route.<br>
<br></blockquote><div>=A0</div><div>At least Trezor and bitcoinj (Multibit)=
 seems to be going in this way, which is 100% of clients which expressed in=
terest in bip39 :-).</div><div><br></div><div>slush</div><div>=A0</div><blo=
ckquote class=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-left=
-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;paddi=
ng-left:1ex">

On Mon, Jan 20, 2014 at 5:35 PM, Peter Todd &lt;<a href=3D"mailto:pete@pete=
rtodd.org">pete@petertodd.org</a>&gt; wrote:<br>
<div class=3D"im">&gt; On Mon, Jan 20, 2014 at 04:05:14PM -0600, Brooks Boy=
d wrote:<br>
&gt;&gt; On Mon, Jan 20, 2014 at 11:42 AM, slush &lt;<a href=3D"mailto:slus=
h@centrum.cz">slush@centrum.cz</a>&gt; wrote:<br>
&gt;&gt;<br>
&gt;&gt; &gt; Hi all,<br>
&gt;&gt; &gt;<br>
&gt;&gt; &gt; during recent months we&#39;ve reconsidered all comments whic=
h we received<br>
&gt;&gt; &gt; from the community about our BIP39 proposal and we tried to m=
eet all<br>
&gt;&gt; &gt; requirements for such standard. Specifically the proposal now=
 doesn&#39;t<br>
&gt;&gt; &gt; require any specific wordlist, so every client can use its ve=
ry own list of<br>
&gt;&gt; &gt; preferred words. Generated mnemonic can be then applied to an=
y other<br>
&gt;&gt; &gt; BIP39-compatible client. Please follow current draft at<br>
&gt;&gt; &gt; <a href=3D"https://github.com/trezor/bips/blob/master/bip-003=
9.mediawiki" target=3D"_blank">https://github.com/trezor/bips/blob/master/b=
ip-0039.mediawiki</a>.<br>
&gt;&gt;<br>
</div>&gt;&gt; So, because the [mnemonic]-&gt;[bip32 root] is just hashing,=
 you&#39;ve<br>
&gt;&gt; effectively made your &quot;mnemonic sentence&quot; into a brainwa=
llet? Since every<br>
&gt;&gt; mnemonic sentence can now lead to a bip32 root, and only the clien=
t that<br>
&gt;&gt; created the mnemonic can verify the mnemonic passes its checksum (=
assuming<br>
&gt;&gt; all clients use different wordlists, the only client that can help=
 you if<br>
&gt;&gt; you fat-finger the sentence is the client that created it)?<br>
&gt;<br>
&gt; That issue is more than enough to get a NACK from me on making the<br>
&gt; current BIP39 draft a standard - I can easily see that leading to user=
s<br>
&gt; losing a lot of money.<br>
&gt;<br>
&gt; Have any wallets implemented BIP39 this way already in released code?<=
br>
<span class=3D""><font color=3D"#888888">&gt;<br>
&gt; --<br>
&gt; &#39;peter&#39;[:-1]@<a href=3D"http://petertodd.org" target=3D"_blank=
">petertodd.org</a><br>
&gt; 00000000000000009c3092c0b245722363df8b29cfbb86368f4f7303e655983a<br>
</font></span><div class=3D""><div class=3D"h5">&gt;<br>
&gt; ----------------------------------------------------------------------=
--------<br>
&gt; CenturyLink Cloud: The Leader in Enterprise Cloud Services.<br>
&gt; Learn Why More Businesses Are Choosing CenturyLink Cloud For<br>
&gt; Critical Workloads, Development Environments &amp; Everything In Betwe=
en.<br>
&gt; Get a Quote or Start a Free Trial Today.<br>
&gt; <a href=3D"http://pubads.g.doubleclick.net/gampad/clk?id=3D119420431&a=
mp;iu=3D/4140/ostg.clktrk" target=3D"_blank">http://pubads.g.doubleclick.ne=
t/gampad/clk?id=3D119420431&amp;iu=3D/4140/ostg.clktrk</a><br>
&gt; _______________________________________________<br>
&gt; Bitcoin-development mailing list<br>
&gt; <a href=3D"mailto:Bitcoin-development@lists.sourceforge.net">Bitcoin-d=
evelopment@lists.sourceforge.net</a><br>
&gt; <a href=3D"https://lists.sourceforge.net/lists/listinfo/bitcoin-develo=
pment" target=3D"_blank">https://lists.sourceforge.net/lists/listinfo/bitco=
in-development</a><br>
&gt;<br>
<br>
---------------------------------------------------------------------------=
---<br>
CenturyLink Cloud: The Leader in Enterprise Cloud Services.<br>
Learn Why More Businesses Are Choosing CenturyLink Cloud For<br>
Critical Workloads, Development Environments &amp; Everything In Between.<b=
r>
Get a Quote or Start a Free Trial Today.<br>
<a href=3D"http://pubads.g.doubleclick.net/gampad/clk?id=3D119420431&amp;iu=
=3D/4140/ostg.clktrk" target=3D"_blank">http://pubads.g.doubleclick.net/gam=
pad/clk?id=3D119420431&amp;iu=3D/4140/ostg.clktrk</a><br>
_______________________________________________<br>
Bitcoin-development mailing list<br>
<a href=3D"mailto:Bitcoin-development@lists.sourceforge.net">Bitcoin-develo=
pment@lists.sourceforge.net</a><br>
<a href=3D"https://lists.sourceforge.net/lists/listinfo/bitcoin-development=
" target=3D"_blank">https://lists.sourceforge.net/lists/listinfo/bitcoin-de=
velopment</a><br>
</div></div></blockquote></div><br></div></div>

--047d7b8738101a0d1204f06f1d48--