1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
|
Return-Path: <jonasdnick@gmail.com>
Received: from smtp3.osuosl.org (smtp3.osuosl.org [IPv6:2605:bc80:3010::136])
by lists.linuxfoundation.org (Postfix) with ESMTP id 6F8F8C002D
for <bitcoin-dev@lists.linuxfoundation.org>;
Mon, 23 May 2022 15:54:41 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
by smtp3.osuosl.org (Postfix) with ESMTP id 478E2610A3
for <bitcoin-dev@lists.linuxfoundation.org>;
Mon, 23 May 2022 15:54:41 +0000 (UTC)
X-Virus-Scanned: amavisd-new at osuosl.org
X-Spam-Flag: NO
X-Spam-Score: -2.216
X-Spam-Level:
X-Spam-Status: No, score=-2.216 tagged_above=-999 required=5
tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1,
DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001,
NICE_REPLY_A=-0.117, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001,
SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: smtp3.osuosl.org (amavisd-new);
dkim=pass (2048-bit key) header.d=gmail.com
Received: from smtp3.osuosl.org ([127.0.0.1])
by localhost (smtp3.osuosl.org [127.0.0.1]) (amavisd-new, port 10024)
with ESMTP id vhAsPDZbVrTO
for <bitcoin-dev@lists.linuxfoundation.org>;
Mon, 23 May 2022 15:54:40 +0000 (UTC)
X-Greylist: whitelisted by SQLgrey-1.8.0
Received: from mail-ej1-x636.google.com (mail-ej1-x636.google.com
[IPv6:2a00:1450:4864:20::636])
by smtp3.osuosl.org (Postfix) with ESMTPS id 49F3460EB7
for <bitcoin-dev@lists.linuxfoundation.org>;
Mon, 23 May 2022 15:54:40 +0000 (UTC)
Received: by mail-ej1-x636.google.com with SMTP id gh17so16720204ejc.6
for <bitcoin-dev@lists.linuxfoundation.org>;
Mon, 23 May 2022 08:54:40 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20210112;
h=from:message-id:date:mime-version:user-agent:subject
:content-language:to:references:in-reply-to
:content-transfer-encoding;
bh=jGwiTD8doyq9vRTrLOr8e0m+IMx8aEUGfqjF1R+32R8=;
b=eLwizqLAMxspStS0i4MNPuF4/butnN2Ga66IV9EjWPv2E3vYksaGV6kx/XCAVZH5DF
Poz1FsHBatnJaUYGUjnqVbWd9LbhYt0EoML7Ti75R8CDuMtVIs/gVp33naP9PliXzpza
NKTBG1rBwwlOoKpJQ0PFVvjh3EGm342v8Rt3roMarW+1oOEQSomIXsdyZ5YKXaU5l8UQ
PaV3olrpVqEA8W58g2m46gjNBLfmesX70Q6XleoxsYyAZBe2MuoijtCx5SqXjwLhJbpb
zIcTRpHATRXoVVJ62R9DMP1OpL6+vM02FPWsLTXCWOsDxQpHxhHAuT1ysYjZcwlu7rcp
CDjw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20210112;
h=x-gm-message-state:from:message-id:date:mime-version:user-agent
:subject:content-language:to:references:in-reply-to
:content-transfer-encoding;
bh=jGwiTD8doyq9vRTrLOr8e0m+IMx8aEUGfqjF1R+32R8=;
b=b1bQOcTTvyaO1SqpPzy/9vM/0xd0Nl817b/C59p4skh1RI6mzVEnIXnwhmEuuDq0xx
FQqo5hogufPEAHThvQ0G6GbxNu7LLqGgduDAJPpGkq6tdaq8tZtPj8qRiqjFaSBTpufF
GqkvUOuCnQ3DJA1v7w9u8bBSkokvUMEiWh54fxlle12rT0QA9Uve3ljASfFTOTrRG1sV
a5kWpT8tQAyBg+7jmfLjHr8/o4rp4xj2Gmsc4Af0BlFGythhKQEdXT0imUbmrk11faEd
fgXg6K7qAZ13+0B/Vh7zFITLP5bOmRSAK+t8AAsUmCjE2xQbDtIhLPyRmX4pdj7oTJDF
xaqA==
X-Gm-Message-State: AOAM532tO3MAJPyo6ZBfLctLMpT7Yt3Wu14xrl5v1JipOEozqBkoXnFu
dFXQwjwrUThaVKJlkJOcEqc=
X-Google-Smtp-Source: ABdhPJzceENJ9j/e6rlNSSBYMLIwsYkel1ugQs2J8R+xOi3EQEN14ZZLjOr747cicxD8JFR7Gst8zQ==
X-Received: by 2002:a17:907:c24:b0:6fe:c932:1b21 with SMTP id
ga36-20020a1709070c2400b006fec9321b21mr7446308ejc.514.1653321278360;
Mon, 23 May 2022 08:54:38 -0700 (PDT)
Received: from [10.12.10.3] (190-2-132-141.hosted-by-worldstream.net.
[190.2.132.141]) by smtp.googlemail.com with ESMTPSA id
v1-20020a056402174100b0042617ba63a0sm8471241edx.42.2022.05.23.08.54.37
(version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
Mon, 23 May 2022 08:54:37 -0700 (PDT)
From: Jonas Nick <jonasdnick@gmail.com>
X-Google-Original-From: Jonas Nick <jonasd.nick@gmail.com>
Message-ID: <c2a9b488-8d29-d1c6-b2c3-bc17d12b7d65@gmail.com>
Date: Mon, 23 May 2022 15:56:54 +0000
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101
Thunderbird/91.9.0
Content-Language: en-US-large
To: AdamISZ <AdamISZ@protonmail.com>,
Bitcoin Protocol Discussion <bitcoin-dev@lists.linuxfoundation.org>
References: <46175970-d2ab-a58e-7010-f29820849604@gmail.com>
<yitwgERAsaofLM5dheUZUYyFp0ncU8xyN98xTym3MkCxTch83DkweZN5JYyovVcfxA2Mo7DjTbv1Iku3wBApYiPG_cMwznTytKFpcjYa1O0=@protonmail.com>
In-Reply-To: <yitwgERAsaofLM5dheUZUYyFp0ncU8xyN98xTym3MkCxTch83DkweZN5JYyovVcfxA2Mo7DjTbv1Iku3wBApYiPG_cMwznTytKFpcjYa1O0=@protonmail.com>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
X-Mailman-Approved-At: Mon, 23 May 2022 16:09:09 +0000
Subject: Re: [bitcoin-dev] MuSig2 BIP
X-BeenThere: bitcoin-dev@lists.linuxfoundation.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: Bitcoin Protocol Discussion <bitcoin-dev.lists.linuxfoundation.org>
List-Unsubscribe: <https://lists.linuxfoundation.org/mailman/options/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=unsubscribe>
List-Archive: <http://lists.linuxfoundation.org/pipermail/bitcoin-dev/>
List-Post: <mailto:bitcoin-dev@lists.linuxfoundation.org>
List-Help: <mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=help>
List-Subscribe: <https://lists.linuxfoundation.org/mailman/listinfo/bitcoin-dev>,
<mailto:bitcoin-dev-request@lists.linuxfoundation.org?subject=subscribe>
X-List-Received-Date: Mon, 23 May 2022 15:54:41 -0000
Thank you for taking the time to look at the BIP and reference code, waxwing. I
don't know if you're overlooking anything, so let me try to restate the
paragraph in the BIP draft that attempts to cover this topic [0].
Suppose signers would just abort in the presence of identical public keys. In
that case, a disruptive signer can permanently DoS-attack a session by simply
copying the public key of some other signer. Therefore, the BIP is much more
useful if it can deal with identical public keys.
The MuSig2 BIP draft requires some added complexity to handle identical public
keys (because of the MuSig2* optimization). But this solution naturally allows
identifying and removing disruptive signers, which ultimately reduces the
complexity for MuSig2 users.
[0] https://github.com/jonasnick/bips/blob/musig2/bip-musig2.mediawiki#public-key-aggregation
|
