1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
|
Received: from sog-mx-4.v43.ch3.sourceforge.com ([172.29.43.194]
helo=mx.sourceforge.net)
by sfs-ml-1.v29.ch3.sourceforge.com with esmtp (Exim 4.76)
(envelope-from <nikita@megiontechnologies.com>) id 1XI16b-0006bp-RF
for bitcoin-development@lists.sourceforge.net;
Thu, 14 Aug 2014 19:54:37 +0000
X-ACL-Warn:
Received: from mail-qg0-f43.google.com ([209.85.192.43])
by sog-mx-4.v43.ch3.sourceforge.com with esmtps (TLSv1:RC4-SHA:128)
(Exim 4.76) id 1XI16Z-0004Ai-TL
for bitcoin-development@lists.sourceforge.net;
Thu, 14 Aug 2014 19:54:37 +0000
Received: by mail-qg0-f43.google.com with SMTP id a108so1456561qge.2
for <bitcoin-development@lists.sourceforge.net>;
Thu, 14 Aug 2014 12:54:30 -0700 (PDT)
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20130820;
h=x-gm-message-state:mime-version:in-reply-to:references:from:date
:message-id:subject:to:cc:content-type:content-transfer-encoding;
bh=iYSEBenMBryHgHinzo7EMEaDe+nKvoAEEy23QJa1kow=;
b=jLxGGnzy6Q145dccLDW5r7CJUZhcEVr0m7kSLyUa1v9ZvPFluCZA0SWCIdZyUZLUB1
/UhENauvYr08NCA7w+18RYynC7l4OT058GJKi73nbaB9v/RqMGGaXjrzwfUxK4feQn3s
wsi6FmH/hsC0zg1/ByDcpeOUw220FIVZp+PRiMVjA2p8VWC2c6lpXwBaiYIUMQmF4rdj
8lK9bCjwmHcBncH9pGPXdWfHnAy3FU83BqM1fr5lETakYoqiFwVvtCgj4vqnGHv6sTgn
z0x57ePKU5CFYvpHZzoJh2RzQ7IUuynJBdkM5rlyItEHPuqbFOCcFmB39J/LmYmw/k3r
qUAg==
X-Gm-Message-State: ALoCoQm5QFKWu1aTJYgQNHhjm3rJUlhui0jukWaEPqgLxHEHyOOt3CFycxPiVzihzgn5QIMAP0/n
X-Received: by 10.140.108.200 with SMTP id j66mr19618681qgf.43.1408044216288;
Thu, 14 Aug 2014 12:23:36 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.96.222.99 with HTTP; Thu, 14 Aug 2014 12:23:16 -0700 (PDT)
X-Originating-IP: [93.109.172.210]
In-Reply-To: <CABh=4qMpge4q-CmKNNnxj5C_jGEFhwAVrUHSNbqy3njeUiSHvQ@mail.gmail.com>
References: <CAC7yFxSE8-TWPN-kuFiqdPKMDuprbiVJi7-z-ym+AUyA_f-xJw@mail.gmail.com>
<CABh=4qNaJht-MnnjEguZ=UOuXN3uQ-s4-dkDUVErbHj6W44J_g@mail.gmail.com>
<1927948.OEZHQcsQ9n@crushinator> <2025496.b5Y3n7qx8B@crushinator>
<1582E990-4E14-4EF7-9C9C-AA505B815104@bitsofproof.com>
<53568B87.8040009@monetize.io>
<11528A13-5D66-4D2B-BEE0-1C26F9987BC8@bitsofproof.com>
<CABh=4qPsR1YbhJDeAPjr37Zjqawo9ZFAH43scFnEg7p9a7EkeQ@mail.gmail.com>
<F292CC2F-BAA7-45ED-801E-1475D94632AF@bitsofproof.com>
<CAAS2fgR5ciUeFonOXBD1d9b_inOuxQKJ-LaoGmoyjoeQ_KxQxQ@mail.gmail.com>
<621AAD7D-FDC0-4C3C-B810-8C1F0B088586@bitsofproof.com>
<CAAS2fgTyndBG=airHoAcW4W2WgFZ61THXP4JGuUQCSWV99tCtg@mail.gmail.com>
<CAC7yFxQR6oVdASacCefPiuWocvrDHTTnVU4xyVdZTwvMr4ZPNw@mail.gmail.com>
<CABh=4qMpge4q-CmKNNnxj5C_jGEFhwAVrUHSNbqy3njeUiSHvQ@mail.gmail.com>
From: Nikita Schmidt <nikita@megiontechnologies.com>
Date: Thu, 14 Aug 2014 22:23:16 +0300
Message-ID: <CAC7yFxT+cXFJ4rG46q=HjCppV-J9SMJcPcEpSqyvHMEYJd_bbw@mail.gmail.com>
To: =?UTF-8?Q?Jan_M=C3=B8ller?= <jan.moller@gmail.com>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable
X-Spam-Score: 0.0 (/)
X-Spam-Report: Spam Filtering performed by mx.sourceforge.net.
See http://spamassassin.org/tag/ for more details.
X-Headers-End: 1XI16Z-0004Ai-TL
Cc: Bitcoin Dev <bitcoin-development@lists.sourceforge.net>
Subject: Re: [Bitcoin-development] Presenting a BIP for Shamir's Secret
Sharing of Bitcoin private keys
X-BeenThere: bitcoin-development@lists.sourceforge.net
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: <bitcoin-development.lists.sourceforge.net>
List-Unsubscribe: <https://lists.sourceforge.net/lists/listinfo/bitcoin-development>,
<mailto:bitcoin-development-request@lists.sourceforge.net?subject=unsubscribe>
List-Archive: <http://sourceforge.net/mailarchive/forum.php?forum_name=bitcoin-development>
List-Post: <mailto:bitcoin-development@lists.sourceforge.net>
List-Help: <mailto:bitcoin-development-request@lists.sourceforge.net?subject=help>
List-Subscribe: <https://lists.sourceforge.net/lists/listinfo/bitcoin-development>,
<mailto:bitcoin-development-request@lists.sourceforge.net?subject=subscribe>
X-List-Received-Date: Thu, 14 Aug 2014 19:54:37 -0000
On 12 May 2014 15:09, Jan M=C3=B8ller <jan.moller@gmail.com> wrote:
>
> I think having 3 encoding formats (long/short/compact) is over engineered=
,
> and basically only makes implementing the standard a pain in the rear. Fr=
om
> a user experience point of view only the long format makes sense, and it =
is
> only a few bytes longer than the short version.
>
True. Since nobody has objected, the draft has been reworked and is
much leaner now:
https://github.com/cetuscetus/btctool/blob/bip/bip-xxxx.mediawiki .
The reasons for not making M and checksum fields optional are added to
the Rationale section.
The main difference is that the shared secret can be in encoded form,
e.g. SIPA or BIP38 instead of a plain private key. This makes SSS a
general purpose container for any kind of secret data. The benefits
are:
- no need to change the spec to carry another type of content;
- testnet and altcoins do not need any treatment in this spec;
- content-specific metadata, such as compressed/uncompressed,
encrypted/non-encrypted, key inception time point etc., are encoded
together with the secret, rather than provided for separately and
individually in this spec.
As we are now dealing with secrets of arbitrary length, GF(256) as the
underlying field becomes much more advantageous than GF(large prime).
An inconvenience of variable length is that we have no control of the
Base58 prefix. This was solved by moving the magic prefix outside of
the Base58 encoded content: SSS-abcdefgh. 'SSS-' acts as the
application identifier both to humans and machines, and abcdefgh is
the Base58 encoding of the share without any application/magic bytes.
(This may seem mildly controversial, but is there a better way?)
|
